Catalyst::plugin::authorization::roles provides role-based authorization (access control) for catalyst applications.

role based access control is very simple: every user has a list of roles, which that user is allowed to assume, and every restricted part of the app makes an assertion about the necessary roles.

with assert_user_roles, if the user is a member in all of the required roles access is granted. otherwise, access is denied. with assert_any_user_role it is enough that the user is a member of one role.

there are alternative approaches to do this on a per action basis, see catalyst::actionrole::acl.

catalyst is an elegant model-view-controller web application framework written in perl.