Stack Overflow
Stack Overflow

Questions tagged [rbac]

RBAC is short for Role Based Access Control, an authorization and access control model in which access to restricted resources is granted or denied based on whether the requester's identity is associated with one or more role classifications required by the restricted resource.

Traditionally, security systems have often been structured to specify which individuals are allowed to access each restricted resource. As the number of restricted resources and number of individuals grows, this quickly becomes difficult to administer. When a person leaves the organization or joins the organization, the person must be removed from or added to all the relevant access control lists.

In Role Based Access Control, a level of abstraction in inserted between the restricted resource and the identities permitted to use that resource. A role descriptor is defined, typically aligned with job function (operator, manager, etc). The role descriptor is added to the access control list of the restricted resources. Individual identities are associated with or tagged with the role descriptor. When access to a restricted resource is requested, access can be granted by checking to see if the requesting identity is associated with one or more of the role definitions permitted to access the resource.

In this configuration, the number of role descriptors is relatively small even when there are a large number of users or resources involved, making the overall system easier to manage and administer than direct-reference access control lists.

1107 questions
-1
votes
1 answer

Accessing EKS cluster which created through Azure Devops Pipeline

I am trying to access an EKS cluster which was created earlier with Terraform through Azure Devops pipeline for testing purposes. This Pipeline runs on an agent in AWS which is not publicly available to ssh in. When I try to access the cluster I get…
gklucard
  • 15
  • 6
-1
votes
1 answer

Values not being read on local helm chart (deploying through terraform)

Pretty new to helm. I'm using terraform (helm_release) to deploy it. The helm chart is a local directory making a simple cluster role and role binding. I'm having an issue where the values.yaml isn't being picked up or recognized at run time. This…
Cythrex
  • 21
  • 3
-1
votes
1 answer

What's the (Azure) role needed to reset the Linux VM password

I am trying to enhance my custom RBAC role by allowing users to reset their Linux VM I couldn't able to find any exact role associated with the option for resetting the password for my Linux VM (see screenshot below) Doing my own testing I found…
Jayendran
  • 9,638
  • 8
  • 60
  • 103
-1
votes
3 answers

looking for an opensoure authenciation releated project to learn

I have three years's expeirence of java develping. Now I am working with an system which is related to the ahthenciation. I am not good at this. So I wonder if there is any opensoure project I can read and learn someting from which?
hguser
  • 35,079
  • 54
  • 159
  • 293
-1
votes
1 answer

Query Azure RBAC assignments using Azure powershell

Azure: Extend Psh command with two columns resource type & name I am trying to write a Azure Psh command with two columns resource type & name and query the RBAC assignments for a user. I have these two tables, is there a way to merge the following…
Amit Kumar
  • 3
  • 1
-1
votes
2 answers

OKTA different tokens for admin and user

I have a spring boot application with a couple rest endpoints. I am trying to user oaut2 together with okta to limit access to these endpoints depending on roles. So far I have done this: I have been able to get a BEARER token by calling…
carlos palma
  • 722
  • 3
  • 12
  • 29
-1
votes
1 answer

Self Remove Contributor access from all my Azure subscriptions

I have been assigned to a lot of Azure subscriptions as a contributor by our customers its more than 200. But I need to remove my contributor access and remove the attachment from their subscriptions. How can I self remove my access or is there any…
Dileepa Rajapaksa
  • 442
  • 5
  • 15
-1
votes
2 answers

VM with Managed Identity and IP restriction who wins?

I have few doubts in Azure: If I have 2 VMs with Managed Identity configured for each of them and if the IPs of these 2 VMs can talk to each other (i.e. NSG have a rule to allow network communication), but RBAC is configured to deny permission in…
2funky
  • 1
  • 2
-1
votes
1 answer

Yii2-usuario: Check for Admin

I'm new to Yii2-usuario and Yii2 authentication. Yii2 provides a builtin Yii::$app->user->isGuest but no Yii::$app->user->isAdmin. I configured the user chef as adminstrators in config/web.php: 'user' => [ 'class' => Da\User\Module::class, …
WeSee
  • 3,158
  • 2
  • 30
  • 58
-1
votes
1 answer

yii2 rbac phpManager defaultRole not working after update yii2 to 2.0.21

Environment: os: mac mojave php: 7.2.9 yii2: 2.0.21 -basic template firstly my yii2 app 2.0.5 and everything work ok. then php updated to 7.2.9. but application goes error Fatal error: Cannot use 'Object' as class name as it is reserved then yii2…
Ade Supriyadi
  • 37
  • 1
  • 7
-1
votes
2 answers

Need to Export RBAC roles on Subscription, resource group, resource level in Azure Cloud

I am trying the available Microsoft gallery script [https://gallery.technet.microsoft.com/scriptcenter/Export-Azure-Resource-092b9c2a#content] but it's running on subscription level and it's hanging in the middle. Looking for the solution from…
Surendra Aderu
  • 1
  • 1
-1
votes
1 answer

Build MySQL database based on user roles

I a building a CRM and what things I have in my CRM. I have four modules in my CRM (leads, contacts, deals, vendors). Multiple users with different roles. Roles are of dynamic type. Basically I have to build hirarchy of user roles .Users at high…
Jinku
  • 1
  • 1
-1
votes
1 answer

Best practice on Azure and access controls

I need to give a colleague access to a development azure portal so that he can learn how to create web bots. As he has no experience of azure, I dont want to through him in the deep end, so would rather use RBACs, but I cant quite see what roles…
chris rowles
  • 1
-1
votes
2 answers

Role-based access control in UML

I'm trying to figure out what I need to specify in UML for a role-based access control system. Basically I have a Database and only specific people are supposed to access specific functions or informations from that database. My academic helper told…
Yannick Ziener
  • 21
  • 2
-1
votes
2 answers

Display data in gridview base on rbac role in yii2

How to display records in gridview in yii2 using rule created for roles, in RBAC ? Suppose, there is two roles "admin" and "agent". Now the requirement is; In grid for agent, display only client which is assigned to that agent. For admin, grid will…
Rohit K
  • 11
  • 4
1 2 3
73
74