{"id":509,"date":"2025-01-29T19:02:54","date_gmt":"2025-01-29T19:02:54","guid":{"rendered":"https:\/\/discovery.cevolution.co.uk\/ciam\/?page_id=509"},"modified":"2026-03-07T04:55:49","modified_gmt":"2026-03-07T04:55:49","slug":"access-control","status":"publish","type":"page","link":"https:\/\/discovery.cevolution.co.uk\/ciam\/authorize\/access-control\/","title":{"rendered":"Access Control"},"content":{"rendered":"\n<div class=\"wp-block-group alignfull ciamsticky is-layout-flow wp-block-group-is-layout-flow\" style=\"padding-top:var(--wp--preset--spacing--20);padding-right:var(--wp--preset--spacing--20);padding-bottom:var(--wp--preset--spacing--20);padding-left:var(--wp--preset--spacing--20)\">\n<div class=\"wp-block-group has-accent-5-background-color has-text-color has-background has-link-color wp-elements-5ec195d42a06e7b6e80074735a8c8919 has-global-padding is-layout-constrained wp-container-core-group-is-layout-ff778368 wp-block-group-is-layout-constrained\" style=\"border-width:1px;border-radius:10px;color:#353434;padding-right:var(--wp--preset--spacing--30);padding-left:var(--wp--preset--spacing--30);box-shadow:var(--wp--preset--shadow--deep)\">\n<div class=\"wp-block-group alignwide is-content-justification-space-between is-nowrap is-layout-flex wp-container-core-group-is-layout-8165f36a wp-block-group-is-layout-flex\" style=\"padding-top:var(--wp--preset--spacing--30);padding-bottom:var(--wp--preset--spacing--30)\"><p class=\"wp-block-site-title\"><a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\" target=\"_self\" rel=\"home\">Discover CIAM<\/a><\/p>\n\n\n<div class=\"wp-block-group is-content-justification-right is-nowrap is-layout-flex wp-container-core-group-is-layout-82baacbd wp-block-group-is-layout-flex\"><nav class=\"is-responsive items-justified-left wp-block-navigation is-content-justification-left is-layout-flex wp-container-core-navigation-is-layout-24a44033 wp-block-navigation-is-layout-flex\" aria-label=\"Navigation\" \n\t\t data-wp-interactive=\"core\/navigation\" data-wp-context='{\"overlayOpenedBy\":{\"click\":false,\"hover\":false,\"focus\":false},\"type\":\"overlay\",\"roleAttribute\":\"\",\"ariaLabel\":\"Menu\"}'><button aria-haspopup=\"dialog\" aria-label=\"Open menu\" class=\"wp-block-navigation__responsive-container-open\" \n\t\t\t\tdata-wp-on--click=\"actions.openMenuOnClick\"\n\t\t\t\tdata-wp-on--keydown=\"actions.handleMenuKeydown\"\n\t\t\t><svg width=\"24\" height=\"24\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 24 24\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M4 7.5h16v1.5H4z\"><\/path><path d=\"M4 15h16v1.5H4z\"><\/path><\/svg><\/button>\n\t\t\t\t<div class=\"wp-block-navigation__responsive-container  has-text-color has-contrast-color has-background has-accent-5-background-color\"  id=\"modal-1\" \n\t\t\t\tdata-wp-class--has-modal-open=\"state.isMenuOpen\"\n\t\t\t\tdata-wp-class--is-menu-open=\"state.isMenuOpen\"\n\t\t\t\tdata-wp-watch=\"callbacks.initMenu\"\n\t\t\t\tdata-wp-on--keydown=\"actions.handleMenuKeydown\"\n\t\t\t\tdata-wp-on--focusout=\"actions.handleMenuFocusout\"\n\t\t\t\ttabindex=\"-1\"\n\t\t\t>\n\t\t\t\t\t<div class=\"wp-block-navigation__responsive-close\" tabindex=\"-1\">\n\t\t\t\t\t\t<div class=\"wp-block-navigation__responsive-dialog\" \n\t\t\t\tdata-wp-bind--aria-modal=\"state.ariaModal\"\n\t\t\t\tdata-wp-bind--aria-label=\"state.ariaLabel\"\n\t\t\t\tdata-wp-bind--role=\"state.roleAttribute\"\n\t\t\t>\n\t\t\t\t\t\t\t<button aria-label=\"Close menu\" class=\"wp-block-navigation__responsive-container-close\" \n\t\t\t\tdata-wp-on--click=\"actions.closeMenuOnClick\"\n\t\t\t><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 24 24\" width=\"24\" height=\"24\" aria-hidden=\"true\" focusable=\"false\"><path d=\"m13.06 12 6.47-6.47-1.06-1.06L12 10.94 5.53 4.47 4.47 5.53 10.94 12l-6.47 6.47 1.06 1.06L12 13.06l6.47 6.47 1.06-1.06L13.06 12Z\"><\/path><\/svg><\/button>\n\t\t\t\t\t\t\t<div class=\"wp-block-navigation__responsive-container-content\" \n\t\t\t\tdata-wp-watch=\"callbacks.focusFirstElement\"\n\t\t\t id=\"modal-1-content\">\n\t\t\t\t\t\t\t\t<ul class=\"wp-block-navigation__container is-responsive items-justified-left wp-block-navigation\"><li data-wp-context=\"{ &quot;submenuOpenedBy&quot;: { &quot;click&quot;: false, &quot;hover&quot;: false, &quot;focus&quot;: false }, &quot;type&quot;: &quot;submenu&quot;, &quot;modal&quot;: null, &quot;previousFocus&quot;: null }\" data-wp-interactive=\"core\/navigation\" data-wp-on--focusout=\"actions.handleMenuFocusout\" data-wp-on--keydown=\"actions.handleMenuKeydown\" data-wp-on--mouseenter=\"actions.openMenuOnHover\" data-wp-on--mouseleave=\"actions.closeMenuOnHover\" data-wp-watch=\"callbacks.initMenu\" tabindex=\"-1\" class=\"wp-block-navigation-item has-child open-on-hover-click wp-block-navigation-submenu\"><a class=\"wp-block-navigation-item__content\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\"><span class=\"wp-block-navigation-item__label\">Authenticate<\/span><\/a><button data-wp-bind--aria-expanded=\"state.isMenuOpen\" data-wp-on--click=\"actions.toggleMenuOnClick\" aria-label=\"Authenticate submenu\" class=\"wp-block-navigation__submenu-icon wp-block-navigation-submenu__toggle\" ><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"12\" height=\"12\" viewBox=\"0 0 12 12\" fill=\"none\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M1.50002 4L6.00002 8L10.5 