Skip to content

Record Level Access Control using RBAC #160

Description

@TanmoySG

Record Level Access Control using RBAC would provide greater control over data. This can be by limiting access to records with particular IDs or based on certain filters.

A good example would be to limit access to records for a particular column value. The RBAC may look like

{
    "admin": {
        "userId": "user",
        "authentication": {
            "hashedSecret": "abcdegh",
            "hashingAlgorithm": "sha256"
        },
        "metadata": {},
        "permissions": [
            {
                "role": "some_role",
                "on": {
                    "databases": "*",
                    "collections": "*",
                    "records": [
                        {
                          "field": "name",
                          "value": ["abbc", "def"],
                          "permissions": ["read", "delete"]
                        }
                    ]
                }
            }
        ]
    }
}

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions