Build Role-Based Access Control

When managing access to resources within an application, it can be useful to group permissions into roles, and assign these roles to users. This is known as Role-Based Access Control (RBAC). The Oso Roles feature provides a configuration-based approach to adding role-based access control to your application.

The roles feature includes:

  • Role configuration - Declarative configuration for roles and permissions for each resource. The roles configuration supports multi-tenancy, resource-specific roles, and hierarchical roles. Groups and custom roles are coming soon.
  • Enforcement - Enforce authorization consistently throughout your application routing and data access layers.
  • Last-mile customizations - Extend authorization logic for each resource by writing custom policies using Polar, Oso’s declarative policy language.

Get started

The Oso Roles feature is coming soon for Java!

For now, you can check out the feature documentation for

Python or

Node, or read our

guide on role modeling in Polar.

If you want to get roles working in your app now or just want to register your interest for the Oso Roles feature in Java

drop into our Slack or send an email to our engineering team and we’ll unblock you.


Was this page useful?