Great post! When starting a green field project, how would you approach the choice between the two options? Are there specific use cases in which one would be preferable over the other?
So this is basically a tool for generating and testing Rego policies from an OpenAPI spec. Very cool!
Do package names have to match API routes? Can I create a policy that is shared by multiple endpoints?
That's been my experience too. In addition to attracting new engineers that want to contribute to open source, it's an opportunity to showcase your organization's (hopefully good) coding practices to candidates.
This goes straight to the core of what makes authorization in complex applications such a challenge. You hit the nail on the head when you say that authorization in inseparable from each application's unique…
Aserto takes a hybrid approach. It runs a hosted control plane where you configure your user-directory, authorization policies, etc. But the authorization logic itself can run alongside the application that uses it,…
I agree with most, if not all, the points raised in the post. I'm curious how people deal with: 1. Organizing knowledge. Too often I've seen a lot of well-written and well-intended information thrown into a shared cloud…
I love exa! Been using it exclusively (with ls as an alias) for about 6 months now and not looking back. Wonderful tool.
Can the tool push policies to other OCI registries like docker hub or the GitHub registry? I mean, it's nice to have a dedicated registry for OPA policies but are there alternatives?
A little ray of sunshine this morning. I'm not a physicist and have no idea how close this technology is to powering our electric grids, but it seems like humanity's best chance for a carbon-free future.
Great post! When starting a green field project, how would you approach the choice between the two options? Are there specific use cases in which one would be preferable over the other?
So this is basically a tool for generating and testing Rego policies from an OpenAPI spec. Very cool!
Do package names have to match API routes? Can I create a policy that is shared by multiple endpoints?
That's been my experience too. In addition to attracting new engineers that want to contribute to open source, it's an opportunity to showcase your organization's (hopefully good) coding practices to candidates.
This goes straight to the core of what makes authorization in complex applications such a challenge. You hit the nail on the head when you say that authorization in inseparable from each application's unique…
Aserto takes a hybrid approach. It runs a hosted control plane where you configure your user-directory, authorization policies, etc. But the authorization logic itself can run alongside the application that uses it,…
I agree with most, if not all, the points raised in the post. I'm curious how people deal with: 1. Organizing knowledge. Too often I've seen a lot of well-written and well-intended information thrown into a shared cloud…
I love exa! Been using it exclusively (with ls as an alias) for about 6 months now and not looking back. Wonderful tool.
Can the tool push policies to other OCI registries like docker hub or the GitHub registry? I mean, it's nice to have a dedicated registry for OPA policies but are there alternatives?
A little ray of sunshine this morning. I'm not a physicist and have no idea how close this technology is to powering our electric grids, but it seems like humanity's best chance for a carbon-free future.