← Graph

How to model sensitive tasks in FGA?

question 3 connections

Audience question asking how Yatish Mehta's sensitive-task rule (only admins can edit a sensitive task) is modeled in the FGA schema. Answer: create a separate entity (e.g. 'sensitive_task') with a relationship like 'is_sensitive' to the task using the same ids — even if 'sensitive' is not a model in the domain, it can exist in the authorization model.

answer_summary
Introduce a sensitive_task entity related to task via an 'is_sensitive' relation; the authorization model can hold entities that aren't domain models.
question How to model sensitive tasks in FGA?
about
Fine-Grained Authorization concept
About modeling special-case rules in an FGA schema.
question How to model sensitive tasks in FGA?
about
granity tool
Answered in the context of granity's schema.
question How to model sensitive tasks in FGA?
asked_at
No 'Pundit' Intended talk
Audience Q&A following the talk.

Provenance

Created in
No 'Pundit' Intended — Rails Authorization by Yatish Mehta 2026-04-18 07:44