topaz
flipt
topaz | flipt | |
---|---|---|
9 | 19 | |
1,003 | 3,383 | |
3.0% | 2.0% | |
9.5 | 9.9 | |
7 days ago | 5 days ago | |
Go | Go | |
Apache License 2.0 | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
topaz
-
Open Policy Agent
OPA is a great tool for implementing a policy-as-code system. But if you're trying to use it for application authorization (e.g. fine-grained authz for B2B SaaS or a set of internal applications), you may find that its policy story is strong, but it doesn't really have a "data plane": you either store data in a data.json file and rebuild the policy any time that data changes, or make an http.send call out of the policy to fetch dynamic data.
Check out Topaz [0], which uses OPA as its decision engine, but adds a data plane that is based on the ReBAC ideas explored in the Google Zanzibar [1] paper.
Disclaimer: I work on the team [2] that builds and maintains the Topaz project.
[0] https://www.topaz.sh
[1] https://research.google/pubs/zanzibar-googles-consistent-glo...
[2] https://www.aserto.com
-
Show HN: Topaz 0.30 β OSS authz service combining the best of OPA and Zanzibar
You can, simply use the topazd.exe binary from the topaz_windows_x86_64.zip from the GH releases page (https://github.com/aserto-dev/topaz/releases). Note this is currently not a Windows Service, so not net start topaz. Let me know if that would be interesting.
-
OPA (Open Policy Agent) VS topaz - a user suggested alternative
2 projects | 25 Jul 2023
Topaz is an open-source authorization project for cloud-native applications. It uses OPA as the decision engine and supports Rego policy as first-class citizens. It also has an embedded relationship database to support data-centric authorization models like Google Zanzibar's relationship-based access controls (ReBAC).
- Topaz
- Show HN: Topaz: open-source authorization combining the best of OPA and Zanzibar
flipt
-
Ask HN: How did you build feature flags?
We at https://flipt.io are putting on a buy vs build webinar in a couple of weeks to discuss this very thing as it's a common question that engineering teams seem to have.
If you're interested in attending its taking place on LinkedIn on April 17: https://www.linkedin.com/events/buildvs-buy-pickingafeaturef...
-
Open Policy Agent
We're currently evaluating OPA for adding RBAC to our open-source application [0]. We plan on using the Go API [1] and doing the policy eval directly in our app since our app is also written in Go.
The thinking is we'll have some basic built-in policies (like admins can do X, editors can do Y, etc) but also allow users to configure their own policies if they want by writing rego and loading their policy rules at startup time (via config). We'd document the inputs that we pass to the evaluation call such as request headers, IP, role, etc.
I'm curious if anyone has ever tried something like this or similar?
[0] https://github.com/flipt-io/flipt
[1] https://www.openpolicyagent.org/docs/latest/integration/#int...
-
GitHub issues from top Open Source Golang Repositories that you should contribute to
Flipt - Clickhouse integration for flag eval analytics
-
οΈππ Top 3 DevOps Trends to Watch Out for in 2024 π
At Flipt, we continually discuss technologies that can bring change to the industry. In this article, we delve into cutting-edge top trends and tools that can redefine DevOps and platform engineering this year.
-
οΈππ 3 Must Know Tools for Top DevOps Engineers π·
In this article, I will share the DevOps tools that we've used at Flipt and in previous roles (such as at InfluxDB). These tools are relevant for any modern software project.
-
οΈπ¨βπ§ 3 Tiny Fixes You Can Make To Start Contributing to Any Open Source Project π
But after onboarding 50+ contributors to Flipt, I realized there are ways to make starts easy for newbies.
-
π₯ The Single Best Tip To Attract More Contributors To Your GitHub Projectπ‘
In this article, I will share the effort-based issue labeling system we use at Flipt to deal with this problem.
-
3 Basic Traits That Every Successful Open Source Developer Has
Flipt has reached 3k GitHub stars β this week.
-
Save 500+ Hours of Maintenance Work With These 3 GitHub Actions
In this article, Iβm sharing 3 GitHub Actions we use at Flipt that saved us more than 500 developer hours.
-
3 Best Code Quality Tools For Your Open Source Project
In this article, Iβll share 3 tools we use at Flipt to maintain high code quality and ship features reliably.
What are some alternatives?
openfga - A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar
Flagr - Flagr is a feature flagging, A/B testing and dynamic configuration microservice
permify - Open source authorization service inspired by Google Zanzibar to build fine-grained and scalable authorization systems.
nginx-prometheus - Turn Nginx logs into Prometheus metrics
DSP-Shared_Collection
flagsmith - Open Source Feature Flagging and Remote Config Service. Host on-prem or use our hosted version at https://flagsmith.com/
spicedb - Open Source, Google Zanzibar-inspired permissions database to enable fine-grained authorization for customer applications
Caddy - Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
ASP.NET Identity
nsq - A realtime distributed messaging platform
IAmRoot NuGet Package - π¦π΄ββ οΈ NuGet package that shows we can run arbitrary code from any NuGet package
traefik - The Cloud Native Application Proxy