ObjectsGrid
  • Documentation
    • Core Concepts
    • Usage Guide
      • Quick Start
      • Authentication and Authorization
      • Access Control via ABAC
      • GraphQL API Examples
      • Login with Google app setup
      • Objects Schemas
    • OBJECTS GRID Objects
      • Generic Object
        • GenericObjects REST API
      • Enum Object
        • Enum Object REST API
      • ProductCatalog Object
      • ProductGroup Object
      • Product Object
      • Brand Object
        • Brands REST API
      • Language-Tagged String
      • Tags Object
      • Meta Object
    • Private Objects
      • Auth
        • Tokens REST API
      • ABAC Policy
        • ABACPolicies REST API
      • Organization Account
        • OrganizationAccounts REST API
      • User Account
        • UserAccounts REST API
      • Service Account
        • ServiceAccounts REST API
      • Access Logging
        • AccessLogEntries REST API
  • Support
    • Terms and Conditions
  • Blogs
    • Attribute Based Access Control
    • ABAC vs RBAC
Powered by GitBook
On this page

Was this helpful?

  1. Documentation
  2. Private Objects

ABAC Policy

Manage object access using ABAC policies

PreviousTokens REST APINextABACPolicies REST API

Last updated 2 months ago

Was this helpful?

ABAC () is an authorization model that controls access to resources based on attributes (Tags) rather than fixed roles or permissions. It provides fine-grained access control by evaluating who (subject), what (object), and how (action) based on contextual attributes.

The ABAC rules are contained in the Organization Account's ABAC Policy Object.

A default ABAC policy is automatically created when a new Organization Account is registered. Administrators can modify it to suit their specific needs.

Our ABAC Policies are (OPA) compliant. OPA is a graduated project of , and de-facto industry standard for policy language. OPA uses the . You can use the as a policy development environment.

To find out more about ABAC and how it compares with Role-Based Access Control (RBAC), please refer to our .

ABAC Policy Object Attributes

Name
Type
Description

id

String

The unique identifier for ABACPolicy

policy

String

The ABACPolicy string - rego policy contents

tags

Array of

Object Tag

meta

Object

Object's meta data, read only

Attribute-Based Access Control
Open Policy Agent
Cloud Native Computer Foundation
Rego Policy Language
Rego Playground
Blogs
Contact Support
Meta
Tag