Stack Overflow
Stack Overflow

Questions tagged [role-based-access-control]

155 questions
1
vote
1 answer

Node with sessions or JWT for large user base application?

I am building a production website and plan to have a large amount of users with different roles. My current practice is redis/sessions containerized auto scaled Elastic beanstalk deploy. However as users increase would it be wiser and most cost…
Josh
  • 1,059
  • 10
  • 17
1
vote
0 answers

Call a service in route module angular 4

import { RoleGuard } from '../guards/role-guard.service'; // [...] children: { path: 'admin', component: AdminComponent, canActivate: [RoleGuard], ** data: { role: 'Admin' } ** }, I don't want to hard-code…
Virendra Kumar
  • 11
  • 3
1
vote
0 answers

Put role-based access control (RBAC) approach outside the API Gateway layer

We were very excited to use Kong Enterprise, because we need to implement an architecture based in microservices. However, the price is so high to us and the only enterprise functionality that we need is RBAC. So our question here is, is there some…
Yamil Díaz Aguirre
  • 110
  • 7
1
vote
2 answers

How to disable the use of a default service account by a statefulset/deployments in kubernetes

I am setting up a namespace for my application that has statefulsets, deployments, and secrets into that namespace. Using RBAC, I am defining specific roles and binding them to a service account that is used by the deployment/statefulset. This works…
Revanth Reddy
  • 149
  • 2
  • 9
1
vote
1 answer

Ansible RBAC module

I would need to translate the following Openstack command in an Ansible task: neutron rbac-create --target-tenant --action access_as_shared --type network Is any module that helps creating the RBAC in Ansible?
Albert
  • 191
  • 1
  • 3
  • 23
1
vote
0 answers

How to revoke write access to a collection in MongoDB but keeping readWrite privileges on all other collections?

Is there an easy way to do this? Reading the official documentation I understood that I must create a new role with a privilege for each resource/collection I have. The problem is that I have a lot of resources/collections and I don't want to…
Bernardo Mondragón Brozon
  • 145
  • 1
  • 6
1
vote
1 answer

Role Based Access Control on parts of objects

I tried to understand RBAC in order to determine if it is a good solution for our problem. Let say that the context is a bank. Among the several actors, we have account managers and clients. I think I have understand RBAC for the account manager. If…
Mohicane
  • 302
  • 2
  • 15
1
vote
2 answers

Role base access on UI controls in ASP.NET MVC

I am building an application where same page can be visited by multiple user of different roles, for example Administrator can update all fields Initiator can insert data in all controls of the page except comments box Reviewer can only insert…
user6788965
1
vote
1 answer

How to check if any value in an array is present in another array in angular js?

I am writing a permission function in angular js factory method which checks user role. if user object have such role then result should be true else it should return false. my user object is: administrator:true company_admin:true registered:true…
Hemant
  • 81
  • 9
1
vote
0 answers

JMX role-based access control with custom authorization

I am new to JMX and am trying out JMX for remote monitoring and followed the oracle documentation on Monitoring and Management Using JMX Technology and am trying out the samples from the post Authentication and Authorization in JMX RMI connectors. I…
Asma Zinneera Jabir
  • 801
  • 3
  • 13
  • 31
1
vote
0 answers

How to grant partial or subset access to a web API resource to a user?

I am working on a project where I need to implement access control on web API as follows. I want to grant partial or subset access to API user. For example I have 4 resource in an web API. I want to give only 1 and 3 resource access to user X. User…
pradeep1991singh
  • 8,185
  • 4
  • 21
  • 31
1
vote
1 answer

Website Contributor not able to manage SSL certificates per Azure RBAC: Built-in roles

Azure RBAC: Built-in roles - Website Contributor Per the above link it quotes the Website Contributor should be able to Microsoft.Web/certificates/* Create and manage website certificates but in reality the user is not able to manage…
user836107
  • 189
  • 1
  • 9
1
vote
2 answers

How can I apply role-based security to the results of an odata/breezejs query?

It seems to me that breeze/odata queries present a significant risk for security access to data. For example, consider that I have an unrestricted entity (U) that is related to a restricted entity (R). I won't expose an endpoint to query for R and…
steve
  • 1,021
  • 1
  • 14
  • 29
1
vote
0 answers

How to handle complex authorisation rules in single page application?

I've read several articles about authorisation handling in rest api + single page applications. They mostly suggest following: When front end app is initialised, retrieve user roles and check roles in client side and apply logic based on it,…
Teimuraz
  • 8,795
  • 5
  • 35
  • 62
1
vote
0 answers

How use batch with role-based security

Sorry for my english.... May be someone help me find information about using batch job with role-based security in glassfish server? When I invoke the method from EJB : @Override @RolesAllowed({"root_role", "admin_role", "user_role"}) public…
Garry Dorado
  • 11
  • 2
1 2 3
10 11