4\" stroke-width=\"1.5\"><\/path><\/svg><\/button><ul data-wp-on--focus=\"actions.openMenuOnFocus\" class=\"wp-block-navigation__submenu-container has-text-color has-contrast-color has-background has-accent-5-background-color wp-block-navigation-submenu\"><li data-wp-context=\"{ &quot;submenuOpenedBy&quot;: { &quot;click&quot;: false, &quot;hover&quot;: false, &quot;focus&quot;: false }, &quot;type&quot;: &quot;submenu&quot;, &quot;modal&quot;: null, &quot;previousFocus&quot;: null }\" data-wp-interactive=\"core\/navigation\" data-wp-on--focusout=\"actions.handleMenuFocusout\" data-wp-on--keydown=\"actions.handleMenuKeydown\" data-wp-on--mouseenter=\"actions.openMenuOnHover\" data-wp-on--mouseleave=\"actions.closeMenuOnHover\" data-wp-watch=\"callbacks.initMenu\" tabindex=\"-1\" class=\"wp-block-navigation-item has-child open-on-hover-click wp-block-navigation-submenu\"><a class=\"wp-block-navigation-item__content\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/\"><span class=\"wp-block-navigation-item__label\">Login<\/span><\/a><button data-wp-bind--aria-expanded=\"state.isMenuOpen\" data-wp-on--click=\"actions.toggleMenuOnClick\" aria-label=\"Login submenu\" class=\"wp-block-navigation__submenu-icon wp-block-navigation-submenu__toggle\" ><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"12\" height=\"12\" viewBox=\"0 0 12 12\" fill=\"none\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M1.50002 4L6.00002 8L10.5 4\" stroke-width=\"1.5\"><\/path><\/svg><\/button><ul data-wp-on--focus=\"actions.openMenuOnFocus\" class=\"wp-block-navigation__submenu-container has-text-color has-contrast-color has-background has-accent-5-background-color wp-block-navigation-submenu\"><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/passkeys\/\"><span class=\"wp-block-navigation-item__label\">Passkeys<\/span><\/a><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/passwordless\/\"><span class=\"wp-block-navigation-item__label\">Passwordless<\/span><\/a><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/federation\/\"><span class=\"wp-block-navigation-item__label\">Federation<\/span><\/a><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/social\/\"><span class=\"wp-block-navigation-item__label\">Social<\/span><\/a><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/sso\/\"><span class=\"wp-block-navigation-item__label\">SSO<\/span><\/a><\/li><\/ul><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/mfa\/\"><span class=\"wp-block-navigation-item__label\">MFA<\/span><\/a><\/li><\/ul><\/li><li data-wp-context=\"{ &quot;submenuOpenedBy&quot;: { &quot;click&quot;: false, &quot;hover&quot;: false, &quot;focus&quot;: false }, &quot;type&quot;: &quot;submenu&quot;, &quot;modal&quot;: null, &quot;previousFocus&quot;: null }\" data-wp-interactive=\"core\/navigation\" data-wp-on--focusout=\"actions.handleMenuFocusout\" data-wp-on--keydown=\"actions.handleMenuKeydown\" data-wp-on--mouseenter=\"actions.openMenuOnHover\" data-wp-on--mouseleave=\"actions.closeMenuOnHover\" data-wp-watch=\"callbacks.initMenu\" tabindex=\"-1\" class=\"wp-block-navigation-item has-child open-on-hover-click wp-block-navigation-submenu\"><a class=\"wp-block-navigation-item__content\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authorize\"><span class=\"wp-block-navigation-item__label\">Authorize<\/span><\/a><button data-wp-bind--aria-expanded=\"state.isMenuOpen\" data-wp-on--click=\"actions.toggleMenuOnClick\" aria-label=\"Authorize submenu\" class=\"wp-block-navigation__submenu-icon wp-block-navigation-submenu__toggle\" ><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"12\" height=\"12\" viewBox=\"0 0 12 12\" fill=\"none\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M1.50002 4L6.00002 8L10.5 4\" stroke-width=\"1.5\"><\/path><\/svg><\/button><ul data-wp-on--focus=\"actions.openMenuOnFocus\" class=\"wp-block-navigation__submenu-container has-text-color has-contrast-color has-background has-accent-5-background-color wp-block-navigation-submenu\"><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authorize\/access-control\/\"><span class=\"wp-block-navigation-item__label\">Access Control<\/span><\/a><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authorize\/consent\/\"><span class=\"wp-block-navigation-item__label\">Consent<\/span><\/a><\/li><\/ul><\/li><li data-wp-context=\"{ &quot;submenuOpenedBy&quot;: { &quot;click&quot;: false, &quot;hover&quot;: false, &quot;focus&quot;: false }, &quot;type&quot;: &quot;submenu&quot;, &quot;modal&quot;: null, &quot;previousFocus&quot;: null }\" data-wp-interactive=\"core\/navigation\" data-wp-on--focusout=\"actions.handleMenuFocusout\" data-wp-on--keydown=\"actions.handleMenuKeydown\" data-wp-on--mouseenter=\"actions.openMenuOnHover\" data-wp-on--mouseleave=\"actions.closeMenuOnHover\" data-wp-watch=\"callbacks.initMenu\" tabindex=\"-1\" class=\"wp-block-navigation-item has-child open-on-hover-click wp-block-navigation-submenu\"><a class=\"wp-block-navigation-item__content\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/manage\"><span class=\"wp-block-navigation-item__label\">Manage<\/span><\/a><button data-wp-bind--aria-expanded=\"state.isMenuOpen\" data-wp-on--click=\"actions.toggleMenuOnClick\" aria-label=\"Manage submenu\" class=\"wp-block-navigation__submenu-icon wp-block-navigation-submenu__toggle\" ><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"12\" height=\"12\" viewBox=\"0 