A RBAC with resource granularity.
Example:
In my App I have the:
- Resources: organization, etc
- Roles: org_owner, org_delivery, etc
So, a user will have one of the above roles/permission over one or more resources, not over the App (all resources in the App).
User1:
- org_owner of organization1
- org_delivery of organization2
User2:
- org_owner of organization2
- org_delivery of organization1
erickhgm
01/30/2023, 10:56 PM
The point is, I don't have a lot of users, spicedb with all that infrastructure/services seems to be too much.
erickhgm
01/30/2023, 10:58 PM
And I don't want to build an authorization system, it's a trivial problem ... 😅
j
Joey
01/30/2023, 11:00 PM
SpiceDB is a single binary
Joey
01/30/2023, 11:00 PM
you'll need to run it and some form of datastore (MySQL, Postgres, etc)
Joey
01/30/2023, 11:00 PM
the easiest way to do so is the SpiceDB Operator if you're on Kubernetes