Stytch Android/com.stytch.sdk.b2b.rbac/RBAC/isAuthorized

isAuthorized

abstract suspend fun isAuthorized(resourceId: String, action: String): Boolean

abstract fun isAuthorized(resourceId: String, action: String, callback: (Boolean) -> Unit)

Determines whether the logged-in member is allowed to perform the specified action on the specified resource. Returns true if the member can perform the action, false otherwise.

If the member is not logged in, this method will always return false. If the resource or action provided are not valid for the configured RBAC policy, this method will return false.

To check authorization using cached data, use {@link isAuthorizedSync}. Remember - authorization checks for sensitive actions should always occur on the backend as well.