1,165 questions
-3
votes
0
answers
66
views
Role and permission management for RBAC Express.js +TypeScript project
I need to implement role-based access control on the backend with postgresql, Prisma, and Express.js+TypeScript and the roles I have in mind so far are admin, manager, customer, delivery crew. I want ...
0
votes
1
answer
37
views
Internal implementation of Neo4j's RBAC to handle conflicting privileges assigned for the same role
In Neo4j, when assigning write privileges on a spicific node type for a role, I can deny write permission on some property on that node type, but also grant write permission on all the node's ...
- 192
0
votes
0
answers
41
views
How to use AppRegistration API roles in Blazor Wasm
I'm probably misunderstanding this, but after many days I need to ask for help.
I created an AppRegistration for my Web application (Blazor wasm) and then I created another AppRegistration for my API ...
- 19
0
votes
0
answers
240
views
Registering kafka_ui users using Keycloak -- feeling blocked
This is my first post, I hope that somebody can help me...
Here's my problem :
I want to configure Kafka_ui, using Keycloak users as "admin" or "readonly" role, to centralize RBAC.
...
- 1
-1
votes
1
answer
66
views
Is there a way to restrict access to directories within a Kubernetes container? [closed]
If I have two groups that are not root users that will access a container's directory structure, is there a way to fine tune permissions such that Group 1 can have WRITE permissions on /DIR1, but ...
- 3
0
votes
1
answer
155
views
Hide some resources in Resource group except one AD group
I have a scenario where I need to restrict access to a specific Azure resource to only one Azure Active Directory (AD) group. Here's the setup:
Environment Details:
The resources are deployed in a ...
0
votes
1
answer
360
views
Problem: Azure Backup with Disk Encryption and Key Vault Permissions (RBAC)
I’m trying to back up a virtual machine with disk encryption (both OS and data disks) using Recovery Services Vault in Azure. The key used for disk encryption is stored in Azure Key Vault, and I'm ...
- 35
1
vote
0
answers
36
views
RBAC on a Kusto cluster for functions
Context : Admin for a Kusto cluster and need to share kusto functions with report development team, without giving access to any underlying tables to query directly.
Question : Is it possible to ...
- 11
0
votes
1
answer
99
views
Role based access control in a Python app deployed in GCP Cloud run
We have a react front end and a python flask backend deployed in GCP cloud run, users are configured in google groups and authenticated via IAP.
Now we want to setup role based access control in our ...
- 131
0
votes
1
answer
178
views
Allow access to Development Tools using Custom RBAC Role
I want to allow certain development team members access to the Azure Web App Development Tools.
Preferably only the App Service Editor. I know I can grant "Website Contributor", but I'd ...
- 2,112
0
votes
1
answer
130
views
Conditional Column-level permissions in PostgreSQL
Let’s create a user and table with some data:
CREATE ROLE admin;
CREATE TABLE employee (empno int, ename text, address text, salary int, account_number text);
INSERT INTO employee VALUES
(1, 'john' ...
- 26.1k
-1
votes
1
answer
57
views
Flask-SQLAlchemy tables are defined in the schema but not getting created [duplicate]
I am creating my first, simple RBAC login/signup page using Flask.
This is my project structure
├── app.py
├── flask_api
│ ├── __init__.py
│ ├── config.py
│ ├── extensions.py
│ ├── models.py
│ ...
1
vote
0
answers
31
views
Generate a Access right table from SQL script
I already have several SQL scripts that generate my tables in postgreSQL. Each script alterns the right access and it grants different access to several tables in different databases. Do you know if ...
- 105
1
vote
2
answers
2k
views
Assigning data-plane RBAC to Cosmos DB?
I am trying to create a data-plane role assignment for my Cosmos DB for my Azure Web App / Function app to access using their System-Assigned Managed Identity.
I have tried assigning the Cosmos DB ...
- 133
0
votes
0
answers
81
views
Role Protection in ReactJS tsx
I am trying to implement role-based protection in ReactJS (typescript) application.
I have searched the web for this topic, there are many tutorials and confusions between typescript version, V6 react-...
- 475
1
vote
0
answers
176
views
Casl integration with Prisma and NestJS
I'm using the NestJs AuthGuard, with JwT and Casl, but I'm not understanding some concepts.
Looking for some tutorials online I did this:
My Ability Factory
import { AbilityBuilder, ExtractSubjectType,...
- 11
-1
votes
1
answer
146
views
how to use RBAC on azure?
I'm a complete beginner, but I need to figure out how do use rbac on azure sql to grant access specifically to certain tables on the db (for now, with just standard reader privileges). How should I do ...
0
votes
0
answers
61
views
How to merge roles in Postgres?
In my database I have two distinct roles which have no special attributes and thus do not inherit. They act as (RBAC) permissions, and there are policies for each permission on multiple tables.
How ...
- 3,152
3
votes
0
answers
264
views
How to disable Publish button in Azure Synapse Workspace?
We have CI/CD enabled for our Synapse environment, which automatically validates and deploys ARM templates to the target environments when master branch is updated.
As such, we want to be able to ...
- 69
0
votes
2
answers
539
views
Cannot remove Virtual Network Integration from function app
I am attempting to provide access to someone on my account using least-required access by creating an RBAC rule in Azure that gives the person the ability to manage, create, and delete networking ...
1
vote
1
answer
656
views
Az-GetRoleAssigments Not returning Data for DisplayName, SignInName & Object Type - Azure Powershell Runbook
I've been working on getting the list of RBAC roles assigned to an azure subscription to know which RBAC is assigned to a user or to an AD group. Based on the Microsoft website, I can do this using ...
3
votes
0
answers
454
views
Ory keto authorization model - transitive check definiton
I have started with the Ory Keto implementation. I have started with basic functionalities as creating tuples and checking the permission for the users base od the JWT authorization.
The basics works ...
- 31
1
vote
1
answer
92
views
least privilege for function app config write
Which is the azure built-in role to use for least privilege that enables users to write to function app config?
I think the required action is: Microsoft.Web/sites/config/write
I checked this site and ...
- 8,889
0
votes
1
answer
75
views
Prevent user login to Azure App Registration
I am writing a server side application that will run on an internal server (a physical box, not inside Azure). The application needs access to a blob storage container. The data in the blob storage is ...
- 21
3
votes
1
answer
599
views
RBAC(Role Base Access Control) with gRPC-Gateway generated RESTful API
I use gRPC-Gateway for RESTful API and gRPC server. Here is my code:
func main() {
ctx := context.Background()
ctx, cancel := context.WithCancel(ctx)
defer cancel()
// rest server
...
- 6,588