Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
権限について考える
Search
bmf_san
June 22, 2024
Programming
2
110
権限について考える
bmf_san
June 22, 2024
Tweet
Share
More Decks by bmf_san
See All by bmf_san
レーダーをつくる
bmf_san
0
18
契約テストとPactについて
bmf_san
0
61
5分でわかるSLO
bmf_san
2
84
自作HTTPルーターから新しいServeMuxへ
bmf_san
3
1.7k
古くなってしまったPHPフレームワークとPHPのバージョンアップ戦略
bmf_san
1
360
アジャイルワークショップ
bmf_san
0
140
Makuakeの認証基盤とRe-Architectureチーム
bmf_san
0
2.6k
天下一HTTPRouter武闘会.pdf
bmf_san
8
4.3k
ゆっくりHackerRank
bmf_san
0
130
Other Decks in Programming
See All in Programming
fieldalignmentから見るGoの構造体
kuro_kurorrr
0
130
KawaiiLT 登壇資料 キャリアとモチベーション
hiiragi
0
160
RuboCop: Modularity and AST Insights
koic
3
2.6k
M5UnitUnified 最新動向 2025/05
gob
0
140
By the way Google Cloud Next 2025に行ってみてどうだった
ymd65536
0
120
AIコーディングの理想と現実
tomohisa
36
39k
スモールスタートで始めるためのLambda×モノリス(Lambdalith)
akihisaikeda
2
400
20250429 - CNTUG Meetup #67 / DevOps Taiwan Meetup #69 - Deep Dive into Tetragon: Building Runtime Security and Observability with eBPF
tico88612
0
170
The Missing Link in Angular’s Signal Story: Resource API and httpResource
manfredsteyer
PRO
0
140
UMAPをざっくりと理解 / Overview of UMAP
kaityo256
PRO
3
1.5k
Embracing Ruby magic
vinistock
2
210
生成AIで知るお願いの仕方の難しさ
ohmori_yusuke
1
110
Featured
See All Featured
How to Think Like a Performance Engineer
csswizardry
23
1.6k
Building a Modern Day E-commerce SEO Strategy
aleyda
40
7.2k
The Language of Interfaces
destraynor
158
25k
Fireside Chat
paigeccino
37
3.4k
Fantastic passwords and where to find them - at NoRuKo
philnash
51
3.2k
Save Time (by Creating Custom Rails Generators)
garrettdimon
PRO
31
1.2k
Code Reviewing Like a Champion
maltzj
523
40k
Thoughts on Productivity
jonyablonski
69
4.6k
BBQ
matthewcrist
88
9.6k
The Illustrated Children's Guide to Kubernetes
chrisshort
48
49k
Become a Pro
