- Видео 32
- Просмотров 17 166
Oso
Добавлен 11 сен 2020
Oso is authorization as a service. It provides abstractions for building and iterating on authorization in your application.
How Google Handles Authorization at Scale
Managing authorization for applications with billions of users requires a highly scalable and efficient system. Google’s Zanzibar has become a benchmark for large-scale permission management, but is building a system like Zanzibar the best solution for your needs?
Oso Developer Experience Engineers, Hazal Mestci and Greg Sarjeant, discussed:
- Google Zanzibar’s architecture and how its Relationship-Based Access Control (ReBAC) model powers large-scale authorization.
- The key challenges and trade-offs in building a system like Zanzibar, and how it compares to Oso’s approach.
- How to implement authorization using Oso’s authorization service.
Followed by a Q&A session.
Join our Slack community...
Oso Developer Experience Engineers, Hazal Mestci and Greg Sarjeant, discussed:
- Google Zanzibar’s architecture and how its Relationship-Based Access Control (ReBAC) model powers large-scale authorization.
- The key challenges and trade-offs in building a system like Zanzibar, and how it compares to Oso’s approach.
- How to implement authorization using Oso’s authorization service.
Followed by a Q&A session.
Join our Slack community...
Просмотров: 58
Видео
Cursed Policy Generator
Просмотров 5614 дней назад
When unit testing gets…spooky 👻 It’s Halloween, and we’re summoning all kinds of chaotic energy with our Cursed Policy Generator! In this video, we dive into the creepy corners of policy generation, conjuring up some interesting, arbitrary and downright cursed Polar policies, and running queries agains those to see if they would work. This is called fuzzing, which is a fancy tech way of saying ...
Ten Types of Authorization
Просмотров 2622 месяца назад
Ever wonder how authorization in GitHub, Notion, and Google Drive work? How do the apps decide who gets premium features and who sees limited content? It’s all about authorization, and understanding authorization isn’t just a tech talk - it’s ensuring security and operational efficiency. Oso Developer Experience Engineers, Hazal Mestci and Sean Loiselle, had an in-depth discussion on: - How the...
Distributed Authorization: What it means, how to use it, how we built it
Просмотров 2876 месяцев назад
To use an authorization service you’ve traditionally had to synchronize all authorization-relevant data to it. But syncing is hard. To solve this problem, we launched Distributed* Authorization - a new way to handle shared permissions data in Oso Cloud while leaving the rest of your data in your application databases. We wrote about why we built distributed authorization and how it works unde...
Google Zanzibar: When consistency is not enough!
Просмотров 6398 месяцев назад
Google’s Zanzibar is a centralized authorization system that powers hundreds of Google's apps. It's both an amazing feat of engineering and a common reference architecture, but it is not the only approach to authorization. In particular, its data model can create significant challenges for organizations that don't have Google's technology stack and culture. In this webinar, Oso's Developer Adv...
Oso Golf - The Logic Puzzle for Authorization
Просмотров 72Год назад
Prepare to get NerdSniped! Oso Golf is a logic game designed to teach you authorization principles using Oso’s policy language, Polar. Solve each hole using as few objects as possible, analogous to the number of golf shots it takes to reach the goal.
How to manage authorization data in microservices
Просмотров 267Год назад
Some data is only for your core application, some data is only for authorization, but a lot of that data spans both. And this span grows. Between the dynamic nature of your application’s data model and the amount of application data needed to make authorization decisions, it’s no wonder data management is authorization’s spookiest problem If you're encountering this problem now, you might have...
Oso Modeler: Tenants have members and admins
Просмотров 113Год назад
Model everything from coarse-grained authorization to fine-grained authorization in the Oso Modeler. The modeler can help you turn your application concepts into real authorization models to help you write your permissions quickly. This video is a description of the "Tenants have Members and admins" use case in the Oso Modeler: ui.osohq.com/modeler Curious about RBAC, ReBAC and ABAC? There's to...
Authorization Modeling: Design your RBAC, ABAC, ReBAC
Просмотров 1,7 тыс.Год назад
How I Learned to Stop Worrying and Embrace Common Authorization Patterns You are the expert on the structure of your application, but you might find it challenging to translate your application logic into an authorization model. In this virtual event we’re going to walk you through our process for authorization modeling that we’ve developed based on our experience working with over 1,000 engine...
