Bailiff Demo - See Authorization in Action

Step 2

Create Resources & Assign Roles

Create resources (like repositories, documents). Then assign users to roles on those specific resources.

// Create a resource

await bailiff.create('repo:backend-api', 'Repository');

// Assign user to role on resource

await bailiff.assign(user, 'admin', 'repo:backend-api');

Resources

📦

repo:backend-api

Repository

3 users

📄

doc:spec-v2

Document

1 user

Assign Roles on repo:backend-api

Who has what role on this resource?

John Doe

john@example.com

Alice Smith

alice@example.com

Step 3

Test Permissions

Call check() in your code. Use the Audit Pane to see exactly why access was granted or denied.

// Your code stays clean:

if (await bailiff.check(user, 'edit', doc))

Trace ID: req_8f72a1

Allowed

Check Request

alice@example.com wants to EDIT document:123

Role Lookup

User has role 'Editor' on Team A

✓

Permission Found

Role 'Editor' grants 'can_edit'

Step 4

Control features, plans, and shared folders

Feature Flags

Gate features like advanced_reporting by plan or user segment.

Google Docs–style sharing

Share a folder with a team. All documents inside inherit access automatically.

Feature Flag Logic

// Check if user has feature enabled

if (await bailiff.check(user, 'view', 'feature:reporting')) {

showReportingDashboard();

}

Folder Inheritance

📂

Marketing Folder

Team Access

Inherits

📄

Q3 Strategy

Accessible

Ready to try it on your product?

Get help modeling your roles and lock in early pricing.

Join the waitlist

Ready to fix authorization?

Join the waitlist and be among the first to get enterprise-grade authorization without the enterprise bill.

See Bailiff in action

Define Roles & Resource Types

Roles (Global)

Permissions on Repository