RBAC

Role-Based Access Control is the mapping of a user or API key to a role, then mapping access controls to the role — thereby giving users or API keys access to resources. If the user or API key is not mapped to any roles, then they have no access. This helps with the Joiners-Movers-Leavers process by joining/moving/leaving users to roles and not specific resources.