Least privilege

Give users, processes, and components only the permissions and access they absolutely need. Reduces the risk of unintended behaviors and increases security.

Examples

  • You're setting up a cloud database that allows different access levels. Instead of giving full read/write permissions to all developers, you limit access so that only admins can modify the schema, while regular developers have read-only access. This reduces the chance of accidental schema changes that could disrupt production.
  • For a user-facing app, you configure permissions so that logged-in users can only access their own data. If a user tries to access someone else's data, they are automatically denied access by default permissions settings, avoiding unnecessary data exposure.