Overview

Infisical's Attribute-based Access Controls (ABAC) enable dynamic, attribute-driven permissions for both users and machine identities. ABAC enforces fine-grained, context-aware access controls using metadata attributes—stored as key-value pairs—either attached to identities or provided during authentication.

<CardGroup cols={2}> <Card title="Users" icon="square-1" href="./managing-user-metadata"> Manage user metadata manually or automatically via SAML logins. </Card> <Card title="Machine Identities" icon="square-2" href="./managing-machine-identity-attributes"> Set metadata manually like users and access additional attributes provided during machine authentication (for example, OIDC claims). </Card> </CardGroup>