Overview
Explore the implementation of a comprehensive full-stack policy management system in this 43-minute conference talk. Delve into the challenges of fine-grained authorization in complex applications and learn how Policy as Code can address these issues. Discover how to codify and enforce policies across different layers of an application stack, from back-end to front-end. Gain insights into building a flexible authorization solution using open-source tools like Rego and Open Policy Agent. Examine the process of creating an open-source administration layer, running sidecars in applications, and integrating with front-end using CASL for web app policy enforcement. Learn from real-world experiences and acquire knowledge to implement similar solutions in your own applications.
Syllabus
Application Code of Conduct - Full-Stack Policy as Code - Gabriel L. Manor, Permit.io
Taught by
Linux Foundation