https://stackoverflow.com/questions/19657393
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianIn WSO2-IS, it's the permission model that is hierarchical. Permissions can be assigned to a role in a fine-grained or a coarse-grained manner.
I think this is not straightforward.If the resource is identified with the Dept, we will be able to control it's permission there. If so this can be handled with XACML policies as well.
This sample policy may be of some help to you. http://pushpalankajaya.blogspot.com/2013/06/xacml-30-policies-multiple-rules-5.html
WSO2 Identity Server - Role management
-
01-07-2022 - |
题
I have few doubts on configuring RBAC in WSO2:
- are supported hierarchical roles?
- is it possible to associate different roles to a user depending to a different authorization contexts? I.e. in DeptA a user can access a certain resource since having a manager role, while in DeptB cannot since having normal employee role.
- RBAC can be implemented with XACML policies? Any sample policies available with hierarchical roles?
解决方案
不隶属于 StackOverflow
