DjangoCon Europe 2026

login

Role-based access control in Django - How we forked Guardian
.ical
2026-04-16 , AMPHITHEATRE

Django's built-in access control system is very good for basic operations and Guardian is a natural extension to the object level. However, our customers wanted more: a group hierarchy, just-in-time privileged access, delegating permissions to other users, custom permissions. This talk tells the story of how an authentication company built a role-based authorization system for Django.

Django's built-in access control system is very good for basic operations and Guardian is a natural extension to the object level. However, our customers wanted more: a group hierarchy, just-in-time privileged access, delegating permissions to other users, custom permissions. This talk tells the story of how an authentication company built a role-based authorization system for Django.

Topics:

Django Internals, DB, Rest APIs, Security

 Audience Level:

Intermediate
The speaker’s profile picture
Gergő Simonyi

I'm a senior backend engineer at authentik from Budapest, Hungary. My recent work has been focused on authorization, specifically RBAC and ABAC. I promote free software and I am an avid self-hoster. I have a background in mathematics.