What is ABAC
Attribute-Based Access Control (ABAC) is a very flexible authorization model. Unlike RBAC, ABAC uses various attributes to dynamically determine whether an operation can be allowed.
ABAC Application Scenario
Authorize editing privileges for Editor A for a specific book.
Granting a user access to a document when the document belongs to the same department as the user's department.
Prohibit people from department A from accessing system B until 9:00 a.m.
Prohibit access to System A as an administrator in places other than Shanghai.
Overall, you can granularly authorize the circumstances under which a resource has a particular permission.