A Grant Kit allows you to automatically control and right-size permissions to sensitive resources. Grant Kits allow you to define Workflows (how someone should get access), Policies (if they should get access), and an Outputs template (how and where you want the automated permission grants to materialize) for a specific Target resource.

Grant Kit Spec

resource "abbey_grant_kit" "this" {
    workflow = { ... } # _how_ an identity should get access.
    policies = { ... } # _if_ an identity should get access.
    output = { ... }   # _how_ and _where_ permission grants should be materialized.
}