0 12 12\" fill=\"none\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M1.50002 4L6.00002 8L10.5 4\" stroke-width=\"1.5\"><\/path><\/svg><\/button><ul data-wp-on--focus=\"actions.openMenuOnFocus\" class=\"wp-block-navigation__submenu-container has-text-color has-contrast-color has-background has-accent-5-background-color wp-block-navigation-submenu\"><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/manage\/user\/\"><span class=\"wp-block-navigation-item__label\">Users<\/span><\/a><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/manage\/brand\/\"><span class=\"wp-block-navigation-item__label\">Brand<\/span><\/a><\/li><\/ul><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/protect\"><span class=\"wp-block-navigation-item__label\">Protect<\/span><\/a><\/li><li class=\" wp-block-navigation-item wp-block-navigation-link\"><a class=\"wp-block-navigation-item__content\"  href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/blog\/\"><span class=\"wp-block-navigation-item__label\">Blog<\/span><\/a><\/li><\/ul>\n\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div><\/nav><\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-cover alignfull is-light has-custom-content-position is-position-top-center ciamcover\" style=\"margin-top:0;margin-bottom:0;padding-top:0;padding-right:0;padding-bottom:0;padding-left:0;min-height:840px;aspect-ratio:unset;\"><span aria-hidden=\"true\" class=\"wp-block-cover__background has-background-dim\"><\/span><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" src=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/20105658\/create-a-highly-detailed-and-sharp-focused-image-that-illustrates-the.png\" class=\"wp-block-cover__image-background wp-post-image\" alt=\"\" data-object-fit=\"cover\" data-object-position=\"50% 50%\" style=\"object-position:50% 50%;\" srcset=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/20105658\/create-a-highly-detailed-and-sharp-focused-image-that-illustrates-the.png 1024w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/20105658\/create-a-highly-detailed-and-sharp-focused-image-that-illustrates-the-300x225.png 300w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/20105658\/create-a-highly-detailed-and-sharp-focused-image-that-illustrates-the-768x576.png 768w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><div class=\"wp-block-cover__inner-container is-layout-flow wp-container-core-cover-is-layout-e603688c wp-block-cover-is-layout-flow\">\n<div class=\"wp-block-group is-vertical is-content-justification-stretch is-layout-flex wp-container-core-group-is-layout-64be3dce wp-block-group-is-layout-flex\" style=\"min-height:780px\">\n<div class=\"wp-block-group alignwide has-base-color has-text-color has-link-color wp-elements-be2b1745d2882773a8b7316e1beb1c11 has-global-padding is-content-justification-left is-layout-constrained wp-container-core-group-is-layout-0a0f4438 wp-block-group-is-layout-constrained\" style=\"padding-right:var(--wp--preset--spacing--50);padding-left:var(--wp--preset--spacing--50)\">\n<p class=\"has-x-large-font-size\">Control of access is a typical part of how a modern authorization system is modelled.<\/p>\n<\/div>\n<\/div>\n<\/div><\/div>\n\n\n\n<div class=\"wp-block-group alignfull is-style-section-5 has-global-padding is-layout-constrained wp-block-group-is-layout-constrained is-style-section-5--3\" style=\"margin-top:0;margin-bottom:0;padding-top:var(--wp--preset--spacing--60);padding-bottom:var(--wp--preset--spacing--60)\">\n<div class=\"wp-block-columns alignwide are-vertically-aligned-center is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:33.33%\">\n<p class=\"has-text-align-left has-neve-text-color-color has-text-color\">Access Control refers to the control of the access to which something or someone is permitted, and is commonly implemented around access control models.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:33.33%\">\n<figure class=\"wp-block-image aligncenter size-large is-resized is-style-rounded\"><img decoding=\"async\" src=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/4\/2024\/04\/19202418\/profile-769x1024.jpg\" alt=\"\" class=\"wp-image-6218\" style=\"aspect-ratio:1;object-fit:cover;width:192px;height:auto\"\/><\/figure>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:33.33%\">\n<p class=\"has-text-align-right has-neve-text-color-color has-text-color\">Hi, I&#8217;m <span class=\"popup-trigger popmake-378 \" data-popup-id=\"378\" data-do-default=\"0\">Peter Fernandez<\/span>, and as a CIAM expert, I want to share my experience building the modern Authorization paradigm of Access Control into modern applications.<\/p>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group alignfull is-style-section-5 has-accent-4-background-color has-background has-global-padding is-layout-constrained wp-block-group-is-layout-constrained is-style-section-5--4\" style=\"margin-top:0;margin-bottom:0;padding-top:var(--wp--preset--spacing--60);padding-bottom:var(--wp--preset--spacing--60)\">\n<div class=\"wp-block-columns alignwide is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:50%\"><h2 class=\"wp-block-heading has-text-align-left has-neve-text-color-color has-text-color\" id=\"user-authorization\">User Access<\/h2>\n\n\n<p class=\"has-text-align-left has-neve-text-color-color has-text-color\">Typically enabled via some <span class=\"popup-trigger popmake-1087\" data-popup-id=\"1087\" data-do-default=\"0\">user authentication<\/span> mechanism, authorization systems track and determine access based on a combination of Permission and\/or Consent \u2014 irrespective of whether someone is acting by themselves or on behalf of someone else.