The Road to RBAC: Evaluating and Implementing Authorization Systems
prodvana.ioSmall plug for my startup (hope that's ok!) -
If you're looking to sync roles from a SCIM directory (like Okta or Azure AD) this is super easy to do with WorkOS. Already being used by Vercel, Planetscale, Loom, and others.
This is a great write up! I’m curious, did any enterprise requirements influence this decision? Specifically supporting SCIM for synchronizing users with something like okta?
Author here, and yep! We eventually want to offer those kinds of enterprise features (SCIM, syncing group membership from Okta/other IdPs), so I kept that in mind throughout the process.
While I haven't gone too deep on that yet, I was thinking we'd take inspiration from how GitHub maps IdP groups to native GitHub teams. So first step here would be adding user groups/teams natively in the product.
Building anything in this space is so time-consuming and needs just to be commoditized.