ReBAC, like RBAC and ABAC, is one of several ways to express authorization policies. What makes ReBAC special? Policies are built on the relationships that are present between different entities. This allows easy expression of, e.g., additional permissions for someone with an ownership relation to (is the owner of) a document or for someone designated as an editor.
Our new article delves into this dynamic and flexible access control model in more detail. Learn its core concepts and how it works, peruse an example, and understand its advantages and limitations. Remember that the ideal in your app is no unnecessary permissions; least privilege helps avoid trouble.
This is our 29th article on the Secure by Design Education Hub. As always, I welcome your thoughts and feedback and encourage you to share articles with those who may find it valuable.