I’ve been reading through the laminas-permissions-acl documentation and am confused as to why it makes reference to a GenericRole class, or any type of roles, as that, to my knowledge, is RBAC, not ACLs. Also, in the documentation, it says:
For the purposes of this documentation:
- a resource is an object to which access is controlled.
- a role is an object that may request access to a resource.
Put simply, roles request access to resources. For example, if a parking attendant requests access to a car, then the parking attendant is the requesting role, and the car is the resource, since access to the car may not be granted to everyone.
This definition of ACLs, from Wikipedia, is the main source of my confusion:
An ACL specifies which users or system processes are granted access to objects, as well as what operations are allowed on given objects. Each entry in a typical ACL specifies a subject and an operation.
Can someone please clarify?