A new generation of Tailscale access controls

Tailscale has introduced grants as a new generation of access controls that simplify and enhance its original Access Control List (ACL) syntax by combining network and application capabilities, making them easier to write and read. Grants serve as a superset of ACLs, ensuring backward compatibility while offering new features like application capability extensions and routing awareness through the "via" field. This innovation allows for more powerful access control, as grants enable centralized management of both network access and user roles without requiring separate user databases. Users can gradually transition from ACLs to grants to leverage these advanced functionalities, as both can coexist within the same policy without a mandatory migration deadline.