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:50%\"><h2 class=\"wp-block-heading has-text-align-right has-neve-text-color-color has-text-color\" id=\"machine-authorization\">Client Access<\/h2>\n\n\n<p class=\"has-text-align-right\">Controlling access for something other than a user will typically employ client-level authorization, with <span class=\"popup-trigger popmake-2133\" data-popup-id=\"2133\" data-do-default=\"0\">Client Credentials<\/span>, a service account, or some other authentication mechanism providing the context from which Permission(s) would be derived.<\/p>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group alignfull is-style-section-5 has-contrast-color has-accent-6-background-color has-text-color has-background has-link-color wp-elements-3e0dd5a4654dc7d62ceb128026b492b6 has-global-padding is-layout-constrained wp-block-group-is-layout-constrained is-style-section-5--5\" style=\"margin-top:0;margin-bottom:0;padding-top:var(--wp--preset--spacing--60);padding-bottom:var(--wp--preset--spacing--60)\">\n<div class=\"wp-block-columns alignwide is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:50%\"><h2 class=\"wp-block-heading has-text-align-left has-neve-text-color-color has-text-color\" id=\"user-authorization\">Mandatory Access<\/h2>\n\n\n<p class=\"has-text-align-left has-neve-text-color-color has-text-color\">Mandatory Access Control (MAC) \u2014 the most common form \u2014 is where access permissions are determined by a central authority, and which users cannot modify. MAC is often based on predefined policies that specify what users and systems can access based on various factors.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:50%\"><h2 class=\"wp-block-heading has-text-align-right has-neve-text-color-color has-text-color\" id=\"machine-authorization\">Discretionary Access<\/h2>\n\n\n<p class=\"has-text-align-right\">In contrast, Discretionary Access Control \u2014 a.k.a. DAC \u2014 offers the owner of a resource the discretion to determine who can access it and to what extent. This allows users or groups to share access (as part of delegation or otherwise) to resources based on personal preferences.<\/p>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group alignfull is-style-default has-global-padding is-layout-constrained wp-block-group-is-layout-constrained\" style=\"margin-top:0;margin-bottom:0;padding-top:var(--wp--preset--spacing--60);padding-bottom:var(--wp--preset--spacing--60)\">\n<div class=\"wp-block-columns alignwide are-vertically-aligned-center is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:66.66%\"><h2 class=\"wp-block-heading has-text-align-center has-nv-text-dark-bg-color has-text-color\" id=\"access-control\">Access Control vs Consent<\/h2>\n\n\n<p class=\"has-text-align-center has-nv-text-dark-bg-color has-text-color\">Access Control refers to the access to which something or someone is permitted, whilst Consent gives a user the ability to authorise the scope of operation(s) an application can perform when it\u2019s accessing their resources whilst acting on their behalf. Access Control and Consent will typically work hand-in-hand in a modern, secure and compliant Authorization implementation.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:33.33%\">\n<div data-wp-context=\"{}\" data-wp-interactive=\"core\/query\" data-wp-key=\"3\" data-wp-router-region=\"query-3\" class=\"wp-block-query alignwide has-global-padding is-layout-constrained wp-block-query-is-layout-constrained\"><ul class=\"columns-1 wp-block-post-template has-small-font-size is-layout-grid wp-container-core-post-template-is-layout-2fe809ea wp-block-post-template-is-layout-grid\"><li data-wp-key=\"post-template-item-2015\" class=\"wp-block-post post-2015 post type-post status-publish format-standard has-post-thumbnail hentry category-authorization tag-access-control tag-accesscontrolandconsent tag-consent\">\n\n<div class=\"wp-block-group has-global-padding is-layout-constrained wp-block-group-is-layout-constrained\" style=\"padding-bottom:var(--wp--preset--spacing--50)\"><h2 style=\"margin-top:var(--wp--preset--spacing--30);\" class=\"has-text-align-center wp-block-post-title has-medium-font-size\"><a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/2025\/03\/17\/authorized-access-control-consent\/\" target=\"_self\" >Access Control And Consent Convergence<\/a><\/h2>\n\n<figure style=\"aspect-ratio:2\/3;\" class=\"wp-block-post-featured-image\"><a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/2025\/03\/17\/authorized-access-control-consent\/\" target=\"_blank\"  ><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" src=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/17103549\/image-40.png\" class=\"attachment-post-thumbnail size-post-thumbnail wp-post-image\" alt=\"Access Control And Consent Convergence\" style=\"border-radius:20px;border-width:1px;width:100%;height:100%;object-fit:cover;box-shadow:var(--wp--preset--shadow--deep);\" srcset=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/17103549\/image-40.png 