Posts

Showing posts from February, 2010

OPA for HTTP Authorization

Open Policy Agent[1] is a promising, light weight and very generic policy engine to govern authorization is any type of domain. I found this comparion[2] very attractive in evaluating OPA for a project I am currently working on, where they demonstrate how OPA can cater same functionality defined in RBAC, RBAC with Seperation of Duty, ABAC and XACML.  
Here are the steps to a brief demonstration of OPA used for HTTP API authorization based on the sample [3], taking it another level up.
Running OPA Server First we need to download OPA from [4], based on the operating system we are running on.  For linux, curl -L -o opa https://github.com/open-policy-agent/opa/releases/download/v0.10.3/opa_linux_amd64 Make it executable, chmod 755 ./opa Once done, we can start OPA policy engine as a server.
./opa run --server Define Data and Rules Next we need to load data and authorization rules to the server, so it can make decisions. OPA defines these in files in the format of .rego. Below is a sample …

Gsoc

The first time I got to know about this in details is today, in the technical talks. It really is an idea that made me feel all of us on earth should work together competitively, sharing our knowledge to make this a better place. This is the attitude I wanted to have from a long time ago and I am not going to miss this great opportunity.
-follow the site and get details
-how to begin
-what are the requirements
-time-line
are few things that I should know as an start.The following link will give me assistance.
http://socghop.appspot.com/document/show/gsoc_program/google/gsoc2010/faqs#ideas
The dark is gone,letting a new day to be dawn. Somewhere in the universe , on a dot like planet called 'Earth' one part is starting their work with warm Sun Rays. So here are the wishes for YOU all for a magnificent day!