Skip to content

Access-Control-List

What is Access Control List?

The Access Control List (ACL) feature is a type of feature developed to provide comprehensive control over user access and permissions within a Risk system. By allowing end users to create customized lists containing various types of items, such as user IDs, merchant IDs, or BIN6 IDs, the ACL feature enables granular control over access rights.

Access Control List Structure
Access Control List uses a naming pattern like this:

<DocumentType>/<ListEventType>/<ListName>/<Aggregation>/<Type>

ex:  "userId/access-control/UserblockedList/equals/bool?"

Functionality

The Access Control List feature allows end users to create and manage lists that hold specific information, such as blocked user IDs, blocked merchant IDs, or an allowed list for various entities(allowed merchant IDs, allowed BIN6). Users have the flexibility to define the items included in each list based on their unique requirements. The system utilizes these lists to determine whether an input variable matches the defined criteria, subsequently enabling or denying certain rules.

Key Features

  • Customizable Lists

    The ACL feature empowers users to create and define their own lists, tailoring them to suit their specific needs. Lists can contain various types of items, such as
    user IDs, merchant IDs, or BIN6 IDs, allowing for versatile control over access and permissions.

  • Rule-Based Decision Making

    The ACL feature evaluates input variables against the defined lists and rules. Based on the outcome, the system determines whether to allow or deny a particular
    rule. This dynamic decision-making process enhances security and access control within the system.

  • Metadata Storage

    Each list item in the ACL feature holds metadata information such as created date, updated date, a reason to add, and comments. This metadata provides additional
    context and documentation for each list item, facilitating efficient management and auditing of access control.

  • MongoDB Integration

    The ACL feature utilizes MongoDB as the storage solution for the access control list information and its associated metadata. Each list is stored as a document in
    MongoDB, and the metadata for each list item is stored in a separate metadata collection.