It uses an alternative authorization package for permission handling. You can use that as well in your own application because it's based on the .