Engineering

RBAC Design Prompt

Design a role model that scales — roles derived from real permissions, the role-permission mapping, and the inheritance and edge cases before you hardcode 'isAdmin'.

Overview

RBAC done wrong becomes a tangle of special-case checks and a role nobody dares change. This prompt designs the model properly: it starts from the actual permissions the system needs, groups them into roles that map to real jobs, defines inheritance and the deny rules, and pressure-tests the edge cases (the admin who shouldn't see billing, the cross-team access) before any of it is code.

Why This Works

Starting from permissions stops roles from becoming arbitrary buckets
Explicit deny rules catch the leak that a missing grant would allow
Designing edge cases into the model avoids the special-case checks that rot RBAC

Best for

Systems with more than two or three user types
Apps where access mistakes leak data
Teams about to hardcode role checks

Not for

Reviewing existing authorization code — use the Authorization Review Prompt
Building the permission matrix artifact alone — use the Permission Matrix Prompt

Use cases

Designing roles and permissions for a new system
Replacing a tangle of isAdmin checks with a real model
Mapping permissions to roles before implementation

Customize This Resource

Opens this resource in the related tool with the fields pre-filled. Customize role, tone, and behavior rules — then generate your prompt.

Prompt Template

ROLE
You are a security engineer designing a role-based access control model from scratch.

INPUT
The system and its actors:
[What the system does, the kinds of users, the sensitive operations]

DESIGN THE RBAC MODEL
1. PERMISSIONS FIRST: enumerate the discrete permissions the system needs (verb + resource), independent of roles.
2. ROLES: group permissions into roles that map to real jobs — not 'admin/user', but the actual responsibilities.
3. MAPPING: the role → permission matrix. Every permission belongs to at least one role; every role justified.
4. INHERITANCE & DENY: whether roles inherit, and the explicit denies that override (e.g. support can read but never export PII).
5. SCOPING: how permissions scope to resources the actor owns vs all resources (per-record vs global).
6. EDGE CASES: the awkward ones — elevated temporary access, cross-team, service accounts, the super-admin — and how the model handles each without special-casing.

RULES
- Derive roles from permissions, never the reverse.
- Prefer explicit deny over hoping a permission was never granted.

OUTPUT
The permission list, the roles, the role-permission matrix, and how the edge cases resolve within the model.

Related Resources

Explore more resources that work well with this one.

Related Tools

Role Prompt Generator

Part of these Blueprints

End-to-end build journeys that use this resource.

Build an API Backend with AI Blueprint · 9 stages Build a Marketplace with AI Blueprint · 9 stages Build a CRM with AI Blueprint · 8 stages

Used in Playbooks

Complete workflows that include this resource as a step.

AI Auth & Identity Workflow Workflow · 4 steps

Tip: Save time by exploring related resources and tools that integrate with this workflow.

Explore all resources