1024w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/17103549\/image-40-300x225.png 300w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/17103549\/image-40-768x576.png 768w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n<p class=\"has-text-align-center has-small-font-size\"><em>Click to read the blog post<\/em><\/p>\n<\/div>\n\n<\/li><\/ul><\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group alignfull is-style-default has-base-background-color has-background has-global-padding is-layout-constrained wp-block-group-is-layout-constrained\" style=\"margin-top:0;margin-bottom:0;padding-top:var(--wp--preset--spacing--60);padding-bottom:var(--wp--preset--spacing--60)\">\n<div class=\"wp-block-columns alignwide are-vertically-aligned-center is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:50%\"><h2 class=\"wp-block-heading has-text-align-left has-neve-text-color-color has-text-color\" id=\"permission\">Permission<\/h2>\n\n\n<p class=\"has-text-align-left has-neve-text-color-color has-text-color\">Permission(s) assigned to a user or a machine will typically play a part in determining Access Control. For a user, this may have a bearing on the user interface experience and will ultimately impact the function(s) the user can perform. For a machine \u2014&nbsp;i.e. an account in a non-user context&nbsp;\u2014&nbsp;permission will determine what functionality is available and, by virtue, the operations that can be performed.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:50%\"><h2 class=\"wp-block-heading has-text-align-center has-nv-text-dark-bg-color has-text-color\" id=\"policy\">Policy<\/h2>\n\n\n<p class=\"has-text-align-center has-nv-text-dark-bg-color has-text-color\">Access Control is also commonly associated with what is known as an Authorization Policy. Authorization Policy is typically comprised of distinct parts \u2014&nbsp;usually referred to as &#8220;points&#8221;: a Policy Decision Point (a.k.a. PDP), a Policy Enforcement Point (a.k.a. PEP), and a Policy Information Point (a.k.a. PIP) to name but a few \u2014&nbsp;and which get implemented is largely determined by the Access Control model(s) employed.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:50%\"><h2 class=\"wp-block-heading has-text-align-right has-nv-text-dark-bg-color has-text-color\" id=\"granularity\">Granularity<\/h2>\n\n\n<p class=\"has-text-align-right has-nv-text-dark-bg-color has-text-color\">Granularity relates to the enforcement of Access Control and, by virtue, the degree of access control precision required. Fine-grained Authorisation, for example, typically involves employing access control at a level nearest to the protected resource itself. In short, the lower (or finer) the granularity, the more precise you can be about exactly what access is controlled and how.<\/p>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group alignfull is-style-section-5 has-accent-4-background-color has-background has-global-padding is-layout-constrained wp-block-group-is-layout-constrained is-style-section-5--6\" style=\"margin-top:0;margin-bottom:0;padding-top:var(--wp--preset--spacing--60);padding-bottom:var(--wp--preset--spacing--60)\">\n<div class=\"wp-block-columns alignwide is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:66.66%\"><h2 class=\"wp-block-heading has-text-align-center has-nv-text-dark-bg-color has-text-color\" id=\"access-control-models\">Access Control Models<\/h2>\n\n\n<p class=\"has-text-align-center\">Access Control mechanisms enforce policies, preventing unauthorised access while allowing legitimate entities to engage with services securely in a <span class=\"popup-trigger popmake-1354\" data-popup-id=\"1354\" data-do-default=\"0\">B2C<\/span> and\/or <span class=\"popup-trigger popmake-418\" data-popup-id=\"418\" data-do-default=\"0\">B2B<\/span> SaaS solution environment. These mechanisms are largely implemented around models that provide <em>Role Based Access Control<\/em> (a.k.a. <span class=\"popup-trigger popmake-1623\" data-popup-id=\"1623\" data-do-default=\"0\">RBAC<\/span>), <em>Attribute Based Access Control<\/em> (a.k.a. ABAC) and <em>Relationship-Based Access Control<\/em> (a.k.a. <span class=\"popup-trigger popmake-2333\" data-popup-id=\"2333\" data-do-default=\"0\">ReBAC<\/span>), to name a few. Access Control is an essential component in any <span class=\"popup-trigger popmake-1185\" data-popup-id=\"1185\" data-do-default=\"0\">CIAM<\/span> integration to ensure secure implementation, and you can read more about it in the following article.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center has-accent-6-color has-text-color has-link-color wp-elements-7a7aa1894bb7d310c6df1c12660b8098 is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:33.33%\">\n<div data-wp-context=\"{}\" data-wp-interactive=\"core\/query\" data-wp-key=\"3\" data-wp-router-region=\"query-3\" class=\"wp-block-query alignwide has-global-padding is-layout-constrained wp-block-query-is-layout-constrained\"><ul class=\"columns-1 wp-block-post-template has-small-font-size is-layout-grid wp-container-core-post-template-is-layout-2fe809ea wp-block-post-template-is-layout-grid\"><li data-wp-key=\"post-template-item-2050\" class=\"wp-block-post post-2050 post type-post status-publish format-standard has-post-thumbnail hentry category-authorization tag-accesscontrol tag-authorizedaccesscontrol\">\n\n<div