How best to model Application Roles and Permission

Hi I want to create a way to specify roles and permission for an the api of my application.
I was wondering how to model it.

I was thinking something as simple as
taking to consideration:

Please advice.

Best Regards,
Stevenson Lee

Hi Lee,

If this model captures all the scenarios of your application then it looks great. Keeping it simple is the way to go IMO.

If you will run into more complex structures of identity management then I suggest you check more resources:

Hi thanks for the comment.
After thinking some more.
What would be the problems of just using labels as roles?

Best Regards,
Stevenson Lee