speakerdeck
PRO
28
5.3k
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.3k
Transcript
ݖݶʹ͍ͭͯߟ͑Δ @bmf_san 2024.6.28
Who am Iʁ • Kenta Takeuchi • @bmf_san • bmf-san
• https://bmf-tech.com/
͢͜ͱ • ݖݶઃܭͱ͖߹͏ͱ͖ʹߟ͑ͦ͏ͳ͜ͱ
ݖݶͱ • γεςϜʹ͓͚Δݖݶͱɺ ʮϢʔβʔͷߦಈΛಛఆͷϧʔϧʹैͬͯ ੍ݶ͢Δʯ͜ͱ • ex. ΞΫηεݖݶɺૢ࡞ݖݶɺγεςϜϦ ιʔεͷར༻ݖݶ etc…
ݖݶΛߏ͢Δཁૉ • ୭͕ʢPrincipalʣ • ԿʹʢResourceʣ • ԿΛʢActionʣ • ڐՄ͢Δ͔ʢAllowʣ •
ڐՄ͠ͳ͍͔ʢDenyʣ
ݖݶઃܭͷख๏ • ACLʢAccess Control Listʣ • Ϣʔβʔ͝ͱʹݖݶΛઃఆ • ݖݶϦετͰཧ •
RBACʢRole Based Access Controlʣ • ϢʔβʔʹϩʔϧΛׂΓͯɺϩʔϧʹݖݶΛׂΓͯΔ • ABACʢAttribute Based Access Controlʣ • ϢʔβʔɺϦιʔεɺڥͳͲͷଐੑʹج͍ͮͯݖݶΛઃఆ
ݖݶઃܭͷ؍ • ݖݶͷద༻ൣғ • ݖݶͷ੍ޚର • ݖݶͷ੍ • ݖݶద༻ͷϨΠϠʔ •
ཧऀݖݶͷऔΓѻ͍ • ݖݶཧͷӡ༻ϑϩʔ
ݖݶઃܭͷ؍ • ݖݶͷద༻ൣғ • ݖݶ͕ద༻͞ΕΔൣғʢείʔϓʣ • ػೳతൣғ • σʔλతൣғ
ݖݶઃܭͷ؍ • ݖݶͷ੍ޚର • ݖݶ͕ద༻͞ΕΔج४ • ίϯςϯπ • ίϯςΩετ •
࣌ؒ
ݖݶઃܭͷ؍ • ݖݶͷ੍ • ݖݶؒͷؔੑ • ݖݶͷ༏ઌݖݶؒͷґଘؔͳͲ
ݖݶઃܭͷ؍ • ݖݶద༻ͷϨΠϠʔ • ݖݶ͕ద༻͞ΕΔϨΠϠʔ • ΞϓϦέʔγϣϯɺDBɺωοτϫʔ ΫɺOSͳͲ
ݖݶઃܭͷ؍ • ཧऀݖݶͷऔΓѻ͍ • ηΩϡϦςΟϦεΫʹ݁͢Δ • ࠷খݖݶͷݪଇɺݖݶׂɺࠪϩάɺ ۓٸ࣌ͷΦϖϨʔγϣϯඋͳͲϦεΫ ؍ͷߟྀ
ݖݶઃܭͷ؍ • ݖݶཧͷӡ༻ϑϩʔ • దʹݖݶ͕ཧ͞ΕΔͨΊӡ༻ϑϩʔ • ࠷খݖݶͷݪଇɺࠪɺҰݩཧͳͲ
ݖݶͱγεςϜಛੑ • ߏಛੑ • ֦ுੑ • ӡ༻ಛੑ • εέʔϥϏϦςΟ •
৴པੑ • ԣஅతಛੑ • ηΩϡϦςΟ
ݖݶͱγεςϜಛੑ • ֦ுੑ • ݖݶΛॊೈʹ֦ுͰ͖Δ͔Ͳ͏͔ • ૿ͨ͠ΓɺݮΒͨ͠Γɺׂͨ͠Γ • ϢʔβʔͷۀϑϩʔʹӨڹ͢Δ
ݖݶͱγεςϜಛੑ • εέʔϥϏϦςΟ • ॊೈͳݖݶઃܭͰ͋Δ΄ͲγεςϜͷෳࡶੑ σʔλྔͷ૿Ճ༧ଌ͞ΕΔ • Ϣʔβʔݖݶ͕ઢܗʹ૿Ճͨ͠߹ͷ ΩϟύγςΟϓϥϯχϯά •
εέʔϦϯά͍͔͢͠
ݖݶͱγεςϜಛੑ • ৴པੑ • ݖݶͷՃมߋ͕طଘͷݖݶʹѱӨڹ Λٴ΅͞ͳ͍Α͏ʹ͢Δ • ݖݶؒͷؔੑ͕ෳࡶͳ΄ͲࣄނΓ͢ ͍͔͠Εͳ͍
ݖݶͱγεςϜಛੑ • ηΩϡϦςΟ • ࠷খݖݶͷݪଇΛकΔɺര෩ܘΛখ͞ ͘͢ΔɺۓٸΦϖϨʔγϣϯͷඋͳͲઃ ܭӡ༻্ͷΛ͢Δ
ϕετϓϥΫςΟε͕Γ͍ͨʂ
ݖݶΛͬͱΔ • ࢀߟจݙ΄ͱΜͲͳ͍ͷͰࣄྫΛړΔ • άάΔͱΩʔϫʔυ৭ʑݟ͔ͭΔ͕ɺ”ݖ ݶ”ͱ͍͏ݴ༿͕Χόʔ͢ΔྖҬ͍ͷͰ পΔ • γεςϜͷཁ݅ʹ߹Θͤͯʮ΅͘ͷ͔Μ͕͑Δ ͍ͭ͞Αͷ͚Μ͛ΜʯΛࡧ͍͔ͯ͘͠͠ͳ͍
͓ΘΓ
Appendix • ݖݶཧͷઃܭʹ͍ͭͯௐͯΈͨ • https://bmf-tech.com/posts/ݖݶཧͷઃ ܭʹ͍ͭͯௐͯΈͨ
bmf_san
kuro_kurorrr
hiiragi
koic
gob
ymd65536
tomohisa
akihisaikeda
tico88612
manfredsteyer
kaityo256
vinistock
ohmori_yusuke
csswizardry
aleyda
destraynor
paigeccino
philnash
garrettdimon
maltzj
jonyablonski
matthewcrist
chrisshort
speakerdeck
thoeni
