Authorization

Console uses Role-Based Access Control (RBAC) via Groups and Permissions.

How It Works

User → Groups → Permissions → Actions on Resources

Checking Permissions

Users inherit permissions from their groups. Check authorization:

1. Extract user_id from JWT token
2. Fetch user's groups
3. Check if any group has required permission

Implementation

See API Reference: Permissions for endpoints.

For Product Users

Managing permissions through the UI? See Permissions Guide.