Access Control
Who is allowed to do what?
Access Control
Not all users are admins.
The RBAC Node
Route based on user identity.
- Start:
userid = input.user_id - Lookup:
roles = get_roles(userid) - Router:
- If "admin" in roles -> Enable
DeleteNodepath. - Else -> Block path.
- If "admin" in roles -> Enable
The graph topology enables you to physically separate "Admin Actions" from "User Actions" into different branches that regular users literally cannot reach.