Topaz is an open-source authorization service providing fine grained, real-time, policy based access control for applications and APIs.
It comes with built in support for every major programming language as well as every popular authorization model (RBAC, ABAC, PBAM, ReBAC, and combinations).
No features have been listed yet.
Topaz.sh's answer
It is the only open-source authorization project to support every authorization model and combinations
Topaz.sh's answer
Applications developers charged with implementing access controls for their applications/APIs
Topaz.sh's answer
Golang based and uses Open Policy Agent as the decision engine
Based on our record, authzed should be more popular than Topaz.sh. It has been mentiond 9 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Congrats on the launch! [Disclosure: I'm one of the co-founders of Aserto, the creators of Topaz]. The problem of data filtering is indeed a huge part of building an effective authorization system. Partial evaluation is one way of doing it, although with systems like OPA [0] it requires a lot of heavy lifting (parsing the returned AST and converting it into a WHERE clause). Looking forward to seeing how turnkey... - Source: Hacker News / about 2 months ago
Https://docs.opal.ac/ Universally, people I've met and worked with (20-30) hate writing rego (OPA). I'm always skeptical of Styra's analysis; they are literally selling you something. AuthZed looks interesting and they have good "ride along" videos in YouTube, e.g. Replicating GitHub auth. https://authzed.com/. - Source: Hacker News / 3 months ago
Plugging another company that's been implementing Google-Zanzibar-like auth tech: https://authzed.com/. - Source: Hacker News / 12 months ago
Leading Authorization services include: Permit.io, AuthZed, Ory Keto, Styra DAS. - Source: dev.to / over 1 year ago
Https://authzed.com/ (Provider) AuthZed brings a specialized SpiceDB permissions database which they use as a centralized place for storing and managing rules. Then, you can use their SDKs to query, store, and validate application permissions. - Source: dev.to / over 1 year ago
Authzed (YC W21) | Senior Site-Reliability Engineer (SRE) | NYC, Remote USA | Full-Time | https://authzed.com/ 20 milliseconds at the 99.5 percentile and five-nines (99.999) of uptime. Those are our goals for our globally-distributed permissions system as a service. If you’re interested in helping us achieve these goals, we would like to talk. We’re currently using best-in-class open source solutions on the public... - Source: Hacker News / over 2 years ago
Aserto - Fine-grained, scalable authorization in minutes
Cerbos - Cerbos helps teams separate their authorization process from their core application code, making their authorization system more scalable, more secure and easier to change as the application evolves.
Oso - A batteries-included system for authorization.
Warrant - Authorization and access control infrastructure for developers
Ory - Developer-first Access Management
Permit.io - Fullstack Authorization as a Service for cloud native applications