class=\"wp-block-group has-global-padding is-layout-constrained wp-block-group-is-layout-constrained\" style=\"padding-bottom:var(--wp--preset--spacing--50)\"><h2 style=\"margin-top:var(--wp--preset--spacing--30);\" class=\"has-text-align-center has-link-color wp-elements-d3aa2455ba577cfd2caca5670b1e85b5 wp-block-post-title has-text-color has-base-color has-medium-font-size\"><a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/2025\/03\/18\/authorized-access-control\/\" target=\"_self\" >Access In A Controlled Manner<\/a><\/h2>\n\n<figure style=\"aspect-ratio:2\/3;\" class=\"wp-block-post-featured-image\"><a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/2025\/03\/18\/authorized-access-control\/\" target=\"_blank\"  ><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" src=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/18135404\/create-a-highly-detailed-high-resolution-image-that-represents-the-concept.png\" class=\"attachment-post-thumbnail size-post-thumbnail wp-post-image\" alt=\"Access In A Controlled Manner\" style=\"border-radius:20px;border-width:1px;width:100%;height:100%;object-fit:cover;box-shadow:var(--wp--preset--shadow--deep);\" srcset=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/18135404\/create-a-highly-detailed-high-resolution-image-that-represents-the-concept.png 1024w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/18135404\/create-a-highly-detailed-high-resolution-image-that-represents-the-concept-300x225.png 300w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/03\/18135404\/create-a-highly-detailed-high-resolution-image-that-represents-the-concept-768x576.png 768w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n<p class=\"has-text-align-center has-base-color has-text-color has-link-color has-small-font-size wp-elements-cba245bb5c3525e4a79bb82067f4a767\"><em>Click to read the blog post<\/em><\/p>\n<\/div>\n\n<\/li><\/ul><\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group alignfull is-style-default has-global-padding is-layout-constrained wp-block-group-is-layout-constrained\" style=\"padding-top:var(--wp--preset--spacing--50);padding-bottom:var(--wp--preset--spacing--50)\">\n<div class=\"wp-block-columns alignwide is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-top is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:40%\">\n<h2 class=\"wp-block-heading\">Build vs Buy vs DIY<\/h2>\n\n\n\n<p class=\"has-text-align-left has-neve-text-color-color has-text-color\" style=\"padding-bottom:0\">You could build an in-house custom solution yourself&#8230;it&#8217;s certainly an option. Particularly if you have a team with the time, capacity, knowledge, and expertise to develop: <\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li style=\"margin-top:0;margin-bottom:0;padding-top:0;padding-bottom:0\"><span class=\"popup-trigger popmake-397\" data-popup-id=\"397\" data-do-default=\"0\">SSO<\/span>, <\/li>\n\n\n\n<li style=\"margin-top:0;margin-bottom:0;padding-bottom:0\">Leverage <span class=\"popup-trigger popmake-407\" data-popup-id=\"407\" data-do-default=\"0\">OIDC<\/span> and\/or <span class=\"popup-trigger popmake-470\" data-popup-id=\"470\" data-do-default=\"0\">SAML<\/span> for Authentication, <span class=\"popup-trigger popmake-523\" data-popup-id=\"523\" data-do-default=\"0\">Social<\/span> and\/or (Enterprise) <a data-type=\"page\" data-id=\"1136\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/federation\/\" target=\"_blank\" rel=\"noreferrer noopener\">Federation<\/a>, <\/li>\n\n\n\n<li style=\"margin-top:0;margin-bottom:0;padding-bottom:0\">Implement <a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/login\/passwordless\/\" data-type=\"page\" data-id=\"1149\">Passwordless<\/a>, <span class=\"popup-trigger popmake-1879\" data-popup-id=\"1879\" data-do-default=\"0\">Passkeys<\/span> and\/or <span class=\"popup-trigger popmake-428\" data-popup-id=\"428\" data-do-default=\"0\">MFA<\/span>, with optional<\/li>\n\n\n\n<li style=\"margin-top:0;margin-bottom:0\"><span class=\"popup-trigger popmake-467\" data-popup-id=\"467\" data-do-default=\"0\">OAuth 2.0<\/span> for <span class=\"popup-trigger popmake-2876\" data-popup-id=\"2876\" data-do-default=\"0\">API<\/span> Authorization, as well as<\/li>\n\n\n\n<li style=\"margin-top:0;margin-bottom:0;padding-bottom:0\">Deploy and maintain Attack Protection.<\/li>\n<\/ul>\n\n\n\n<p class=\"has-text-align-left has-neve-text-color-color has-text-color\">The alternative is to integrate with a <span class=\"popup-trigger popmake-2946 \" data-popup-id=\"2946\" data-do-default=\"0\">SaaS<\/span> solution provided by one of the popular vendors, and the cost of subscribing to one of these typically depends on the features you use and the number of active consumer identities you have.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center has-global-padding is-layout-constrained wp-block-column-is-layout-constrained\" style=\"flex-basis:20%\">\n<div data-wp-context=\"{}\" data-wp-interactive=\"core\/query\" data-wp-key=\"3\" data-wp-router-region=\"query-3\" class=\"wp-block-query alignwide has-global-padding is-layout-constrained wp-block-query-is-layout-constrained\"><ul class=\"columns-1 wp-block-post-template has-small-font-size is-layout-grid wp-container-core-post-template-is-layout-2fe809ea wp-block-post-template-is-layout-grid\"><li data-wp-key=\"post-template-item-127\" class=\"wp-block-post post-127 post type-post status-publish format-standard has-post-thumbnail hentry category-integration tag-buyvsdiy tag-diy\">\n\n<div class=\"wp-block-group has-global-padding is-layout-constrained wp-block-group-is-layout-constrained\" style=\"padding-bottom:var(--wp--preset--spacing--50)\"><h2 style=\"margin-top:var(--wp--preset--spacing--30);\" class=\"has-text-align-center wp-block-post-title has-medium-font-size\"><a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/2025\/02\/22\/diy-or-buy\/\" target=\"_self\" >Build, Buy or DIY your CIAM Solution?