Which access control model should I choose for a SaaS app?

For most multi-tenant SaaS applications, a combination of RBAC (Role-Based Access Control) for organizational roles and tenant scoping is recommended for the best balance of scalability and simplicity.

What is ReBAC and when should I use it?

Relationship-Based Access Control (ReBAC) models permissions based on object relationships. Use it for complex social graphs or document-sharing systems similar to Google Docs where permissions depend on ownership and folder nesting.

Can this skill help with security audits?

Absolutely. It provides the theoretical foundation and best practices needed to review existing authorization logic and identify missing permission checks or flawed role hierarchies.

Does this skill support specific PHP frameworks?

Yes, it includes guidance and implementation patterns specifically for Symfony Voters and Laravel Gates, as well as framework-agnostic Domain-Driven Design patterns.

Access Control & Authorization Architect

Name: Access Control & Authorization Architect
Author: dykyi-roman

bydykyi-roman

•

보안 및 테스팅

Provides a comprehensive knowledge base for implementing ACL, RBAC, ABAC, and ReBAC security models in PHP applications.

This skill equips Claude with specialized knowledge to design, audit, and implement sophisticated authorization systems. It covers a wide spectrum of access control models—ranging from simple Access Control Lists (ACL) to complex Attribute-Based (ABAC) and Relationship-Based (ReBAC) systems like Google Zanzibar. By providing decision matrices, role hierarchy patterns, and concrete PHP implementation examples for Symfony and Laravel, it helps developers choose the right security architecture for multi-tenant SaaS, enterprise systems, or compliance-heavy applications.

주요 기능

01Structured role hierarchy and permission inheritance templates

02PHP implementation patterns for Symfony Voters and Laravel Gates

03Decision matrices for selecting authorization strategies based on project requirements

04Policy evaluation logic for attribute-based and relationship-based security

05Detailed comparison of ACL, RBAC, ABAC, and ReBAC models

0647 GitHub stars

사용 사례

01Generating attribute-based access rules for healthcare or finance compliance

02Auditing PHP codebases for security vulnerabilities in permission logic

03Designing multi-tenant SaaS authorization systems with complex role hierarchies

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add dykyi-roman/awesome-claude-code access-control-knowledge

For use in Claude.ai and ChatGPT

Download Skill