How to implement MySQL query fo RBAC authorization with fine grained business restrictions in role?
When implementing an authorization system like RBAC/DAC, or XACML, or the AWS IAM authorization model, I see that I can’t totally decouple business logic from authorization when there are fine-grained business restrictions.
We don’t use OR… Continue reading How to implement MySQL query fo RBAC authorization with fine grained business restrictions in role?