what are you trying to accomplish?
# spicedbj
Jake
01/30/2023, 10:41 PMwhat are you trying to accomplish?
e
erickhgm
01/30/2023, 10:53 PMA RBAC with resource granularity.
Example:
In my App I have the:
- Resources: organization, etc
- Roles: org_owner, org_delivery, etc
So, a user will have one of the above roles/permission over one or more resources, not over the App (all resources in the App).
User1:
- org_owner of organization1
- org_delivery of organization2
User2:
- org_owner of organization2
- org_delivery of organization1
erickhgm
01/30/2023, 10:56 PMThe point is, I don't have a lot of users, spicedb with all that infrastructure/services seems to be too much.
erickhgm
01/30/2023, 10:58 PMAnd I don't want to build an authorization system, it's a trivial problem ... 😅
j
Joey
01/30/2023, 11:00 PMSpiceDB is a single binary
Joey
01/30/2023, 11:00 PMyou'll need to run it and some form of datastore (MySQL, Postgres, etc)
Joey
01/30/2023, 11:00 PMthe easiest way to do so is the SpiceDB Operator if you're on Kubernetes
e
erickhgm
01/31/2023, 12:54 AMAll these services there: https://authzed.com/docs/spicedb/feature-overview#architecture run at the same container? I was thinking each one was a container in the SpiceDB stack.
j
Joey
01/31/2023, 1:04 AMeverything in the white box, yes