<\/a><\/h2>\n\n<figure style=\"aspect-ratio:2\/3;\" class=\"wp-block-post-featured-image\"><a href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/2025\/02\/22\/diy-or-buy\/\" target=\"_blank\"  ><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" src=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/01\/27141803\/create-a-high-resolution-detailed-diagonally-split-featured-image-focusing-on.png\" class=\"attachment-post-thumbnail size-post-thumbnail wp-post-image\" alt=\"Build, Buy or DIY your CIAM Solution?\" style=\"border-radius:20px;border-width:1px;width:100%;height:100%;object-fit:cover;box-shadow:var(--wp--preset--shadow--deep);\" srcset=\"https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/01\/27141803\/create-a-high-resolution-detailed-diagonally-split-featured-image-focusing-on.png 1024w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/01\/27141803\/create-a-high-resolution-detailed-diagonally-split-featured-image-focusing-on-300x225.png 300w, https:\/\/discovery-bucket-ha60ib.s3.eu-west-2.amazonaws.com\/wp-content\/uploads\/sites\/22\/2025\/01\/27141803\/create-a-high-resolution-detailed-diagonally-split-featured-image-focusing-on-768x576.png 768w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n<p class=\"has-text-align-center has-small-font-size\"><em>Click to read the blog post<\/em><\/p>\n<\/div>\n\n<\/li><\/ul><\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-top is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:40%\">\n<p>With vendor-based <span class=\"popup-trigger popmake-1185\" data-popup-id=\"1185\" data-do-default=\"0\">CIAM<\/span>, the cost is typically associated with the platform hosting the backend service(s) that deliver <a data-type=\"page\" data-id=\"6\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authenticate\/\" target=\"_blank\" rel=\"noreferrer noopener\">Authentication<\/a>, <a data-type=\"page\" data-id=\"9\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/authorize\/\" target=\"_blank\" rel=\"noreferrer noopener\">Authorization<\/a>, <a data-type=\"page\" data-id=\"18\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/manage\/\" target=\"_blank\" rel=\"noreferrer noopener\">Management<\/a> and <a data-type=\"page\" data-id=\"24\" href=\"https:\/\/discovery.cevolution.co.uk\/ciam\/protect\/\" target=\"_blank\" rel=\"noreferrer noopener\">Protection<\/a> from attack. <\/p>\n\n\n\n<p>With consumer-oriented SaaS, much of this infrastructure is already in place: cloud-based &#8220;compute&#8221;, database, network resources, etc., could be a necessity for your solution, and delivering these at scale may be something you also need to do.<\/p>\n\n\n\n<p>Deploying a standards-based (open-source) DIY solution within your existing infrastructure might provide a more cost-effective approach, delivering secure and robust <span class=\"popup-trigger popmake-1185\" data-popup-id=\"1185\" data-do-default=\"0\">CIAM<\/span> without the need to build everything yourself and with the added benefit of more flexibility and control.<\/p>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-group alignfull has-global-padding is-layout-constrained wp-container-core-group-is-layout-0d85de7f wp-block-group-is-layout-constrained\" style=\"margin-top:0;margin-bottom:0;padding-top:var(--wp--preset--spacing--60);padding-bottom:var(--wp--preset--spacing--60)\">\n<div class=\"wp-block-group alignwide is-layout-flow wp-block-group-is-layout-flow\">\n<p class=\"has-text-align-center is-style-text-display is-style-text-display--7\" style=\"font-style:normal;font-weight:400\">Questions? Comments? <br>Feel free to reach out!<\/p>\n\n\n\n<div style=\"height:var(--wp--preset--spacing--40)\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-social-links has-large-icon-size has-icon-color is-style-logos-only is-content-justification-center is-layout-flex wp-container-core-social-links-is-layout-a89b3969 wp-block-social-links-is-layout-flex\"><li class=\"wp-social-link wp-social-link-linkedin has-contrast-color wp-block-social-link\"><a href=\"https:\/\/www.linkedin.com\/in\/pgfernandez\/\" class=\"wp-block-social-link-anchor\"><svg width=\"24\" height=\"24\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M19.7,3H4.3C3.582,3,3,3.582,3,4.3v15.4C3,20.418,3.582,21,4.3,21h15.4c0.718,0,1.3-0.582,1.3-1.3V4.3 C21,3.582,20.418,3,19.7,3z M8.339,18.338H5.667v-8.59h2.672V18.338z M7.004,8.574c-0.857,0-1.549-0.694-1.549-1.548 c0-0.855,0.691-1.548,1.549-1.548c0.854,0,1.547,0.694,1.547,1.548C8.551,7.881,7.858,8.574,7.004,8.574z M18.339,18.338h-2.669 v-4.177c0-0.996-0.017-2.278-1.387-2.278c-1.389,0-1.601,1.086-1.601,2.206v4.249h-2.667v-8.59h2.559v1.174h0.037 c0.356-0.675,1.227-1.387,2.526-1.387c2.703,0,3.203,1.779,3.203,4.092V18.338z\"><\/path><\/svg><span class=\"wp-block-social-link-label