Question 1

How to save goRBAC roles to a database?

Accepted Answer

goRBAC doesn't have built-in persistence. You need to serialize the RBAC instance, e.g., to JSON, and store it manually. The author provides a blog post with guidance, but it requires additional coding effort.

Question 2

goRBAC vs casbin for authorization in Go?

Accepted Answer

goRBAC focuses solely on RBAC with a simple, type-safe API, while casbin supports multiple models like ABAC and RBAC with policy enforcement. Choose goRBAC for lightweight RBAC; casbin for more complex, policy-driven scenarios.

Question 3

Can I use goRBAC with the Gin web framework?

Accepted Answer

Yes, but integration isn't provided out-of-the-box. You'll need to write custom middleware to check permissions in Gin handlers using goRBAC's IsGranted method, which adds development overhead.

Question 4

How to handle dynamic role changes in a running app?

Accepted Answer

goRBAC supports safe concurrent modifications, so you can use methods like Add or SetParent at runtime. However, you must manage thread safety in your application logic to avoid race conditions.

Question 5

What's the performance impact of deep inheritance chains?

Accepted Answer

goRBAC walks the inheritance hierarchy during checks, which can slow down permission verification for deep chains. Use utility functions like InherCircle to detect circular dependencies and optimize by flattening roles if performance is critical.

Question 6

How to implement custom permission types in goRBAC?

Accepted Answer

Implement the gorbac.Permission interface for your data structure. This allows custom fields and logic, as mentioned in the README under 'Also, you can implement gorbac.Permission', but it requires additional coding for serialization and comparison.

gorbac

What is gorbac?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions