Module permissions

Expand description

Permission and role definitions for access control. Permission and role-based access control (RBAC / ABAC).

Core types for the authorization subsystem:

Permission — An (action, resource) pair representing a capability.
Role — A named set of permissions with optional inheritance.
[UserPermissions] — Resolved permissions for a single user.
PermissionChecker — Evaluates access decisions, including ABAC policies and delegation chains.

For the async, storage-backed authorization API see AuthorizationOperations.

Structs§

AbacPolicy: Attribute-Based Access Control (ABAC) policy.
AbacRule
AdvancedPermissionCheck: Builder for constructing an advanced permission check with ABAC policies, delegations, and role resolution.
Delegation: Permission delegation record.
Permission: Represents a permission with action and resource.
PermissionChecker: Permission checker for validating access rights.
Role: Represents a role with associated permissions.
UserPermissions: User permissions and roles.