screen-reader-text\">LinkedIn<\/span><\/a><\/li>\n\n<li class=\"wp-social-link wp-social-link-threads has-contrast-color wp-block-social-link\"><a href=\"https:\/\/www.threads.net\/@petefern\" class=\"wp-block-social-link-anchor\"><svg width=\"24\" height=\"24\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M16.3 11.3c-.1 0-.2-.1-.2-.1-.1-2.6-1.5-4-3.9-4-1.4 0-2.6.6-3.3 1.7l1.3.9c.5-.8 1.4-1 2-1 .8 0 1.4.2 1.7.7.3.3.5.8.5 1.3-.7-.1-1.4-.2-2.2-.1-2.2.1-3.7 1.4-3.6 3.2 0 .9.5 1.7 1.3 2.2.7.4 1.5.6 2.4.6 1.2-.1 2.1-.5 2.7-1.3.5-.6.8-1.4.9-2.4.6.3 1 .8 1.2 1.3.4.9.4 2.4-.8 3.6-1.1 1.1-2.3 1.5-4.3 1.5-2.1 0-3.8-.7-4.8-2S5.7 14.3 5.7 12c0-2.3.5-4.1 1.5-5.4 1.1-1.3 2.7-2 4.8-2 2.2 0 3.8.7 4.9 2 .5.7.9 1.5 1.2 2.5l1.5-.4c-.3-1.2-.8-2.2-1.5-3.1-1.3-1.7-3.3-2.6-6-2.6-2.6 0-4.7.9-6 2.6C4.9 7.2 4.3 9.3 4.3 12s.6 4.8 1.9 6.4c1.4 1.7 3.4 2.6 6 2.6 2.3 0 4-.6 5.3-2 1.8-1.8 1.7-4 1.1-5.4-.4-.9-1.2-1.7-2.3-2.3zm-4 3.8c-1 .1-2-.4-2-1.3 0-.7.5-1.5 2.1-1.6h.5c.6 0 1.1.1 1.6.2-.2 2.3-1.3 2.7-2.2 2.7z\"\/><\/svg><span class=\"wp-block-social-link-label screen-reader-text\">Threads<\/span><\/a><\/li>\n\n<li class=\"wp-social-link wp-social-link-bluesky has-contrast-color wp-block-social-link\"><a href=\"https:\/\/bsky.app\/profile\/petergf24.bsky.social\" class=\"wp-block-social-link-anchor\"><svg width=\"24\" height=\"24\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M6.3,4.2c2.3,1.7,4.8,5.3,5.7,7.2.9-1.9,3.4-5.4,5.7-7.2,1.7-1.3,4.3-2.2,4.3.9s-.4,5.2-.6,5.9c-.7,2.6-3.3,3.2-5.6,2.8,4,.7,5.1,3,2.9,5.3-5,5.2-6.7-2.8-6.7-2.8,0,0-1.7,8-6.7,2.8-2.2-2.3-1.2-4.6,2.9-5.3-2.3.4-4.9-.3-5.6-2.8-.2-.7-.6-5.3-.6-5.9,0-3.1,2.7-2.1,4.3-.9h0Z\"><\/path><\/svg><span class=\"wp-block-social-link-label screen-reader-text\">Bluesky<\/span><\/a><\/li>\n\n<li class=\"wp-social-link wp-social-link-wordpress has-contrast-color wp-block-social-link\"><a href=\"https:\/\/wordpress.com\/reader\/users\/peterfernandez2016\" class=\"wp-block-social-link-anchor\"><svg width=\"24\" height=\"24\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M12.158,12.786L9.46,20.625c0.806,0.237,1.657,0.366,2.54,0.366c1.047,0,2.051-0.181,2.986-0.51 c-0.024-0.038-0.046-0.079-0.065-0.124L12.158,12.786z M3.009,12c0,3.559,2.068,6.634,5.067,8.092L3.788,8.341 C3.289,9.459,3.009,10.696,3.009,12z M18.069,11.546c0-1.112-0.399-1.881-0.741-2.48c-0.456-0.741-0.883-1.368-0.883-2.109 c0-0.826,0.627-1.596,1.51-1.596c0.04,0,0.078,0.005,0.116,0.007C16.472,3.904,14.34,3.009,12,3.009 c-3.141,0-5.904,1.612-7.512,4.052c0.211,0.007,0.41,0.011,0.579,0.011c0.94,0,2.396-0.114,2.396-0.114 C7.947,6.93,8.004,7.642,7.52,7.699c0,0-0.487,0.057-1.029,0.085l3.274,9.739l1.968-5.901l-1.401-3.838 C9.848,7.756,9.389,7.699,9.389,7.699C8.904,7.67,8.961,6.93,9.446,6.958c0,0,1.484,0.114,2.368,0.114 c0.94,0,2.397-0.114,2.397-0.114c0.485-0.028,0.542,0.684,0.057,0.741c0,0-0.488,0.057-1.029,0.085l3.249,9.665l0.897-2.996 C17.841,13.284,18.069,12.316,18.069,11.546z M19.889,7.686c0.039,0.286,0.06,0.593,0.06,0.924c0,0.912-0.171,1.938-0.684,3.22 l-2.746,7.94c2.673-1.558,4.47-4.454,4.47-7.771C20.991,10.436,20.591,8.967,19.889,7.686z M12,22C6.486,22,2,17.514,2,12 C2,6.486,6.486,2,12,2c5.514,0,10,4.486,10,10C22,17.514,17.514,22,12,22z\"><\/path><\/svg><span class=\"wp-block-social-link-label screen-reader-text\">WordPress<\/span><\/a><\/li>\n\n<li class=\"wp-social-link wp-social-link-x has-contrast-color wp-block-social-link\"><a href=\"https:\/\/x.com\/petergfern\" class=\"wp-block-social-link-anchor\"><svg width=\"24\" height=\"24\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" aria-hidden=\"true\" focusable=\"false\"><path d=\"M13.982 10.622 20.54 3h-1.554l-5.693 6.618L8.745 3H3.5l6.876 10.007L3.5 21h1.554l6.012-6.989L15.868 21h5.245l-7.131-10.378Zm-2.128 2.474-.697-.997-5.543-7.93H8l4.474 6.4.697.996 5.815 8.318h-2.387l-4.745-6.787Z\" \/><\/svg><span class=\"wp-block-social-link-label screen-reader-text\">X<\/span><\/a><\/li><\/ul>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Access Control refers to the control of the access to which something or someone is permitted, and is commonly implemented around access control models. Hi, I&#8217;m Peter Fernandez, and as a CIAM expert, I want to share my experience building the modern Authorization paradigm of Access Control into modern applications. User Access Typically enabled via [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":2156,"parent":9,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"page-no-title","meta":{"authenticate":"","authentication":"","authenticatedMethod":"","authenticatedMember":"","authorizedPermissions":[],"footnotes":"","_links_to":"","_links_to_target":""},"class_list":["post-509","page","type-page","status-publish","has-post-thumbnail","hentry"],"aioseo_notices":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/pages\/509","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/comments?post=509"}],"version-history":[{"count":24,"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/pages\/509\/revisions"}],"predecessor-version":[{"id":5375,"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/pages\/509\/revisions\/5375"}],"up":[{"embeddable":true,"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/pages\/9"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/media\/2156"}],"wp:attachment":[{"href":"https:\/\/discovery.cevolution.co.uk\/ciam\/wp-json\/wp\/v2\/media?parent=509"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}