Use OPA for Application-Level Authorization, from RBAC to ABAC in Scale

Authorization is a elementary concern in constructing safe, sturdy cloud purposes. Up to now, builders usually applied authorization immediately into their purposes, resulting in tightly coupled, advanced methods. Luckily, Open Coverage Agent (OPA), a general-purpose coverage engine, has emerged as a versatile and highly effective software for managing authorization at scale, from Position-Based mostly Entry […]

Make your security policy auditable

Final week, I wrote about putting the right feature at the right place. I used fee limiting for instance, shifting it from a library inside the applying to the API Gateway. Right now, I will use one other instance: authentication and authorization. Securing a Spring Boot utility I will maintain utilizing Spring Boot within the […]