Authorization: RBAC, ABAC, ReBAC & PBAC
Control what authenticated users can do using role, attribute, relationship, or policy-based models
Control what authenticated users can do using role, attribute, relationship, or policy-based models
Minimize permissions and distribute authority to limit blast radius
TL;DR