The C1 Data Model

Paul Querna·CTO, Co-founder C1·2 min

Learn how C1’s flexible data model mirrors complex app authorization structures by organizing resources, entitlements, and grants into nested, hierarchical trees.

Main Takeaways

Applications in C1 are modeled as containers for nested resources, like groups or repositories.
Entitlements represent the permissions tied to resources (e.g., group membership).
Grants map entitlements to users, who themselves are treated as resources in the system.
Resources can be organized hierarchically to reflect real-world structures, such as org → repo → team in GitHub.
This structure allows C1 to accurately represent and manage authorization models from a wide variety of systems.
The result is a flexible, scalable foundation for fine-grained access governance.