Systems Thinking for Authorization
Просмотров 292Год назад
As programmers, many of us got indoctrinated into ideas like “Convention over Configuration” and “Provide Sharp Knives” early on. But authorization - a problem as old as software and one that’s core to no one’s domain - is still anything but magical. Graham Neray (cofounder/CEO of Oso) is on an epic quest for programmable authorization, and thinks we can learn a thing or two from web framewor...
The Authorization policy formula: Rules + Data = Decision
Просмотров 142Год назад
An introduction to creating authorization policies in Oso by using the formula “Rules Data = Decision”. Jed Gresham, Head of Product at Oso, walks you through building your first policy using the Oso getting started flow.
Virtual Talk & Demos: Authorization for Your Inner Programmer
Просмотров 239Год назад
During this tech talk, Oso cofounder/CTO, Sam Scott covers: - Why an authorization system needs to be opinionated but flexible - Why it’s a tricky balance to achieve - And what happens if you get it right. Oso product leader, Jed Gresham, covers: - A Polar policy puzzle Plus a demo from Oso engineer, Mike Cen.
Talk: Authorization Patterns in GraphQL at GraphQL Summit
Просмотров 8012 года назад
As it says in the GraphQL documentation: "Delegate authorization logic to the business logic layer". Is that really everything you need to know? This advice is coming from a good place, but it relies on you knowing how you would go about doing authorization in the first place - and this isn't a widely solved problem! On top of that, many of the approaches used in traditional applications don't ...
Oso Polarcoaster by Steve Olsen
Просмотров 822 года назад
In Polar, Oso's declarative policy language, you can run a policy with the `POLAR_LOG=1` environment variable set to see some tracing output of its execution. The output shows how the query evaluates: when each rule is called, how inner terms are evaluated, when backtracking on failure happens, etc. Checkout Polarcoaster to see the query execution displayed it as a rollercoaster. More on Polarc...
Implementing Permissions in Node Applications
Просмотров 4 тыс.3 года назад
Implementing Permissions in Node Applications
Polar - A Simple Declarative Language for Authorization
Просмотров 5393 года назад
Polar - A Simple Declarative Language for Authorization
Tea with Sam: How We Build Roles Building Blocks
Просмотров 2013 года назад
Tea with Sam: How We Build Roles Building Blocks
Tea with Sam: Data Filtering in Oso using Partial Evaluation
Просмотров 2333 года назад
Tea with Sam: Data Filtering in Oso using Partial Evaluation
Adding Structure to a Sea of Chaos: A Principled Approach to Authorization using Python & SQLAlchemy
Просмотров 3253 года назад
Adding Structure to a Sea of Chaos: A Principled Approach to Authorization using Python & SQLAlchemy
Authorization patterns for GraphQL using Oso with the Python Graphene library
Просмотров 5583 года назад
Authorization patterns for GraphQL using Oso with the Python Graphene library
Tea with Sam: Building the Oso Go Library
Просмотров 1303 года назад
Tea with Sam: Building the Oso Go Library
Authorization patterns in Node.js Applications
Просмотров 8193 года назад
Authorization patterns in Node.js Applications
Adding Authorization in GraphQL with Oso, Graphene and SQLAlchemy
Просмотров 7043 года назад
Adding Authorization in GraphQL with Oso, Graphene and SQLAlchemy
Python Universe: Access control patterns in Python
Просмотров 1,5 тыс.3 года назад
Python Universe: Access control patterns in Python
Building a runtime reflection system for Rust 🦀️
Просмотров 9814 года назад
Building a runtime reflection system for Rust 🦀️
Before you invest your time watching, know oso is no longer open source as of Dec 2023.
where can we find code source i need it for my finale project it will help me
Fantastic!
It feels a bit similar to the tool Alloy. Where you define entities and relations and it then uses a model checker to see if there are any counter examples to some given true statement. ruclips.net/video/FvNRlE4E9QQ/видео.html
Thank you, I learnt a lot and it left me thinking! If possible upload in 1080p next time :)
Is it the same way to implement it inside FastAPI? and if possible can you please also do tutorials for using oso inside FastAPI. Can't really end my comment with out mentioning "Really ... Really ... Really helpful tutorials", Thanks bro.