Overview
Explore fine-grained authorization in containerized environments through this 34-minute conference talk by Ashutosh Narkar from Styra Inc. Dive into the Open Policy Agent (OPA), an open-source policy engine for enforcing company-wide constraints across the entire stack. Learn to author security policies using OPA's declarative language for JSON data from Kubernetes. Discover how to implement custom policies on Kubernetes objects without modifying core components, leveraging security extension points in Docker and Kubernetes. Witness a demonstration of OPA's capabilities in meeting strict latency and availability requirements while enforcing organization-specific policies.
Syllabus
Introduction
What is Kubernetes
Intentbased API
What is Opa
Why Opa
Opa Integrations
How does OPA work
Use cases
Admission Control
Demo
Outro
Taught by
Linux Foundation