Coarse-grained permissions define large sub components such as 'Application Management'. Using coarse-grained permissions you can assign permissions to roles based on these large sub components. Fine-grained permissions control access to smaller sub components or sub tasks of the component such as 'create application', 'delete application' etc. WSO2 Carbon maintains roles and permissions in the Carbon database, but it can also read users/roles from the configured User Store. |