x http://docs.strongloop.com/display/LB/Controlling+data+access x can’t use old…https://github.com/strongloop/loopback-example-access-contro

……………..l

Ok http://docs.strongloop.com/display/LB/Creating+and+authenticating+users

  1. http://xxx-xxx.rhcloud.com/explorer/#!/Users

  2. New User 2.1. Click POST /Users 2.2. Click to set as parameter value 2.3. Change value: username ‘tt’, email ‘tt@tt.com’ . Add new “password”: “xxx”, 2.4. Try it out! if Response Code = 200 then success.

  3. Login User 3.1. before login, try to Click Get /Users/{id} , put id = 1, Try it out! get error msg: 401 Authorization Required….. now can sure, not login. 3.2. Click POST /Users/login 3.3. credentials value input {“username”:“tt”, “password”:“xxx”} 3.4. if see id , ttl, created, userid then success. id = access token 3.5. copy id value, put access token on page top. click Set Access Token. 3.6. now go back 3.1, try again. now success. login user only can use by self fun.