Topaz is an open-source authorization service providing fine grained, real-time, policy based access control for applications and APIs.
It comes with built in support for every major programming language as well as every popular authorization model (RBAC, ABAC, PBAM, ReBAC, and combinations).
SaaS, Premium Self-Hosted, or FREE OSS Self-Hosted
Enterprise Single Sign On (SSO) SAML SSO enables a secure authentication via an organization’s Identity Provider (IdP), as opposed to users or IT admins managing thousands, of usernames and passwords. With our product SAML Jackson, enterprise users can access your product via one of their secure IdPs (like Okta, Microsoft Azure, AWS, etc), which manages access and security for the entire organization.
Directory Sync Organizations use directories from different providers to manage users and enforce their access to organization resources. By integrating our Directory Sync product into your solution you can activate and deactivate user accounts, create groups, and keep your app in sync with the user directory in real-time. Supports the SCIM 2.0 protocol.
Additionally, we offer Audit Logs to track critical events in your application and a Data Privacy Vault to safeguard sensitive data.
No features have been listed yet.
No Topaz.sh videos yet. You could help us improve this page by suggesting one.
Topaz.sh's answer
It is the only open-source authorization project to support every authorization model and combinations
BoxyHQ's answer:
BoxyHQ stands out for its comprehensive suite of security building blocks tailored specifically for developers. With features like SAML/OIDC Single Sign-On (SSO) and Directory Sync with SCIM 2.0, BoxyHQ simplifies identity management and access control for B2B SaaS companies. Its focus on providing a seamless and customizable solution empowers developers to enhance security without compromising user experience. Additionally, BoxyHQ offers Audit Logs to track critical events within the product and a Privacy Vault, an API to protect sensitive data.
BoxyHQ's answer:
BoxyHQ stands out for several reasons:
Topaz.sh's answer
Applications developers charged with implementing access controls for their applications/APIs
BoxyHQ's answer:
BoxyHQ's primary audience encompasses:
BoxyHQ's answer:
The inception of BoxyHQ is deeply linked with Deepak's journey as the former CTO of a cybersecurity scaleup. In his role, Deepak wrestled with the challenge of allocating resources to enterprise compliance features that diverged from their core value proposition. Alongside Sama, they witnessed the escalating tide of cyber crimes, compounded by the concerning statistic that around 70% of development teams often bypass essential security measures due to time constraints. Motivated by this shared purpose of bringing security earlier in the developer live cycle, they embarked on a mission to address these challenges head-on. BoxyHQ emerged as a solution designed to automate product security and provide low-code APIs for seamless integration, empowering developers to implement enterprise-compliant security measures effortlessly. Through BoxyHQ, Deepak and the team strive to alleviate the burden on development teams while fortifying organizations against the escalating threats posed by cyber crimes.
BoxyHQ's answer:
We value the confidentiality of our large enterprise clients due to NDA agreements. However, some of our notable customers include Cal.com, Dub, Supademo, Spike, among many others.
Topaz.sh's answer
Golang based and uses Open Policy Agent as the decision engine
BoxyHQ's answer:
BoxyHQ uses the following technologies: - Next.js - PostgreSQL - Docker - Kubernetes
Based on our record, Topaz.sh seems to be more popular. It has been mentiond 1 time since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Congrats on the launch! [Disclosure: I'm one of the co-founders of Aserto, the creators of Topaz]. The problem of data filtering is indeed a huge part of building an effective authorization system. Partial evaluation is one way of doing it, although with systems like OPA [0] it requires a lot of heavy lifting (parsing the returned AST and converting it into a WHERE clause). Looking forward to seeing how turnkey... - Source: Hacker News / about 2 months ago
authzed - The platform to store, compute, and validate app permissions
Skyflow - Skyflow’s data privacy vaults deliver security, compliance and governance via a simple API
Aserto - Fine-grained, scalable authorization in minutes
Auth0 - Auth0 is a program for people to get authentication and authorization services for their own business use.
Cerbos - Cerbos helps teams separate their authorization process from their core application code, making their authorization system more scalable, more secure and easier to change as the application evolves.
Frontegg - Elegant user management, tailor-made for B2B SaaS