RBAC is about permissions for a role and members of the role.
Authorisation #83 should build an effective permissions for a user. This is a combination of the user's permissions and the permissions of each role that the user is a member of.
A trusted_for_authorization authentication service should return user.roles as an array of objects that contain the permissions property. If this cannot be done, then user.roles is an array of links to the user's roles.
RBAC is about permissions for a role and members of the role.
Authorisation #83 should build an
effective permissions
for a user. This is a combination of the user's permissions and the permissions of each role that the user is a member of.A
trusted_for_authorization
authentication service should returnuser.roles
as an array of objects that contain thepermissions
property. If this cannot be done, thenuser.roles
is an array oflinks
to the user's roles.