May 26, 2018
Role based authorization for Catalyst
Role based access control is very simple every user has a list of roles, which that user is allowed to assume, and every restricted part of the app makes an assertion about the necessary roles.
If the user is a member in all of the required roles access is granted. Otherwise, access is denied.