Best of AuthorizationJune 2024

  1. 1
    Video
    Avatar of ibmtechnologyIBM Technology·2y

    Role-based access control (RBAC) vs. Attribute-based access control (ABAC)

    The post discusses the concepts of role-based access control (RBAC) and attribute-based access control (ABAC) in access control systems. RBAC simplifies access control decisions by assigning roles to users, while ABAC considers attributes like position, department, and clearance level. Both approaches have their pros and cons, and a hybrid approach can be used depending on the organization's requirements.

  2. 2
    Article
    Avatar of rubyflowRuby Flow·2y

    Creating a REST API with Ruby on Rails. Chapter 1: Initial Setup and Models

    A guide to creating a REST API with Ruby on Rails, covering topics such as authentication, authorization, serialization, and database structure.

  3. 3
    Article
    Avatar of javarevisitedJavarevisited·2y

    Implementing Robust GraphQL Authentication with Apollo: Leveraging Custom Directives and Plugins for Precise Access Control

    GraphQL's single endpoint architecture necessitates a unified access control strategy, unlike REST APIs. Traditional methods of endpoint-specific authentication don't apply. One solution is using custom directives and Apollo plugins to implement fine-grained access control efficiently. These plugins allow centralized authentication mechanisms, support OAuth 2.0 integrations, and offer features like encryption and redaction of sensitive fields. The new authorization plugin provides a reusable framework that simplifies maintaining consistent access policies.

See all Authorization archives