Conflict Resolution in PBAC


#1

Ladon is a policy based access control (PBAC) app - so what would happen in case of conflict between two policies (related to actions) related to a group or an user access? How decisions would be taken? And is there any hierarchy of actions in case of conflict in policies for a group or an user?


#2

This has been answered in the chat (which is why this question was inactive), the priority is deny > allow > default (deny)