Hello Azure Community,
I'm currently developing a chatbot application for my organization, and I'm seeking guidance on implementing role-based access control (RBAC) using Azure Cosmos DB for data storage. Here's a breakdown of my requirements:
- Data Storage: I've stored employee data in Azure Cosmos DB in JSON format. if not in azure cosmos db where can we store the employees data and in which format we should store?
- Authentication: Users will log in to the chatbot, and based on their role (e.g., employee, assistant manager, manager, CTO &CEO), they should only have access to specific data.
- Access Control Requirements:
Employees should only be able to view their personal data.
Assistant managers should be able to access their own data and the data of employees reporting to them.
Managers should have access to their data, data of assistant managers reporting to them, and the data of employees under those assistant managers.
CTO & CEO should have access over all the employees in the company.
I'm specifically looking for guidance on how to efficiently query Cosmos DB to retrieve data based on user roles, as well as any best practices or recommended approaches for implementing RBAC in a chatbot application.
Any advice, suggestions, or examples from the Azure community would be greatly appreciated! Thank you for your help.