mirror of
https://github.com/lemeow125/Notes.git
synced 2024-11-17 12:19:25 +08:00
Keannu Bernasol
848c9cdd58
Affected files: docs/Guides/Django REST Framework/7 - Writing API Endpoints.md docs/Guides/Django REST Framework/8 - Role-Based Access Control (RBAC) (Work in progress).md docs/Guides/Django REST Framework/9 - Viewsets vs API Views (Work in progress).md docs/Guides/Django REST Framework/_resources/7 - Writing API Endpoints/6a3d52433be9340109bf93795854e3b8_MD5.jpeg docs/Guides/Django REST Framework/_resources/7 - Writing API Endpoints/9c1af7c5c436fec290cc1dbda9c9ac5c_MD5.jpeg
9 lines
No EOL
457 B
Markdown
9 lines
No EOL
457 B
Markdown
|
|
(Work in progress)
|
|
### Role-Based Access Control (RBAC)
|
|
There will be instances where you will need to restrict what is returned to the user.
|
|
- A student may want to see only the subjects they're currently enrolled in.
|
|
- An author would not want to edit a book they don't own
|
|
- A bank clerk shouldn't be able to delete bank transactions
|
|
|
|
These restrictions and rules all fall under the concept of Role-Based Access Control or RBAC. Whether you're using... |