Hey all! I'm looking forward to chatting with people about oso, authorization, and anything else that comes up! All are welcome. Our goal is to make security more accessible for devs, so don't hesitate to come by even if this is a completely new area for you.
Cofounder & CTO @samososos is hosting office hours Thurs Aug 13, 11 am-3 pm ET. Grab a slot to discuss authorization best practices, writing policies, adding oso to your app, internals, comparisons to other approaches, or other security challenges for devs calendly.com/samoso/office-hā¦
Genuinely curious if anyone finds the various access control acronyms useful? Some guides even bring up DAC, MAC, and PBAC too... We're hoping this guide clarifies what these mean for you as a developer _practically_.
RBAC + ABAC get thrown around a lot. Many devs think it's an "either/or" between the two, but both can be used together. Get a mental model for building access control, a review of common RBAC + ABAC patterns, and how to use them together in our new post: osohq.com/post/role-based-acā¦
tl;dr: Roles are an intuitive way to group permissions by what someone can expect to do in your app, and most people are familiar with enforcing "users can see their own data". This is RBAC and ABAC in a nutshell. Find a system that can let you concisely implement both.
Part 3 of āBuilding a runtime reflection system for Rustā is out! In this final post, we call @rustlang methods dynamically at runtime from our policy language, despite failed attempts and workarounds for fully dynamic method dispatch + variadic functions. osohq.com/post/runtime-refleā¦
So when Dave (the author of the post and the original "crappy example" in the 2nd tweet) shows us using oso in a GraphQL application in a few lines of code, AND that it can apply over list endpoints to filter data, AND that it works with the recent roles work...
Well, that was a pretty special moment! And what a way to end the year! And hey, if any of this sounds useful to you. Come talk to us and we'll see where we'll take this in 2021! š