Authorization Models

RBAC, ABAC, PBAC, and ReBAC

• RBAC: roles grant permissions.
• ABAC: subject, object, and environment attributes decide access.
• PBAC: policies express rules independently of application code.
• ReBAC: relationships between entities decide access.