Authorization, the process in our applications that determines what users can perform on which resources, is a crucial requirement for every applic...
Some comments have been hidden by the post's author - find out more
For further actions, you may consider blocking this person and/or reporting abuse
I'll try to implement this in my Project!
Does it work with supabase?
Sure! Here's a guide for that: permit.io/blog/how-to-implement-rb...
Thanks for sharing, I'll check that!
Thanks for sharing! Super important topic
Glad you found it useful Eddie 😀
Really appreciate it 😌
Great Share Arindam!
The Ui makes it pretty simple!
Yes. The UI is intuitive and makes it easier 😀
Nice content, continue your good work.
Thanks for checking out Debarun 😀
Where and how do you learn these things to write this kind of comprehensive contents?
BTW great article!
Thanks a lot for the kind words!
I just try to share my learnings and write about them,
it works for me!
Cool approaches! Thank you for sharing.
Glad you, liked it!
Well written Tutorial Arindam!
Thanks for Checking out
Thanks for sharing
Glad you liked it!
When I started with web development I used to implement the same anti patterns. With your example of an Authorization Anti Pattern, it's important for people to understand why it is an anti pattern.
Regarding your example, the actions are governed by only the role and not the required permission which permits the action. With RBAC, a role should be a collection of permissions. An action should not be permitted to run based solely on the role it has, but rather the authorised actionable permission which it possesses.
Permit.io is a great way to pay money for a service that has a solution to your problem, a problem that you don't necessarily have the time and resources to implement these auth structure. That said, when you roll your own authorisation it's cardinal to understand that these anti patterns may work, but the efficacy and technical debt it creates is the actual problem at hand.
I'm stating this for any persons that might be starting with dev and may not know why this solution is better. As I once have.
Hey Arindam!
You made it so easy to add rbac authorization in nextjs. I am glad to land at this post after going through many useless articles. I must appreciate your work. You have explained every single thing in detail. Definitely gonna implement it on my upcoming project and will share results with you.
Hi Arindam!
Thanks a lot for sharing this. I tried it on my first project, and the outcome was incredible! Excited to try it on my next project. Great Work!