Skip to main content

Access Control: RBAC Modes

The agentic ERP platform implements one RBAC mode. We refer to them as “BFAL” - “Block First, Allow Later”. In order to pass yourself through the RBAC firewall, you must always specify your intention of access. When you are working with the Agentic ERP system, the following information are needed with every single API calls.
  • typeOfProcess
  • projectId
  • subProcessType
They must be sent through filters JSON as a request parameter when you are trying to get certain processes or must be sent through a JSON object through request body.
For more details, please refer to the API Documentation on how to send these information.

Setting up RBAC Profile

  • When you are trying to access the RBAC profile, this is important that you have done the project configuration.
  • The user account with which you will access the endpoints, must have access to the project.
  • Access could be given along three modes: GET, CREATE and UPDATE.
  • For restricitive or selective access to the process resources, filter groups must be created at Project level.
  • Each user must be added to the filter groups if they should be allowed to have access to the sensitive information.
For more help, this should be configured through our support team.