Revision as of 16:09, 20 July 2025 edit Megaltoid (talk \| contribs) 69 edits m Added citation Tag: Reverted ← Previous edit		Revision as of 13:28, 22 July 2025 edit undo Megaltoid (talk \| contribs) 69 edits Added a definition of fine-grained access control Tag: Reverted Next edit →
Line 18: * Policy-based access control * Fine-grained authorization Fine-grained authorization refers to authorization logic that incorporates elements of multiple authorization models, providing highly targeted permissions under narrowly defined conditions. Unlike coarse-grained models that provide broad access (such as "administrator" or "user" roles), fine-grained authorization allows different users to have different types of access to the same resource based on multiple factors including roles, relationships, attributes, and environmental context.<ref>{{Cite web\|last=Mestci\|first=Hazal\|title=What is Fine-Grained Authorization?\|url=https://www.osohq.com/learn/what-is-fine-grained-authorization?utm_source=ppc&utm_medium=google&utm_campaign=DynamicSearch&utm_content=179698179487&gad_source=1&gad_campaignid=22311018434&gbraid=0AAAAArFMvLU3qD1f16LmkNJJMT2D4xpNm&gclid=Cj0KCQjwm93DBhD_ARIsADR_DjGJfD3mUrgQI4DNGN8DmuJZx7r1ykAK13HXs1UfyKH0zJhi86HvCRoaAiBOEALw_wcB#:~:text=Fine%2Dgrained%20authorization%20refers,roles%2C%20relationships%2C%20attributes%2C%20etc }}</ref> For example, a fine-grained policy might allow a customer service representative to access customer data only during business hours, only for customers in their assigned region, and only when handling an active support ticket. == Components ==

Attribute-based access control: Difference between revisions