This section has guides, concepts and examples that help you define an authorization model.
When to use
The content in this section is useful:
- If you are starting with Okta FGA and want to learn how to represent your organization's/system's authorization needs.
- If you are working on iterating on an authorization model you previously defined.
Content
Getting Started
How to create an authorization model for your system starting from the requirements.
Roles and Permissions
Learn to model roles for users at the object level and model permissions for those roles.
Parent-Child objects
Learn to model access based on parent-child relationships, e.g.: folders and documents.
Public Access
Learn to model giving everyone specific access to an object, e.g.: everyone can read.
Contextual and Time-Based Authorization
Learn to model and authorize when IP Address, time, and other dynamic and contextual restrictions are involved.
Authorization Through Organization Context
Learn to model and authorize when a user belongs to multiple organizations.
Modeling Concepts
Learn the underlying concepts/building blocks that can be used to build any model.