Reading: Access Control (ACL) - jacobwendt-401-advanced-javascript/cr-js-401d3 GitHub Wiki

Reading: Access Control (ACL)

Role-based access control

  • RBAC is the idea of assigning system access to users based on their role in an organization.
  • Assigning system access to users based on their role within an organization.
  • Access is then assigned to each person based strictly on their role assignment.
  • Access management becomes much easier.

There are some alternatives for/variations of RBAC, including:

  • Access control lists (ACL)
  • Attribute-based access control (ABAC)