Access Control: RBAC Modes
The agentic ERP platform implements one RBAC mode. We call them “BFAL” - “Block First, Allow Later”. In order to pass yourself through the RBAC firewall, you must always specify your intention of access. When you are working with the Agentic ERP system, the following information are needed with every single API calls:subProjectId.
They must be sent through filters JSON as a request parameter when you are trying to get certain processes or must be sent through a JSON object through request body.
For more details, please refer to the API Documentation on how to send these information.
Setting up RBAC Profile
- When you are trying to access the RBAC profile, this is important that you have configured the project configuration.
- Access could be given along three modes: GET, CREATE and UPDATE.
- For restricitive or selective access to the process resources, filter groups must be created at Project level.
- Each user must be added to the filter groups if they should be allowed to have access to the sensitive information.