Seonglae ChoAuthorization, AuthZ, Permission management
create permission is tricky, since usually permissions on edit or view are related to the resource entity, not the type. This requires either upper parent-level assignment or namespace-level permission, which involves setting overhead.There are two ways to check and apply connected permission policies in a general application. First is using a policy inside the engine that is hard-fixed without relational changes at runtime. Second is to create a relation for each SQL query and sync state through synchronization, expecting it to work the same as a single-level check.
Permission
Permission to access a resource is called authorization.
Authority is the ability to access an object or a resource.
Authorization Usages
AuthZ: Carta's highly scalable permissions system
Permissions, also known as authorization, is the process of granting access to resources in your system. For any team, it's crucial to get permissions right. At Carta, where we are working with financial data all day, it's the most important thing. But we had a problem.
https://medium.com/building-carta/authz-cartas-highly-scalable-permissions-system-782a7f2c840f
