Build Scalable Custom Authorization for Application in 30 minutes β
Overview of Authorization as a Service β
- Why Authorization as a Service?
- extracted from code
- make audit easier
- extra efforts like custom UI,etc
- Amazon Verified Permissions
policy-based authorization:
- principal
- actions
- resource
- allow/deny
Demo β
- what does
contextmean here in AVP? - what is the policy store?
- AVP will send audit data to cloud trail.
- how to accommodate RBAC & ABAC?
- build in Rust!
- Cost: Consumption based model.
Use Cases β
