0.1.3 Auth/entication/orization Sr Level

A fireside chat about Roles/Attributes/ACLs

Got all your users logged in? Now what? Next level permissions with Roles, Attributes, and ACL.

Permissions are often a part of “Auth” — that’s the Authorization bit.

How do you implement them?

Here are some of our favorites:

  • Roles: A role attribute on a user allows them various levels of access
  • Role Groups: A configuration of “role for group” attributes on a user allows them various levels of access
  • Flags: A configuration of various flags on an account allows access
  • ACL: Access Control Layer (ARO/ACR) granular control via a “grid” of permissions individually granted for each user via a complicated permissions join table.

(more coming)

Hosts: Alan Aaron
comments powered by Disqus
download