Skip to content
Latchkey

Attribute-Based Access Control (ABAC) - CI/CD Glossary Definition

Attribute-based access control decides access by evaluating attributes of the subject, resource, action, and environment against a policy, allowing fine-grained, context-aware rules.

RBAC vs ABAC

RBAC checks role membership; ABAC checks conditions like "branch is main and requester is in team X". ABAC is more flexible but harder to audit.

In CI/CD

Cloud OIDC trust conditions are ABAC-like: access is granted only when token claims (repository, ref, environment) match the policy.

Related guides

Tired of flaky CI? Latchkey auto-heals failed jobs and retries them for you. Start free →