Kanidm: A simple, secure and fast identity managem...

[nick__m]

The set of possible Authorization policies without having some form of Authentication is quite limited ;)

[politician]

Within ABAC schemes, Authorization is a boolean function over (Request, Principle, Environment). If you zero the Principle, you can still represent a large number of unique policies considering just the Request and the Environment.