Drop Oso Cloud into your apps to quickly add roles, sharing, fine-grained access, or any other access model you can think of.
Topaz is an open-source authorization service providing fine grained, real-time, policy based access control for applications and APIs.
It comes with built in support for every major programming language as well as every popular authorization model (RBAC, ABAC, PBAM, ReBAC, and combinations).
No features have been listed yet.
No Topaz.sh videos yet. You could help us improve this page by suggesting one.
Topaz.sh's answer:
It is the only open-source authorization project to support every authorization model and combinations
Topaz.sh's answer:
Applications developers charged with implementing access controls for their applications/APIs
Topaz.sh's answer:
Golang based and uses Open Policy Agent as the decision engine
Based on our record, Oso should be more popular than Topaz.sh. It has been mentiond 6 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
I know of warrant.dev, osohq.com, and Ory Keto but I don't see that these evaluate based on attributes. Source: over 1 year ago
Oso supports applying authorization logic at the ORM layer so that you can efficiently authorize entire data sets. For example, suppose you have millions of posts in a social media application created by thousands of users, and regular users are only authorized to view posts from their friends. It would be inefficient to fetch all of the posts and authorize them one by one. It would be much more efficient to... Source: almost 3 years ago
Oso's Node library now provides a configuration-based approach to adding role-based access control (RBAC) to your application. This new library speeds up the time it takes to build fine-grained permissions using roles and related patterns. Here are the docs + quickstart. Source: almost 3 years ago
> It's crazy this still is part of the stack where there are no great solutions. Seems like a few others have come to the same conclusion :) We're working on this at Oso (https://osohq.com) - I'm the CTO. Oso is an open source framework for authorization. Policies can reference application directly, so any authorization decisions can be made dynamically based on the data. And your data doesn't need to leave your... - Source: Hacker News / almost 3 years ago
To celebrate a new release of Oso, our open-source authorization library, this blog post demonstrates a few ways of modeling role-based access control in Python and SQLAlchemy. It has complex examples to provide you with the building blocks for adding RBAC to your app and are written in a multi-tenant production system. - Source: dev.to / about 3 years ago
Congrats on the launch! [Disclosure: I'm one of the co-founders of Aserto, the creators of Topaz]. The problem of data filtering is indeed a huge part of building an effective authorization system. Partial evaluation is one way of doing it, although with systems like OPA [0] it requires a lot of heavy lifting (parsing the returned AST and converting it into a WHERE clause). Looking forward to seeing how turnkey... - Source: Hacker News / 18 days ago
authzed - The platform to store, compute, and validate app permissions
Cerbos - Cerbos helps teams separate their authorization process from their core application code, making their authorization system more scalable, more secure and easier to change as the application evolves.
Aserto - Fine-grained, scalable authorization in minutes
Permit.io - Fullstack Authorization as a Service for cloud native applications
Warrant - Authorization and access control infrastructure for developers
Ory - Developer-first Access Management