Ask HN: CASL 或 Casbin,哪个更适合授权?
1 分•作者: chaidhat•9 个月前
您好,我有一个 2 万行代码的后端,需要实现授权功能。我们有:
1. 用户
2. 管理员
3. 用户所属的组织
4. 属于组织的角色,用户可以被分配到这些角色
5. 审计表单,用户、角色和管理员可以对其进行读/写操作
对于授权,什么方案是最好的?我还是一个初学者程序员,所以不知道 RBAC、ReBAC 或 ABAC 哪个更好/应该使用哪个。
谢谢!
查看原文
Hi, I have a 20k LOC backend that I need to implement authorization. We have<p>1. users,
2. admins,
3. organizations where users belong
4. roles which belong to an organization and users can be assigned to said roles
4. audit forms which are read/write capable for users, roles and admins<p>What is best for authorization? I am a pretty beginner programmer so I don't know which is best/whether to use RBAC, ReBAC or ABAC.<p>Thanks!