Notes/docs/Guides/Django REST Framework/8 - Role-Based Access Control (RBAC) (Work in progress).md


(Work in progress)
### Role-Based Access Control (RBAC)
There will be instances where you will need to restrict what is returned to the user. 
- A student may want to see only the subjects they're currently enrolled in.
- An author would not want to edit a book they don't own
- A bank clerk shouldn't be able to delete bank transactions

These restrictions and rules all fall under the concept of Role-Based Access Control or RBAC. Whether you're using...
vault backup: 2024-11-02 19:00:12 Affected files: docs/Guides/Django REST Framework/7 - Writing API Endpoints.md docs/Guides/Django REST Framework/8 - Role-Based Access Control (RBAC) (Work in progress).md docs/Guides/Django REST Framework/9 - Viewsets vs API Views (Work in progress).md docs/Guides/Django REST Framework/_resources/7 - Writing API Endpoints/6a3d52433be9340109bf93795854e3b8_MD5.jpeg docs/Guides/Django REST Framework/_resources/7 - Writing API Endpoints/9c1af7c5c436fec290cc1dbda9c9ac5c_MD5.jpeg 2024-11-02 19:00:13 +08:00
			`(Work in progress)`
			`### Role-Based Access Control (RBAC)`
			`There will be instances where you will need to restrict what is returned to the user.`
			`- A student may want to see only the subjects they're currently enrolled in.`
			`- An author would not want to edit a book they don't own`
			`- A bank clerk shouldn't be able to delete bank transactions`

			`These restrictions and rules all fall under the concept of Role-Based Access Control or RBAC. Whether you're using...`