Getting started with Oso Cloud
application architecture architecting securityContact me for information about consulting and training at your company.
The MEAP for Microservices Patterns 2nd edition is now available
I’ve just started working on the next article in the series about authentication and authorization in a microservice architecture. In contrast with part 3 and part 4, which describe hand-coded authorization logic, this article will explore a declarative approach using Oso Cloud as an external authorization service.
I’ve just committed some changes to the RealGuardIO example application that
- Defines an Oso Cloud policy document which captures the authorization rules for who can disarm a security system in the RealGuardIO application
- Uses the Oso Cloud CLI to define facts (ie. authorization data) for customers, employees, locations, security systems, and the relationships between them
- Runs some queries against the locally running Oso Dev Server to determine if a user is authorized to disarm a security system
To learn more, take a look at the README and the test script.