Mark Piper
10/23/2022, 2:15 AMAlex Olivier (Cerbos)
10/23/2022, 2:43 AMMark Piper
10/23/2022, 2:55 AMtenant.custom_role_x.
Each resource policy in the scope would have a derived role activated by some custom_role_x
condition on the user principal, w/ each action on the scope policy overridden to evaluate ALLOW/DENY.
Appreciate the quick reply!!