Login

Fine Grained Authorization

Dev preview

Authorization built to scale

Enable user collaboration and granular access control in your applications using developer-friendly APIs

Empower your users

Frictionless collaboration

Allow your users and partners to collaborate securely

Easily manage groups, teams, organizations or any set of users
Enable content sharing with just a single API call

Embrace the possibilities

Granular access

Grant access to individual resources in your system

Get absolute control about the level of access you provide your users
Iterate. Make access control more granular as your product grows

Maximize reuse

Flexible and Centralized

Seamlessly manage authorization for all your products

Make authorization rules explicit and standardize how authorization is done across your company
Easily implement authorization for any new features or products

Built for developers

Empower your development teams to programatically define authorization logic and integrate with your existing systems

Read the docs

Features

  • Define your authorization model in a language that is easy to both read and write. This simplifies initial setup, permission auditing and future iteration.

    1type group
    2  relations
    3    define member as self
    4
    5type doc
    6  relations
    7    // parent folder
    8    define parent as self
    9    // user relate to documents as...
    10    define owner as self
    11    define viewer as self
    12    // permissions on the doc
    13    define read as viewer or owner or viewer from parent or owner from parent
    14    define write as owner or owner from parent
    15    define share as owner
    16    define change_owner as owner
    17
    18type folder
    19  relations
    20    // parent folder
    21    define parent as self
    22    // user relate to folders as...
    23    define owner as self
    24    define viewer as self
  • Use developer friendly APIs for everything: setting up your authorization model, versioning it, adding data to Auth0 FGA and performing authorization checks.

    1type group
    2  relations
    3    define member as self
    4
    5type doc
    6  relations
    7    // parent folder
    8    define parent as self
    9    // user relate to documents as...
    10    define owner as self
    11    define viewer as self
    12    // permissions on the doc
    13    define read as viewer or owner or viewer from parent or owner from parent
    14    define write as owner or owner from parent
    15    define share as owner
    16    define change_owner as owner
    17
    18type folder
    19  relations
    20    // parent folder
    21    define parent as self
    22    // user relate to folders as...
    23    define owner as self
    24    define viewer as self
  • No infrastructure to manage or deploy. Auth0 FGA is a managed SaaS that scales with your use. Just plug it to your system and get fine grained authorization working.

    1type group
    2  relations
    3    define member as self
    4
    5type doc
    6  relations
    7    // parent folder
    8    define parent as self
    9    // user relate to documents as...
    10    define owner as self
    11    define viewer as self
    12    // permissions on the doc
    13    define read as viewer or owner or viewer from parent or owner from parent
    14    define write as owner or owner from parent
    15    define share as owner
    16    define change_owner as owner
    17
    18type folder
    19  relations
    20    // parent folder
    21    define parent as self
    22    // user relate to folders as...
    23    define owner as self
    24    define viewer as self
1type group
2  relations
3    define member as self
4
5type doc
6  relations
7    // parent folder
8    define parent as self
9    // user relate to documents as...
10    define owner as self
11    define viewer as self
12    // permissions on the doc
13    define read as viewer or owner or viewer from parent or owner from parent
14    define write as owner or owner from parent
15    define share as owner
16    define change_owner as owner
17
18type folder
19  relations
20    // parent folder
21    define parent as self
22    // user relate to folders as...
23    define owner as self
24    define viewer as self

Fundamentals

  • Global

    Fine Grained Authorization globally replicates data to multiple regions, allowing reads and writes to any of them. This minimizes latency and increases availability through redundancy

  • Scalable

    Fine Grained Authorization is built to scale. It can store many millions of objects and continuously handle tens of thousands of authorization checks per second

  • Fast

    Fine Grained Authorization is optimized for fast authorization checks. It runs geographically close to its clients, and uses various techniques to minimize tail latency

Get started →

Set up Fine Grained Authorization and unleash the power of fine grained authorization for your app