Authorization & Role-based Access Control (RBAC)

Pricing plans often combine feature gating and usage-based models, requiring careful management of user authorization to control access to specific features or information. While Lago facilitates billing for various pricing structures, it does not directly address authorization, which is distinct from authentication; the former controls user permissions, while the latter verifies identity. Authorization can be complex due to its evolving nature, affecting multiple stakeholders and potentially leading to technical and business challenges. Several services have productized best practices for authorization: Oso offers an open-source approach with a declarative policy language called Polar, Warrant provides APIs for authorization and access control with a self-service dashboard, and Permit.io is a SaaS built on the open-source project Opal. Lago, being an open-source, API-first application, supports integration with these tools and aims to develop native integrations with popular third-party applications.