zed
spicedb-operator
zed | spicedb-operator | |
---|---|---|
2 | 2 | |
106 | 58 | |
5.7% | - | |
8.8 | 7.8 | |
13 days ago | 7 days ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
zed
-
Authz: Authorization backend using ABAC and RBAC
The cli can be found here https://github.com/authzed/zed.
-
Show HN: Topaz: open-source authorization combining the best of OPA and Zanzibar
Both REST and built-ins for OPA have been available for existing projects like OpenFGA and SpiceDB. In case of SpiceDB, the first built-in was available in June of last year[0].
Why take on the burden of building something new when you could collaborate with the existing communities with more mature solutions? We'd be glad to welcome you!
[0]: https://github.com/authzed/zed/pull/5
spicedb-operator
-
Writing a Kubernetes Operator
This is a common frustration of mine as well!
In the latest release of the spicedb-operator[0], I added a feature that allows users to specify arbitrary patches over operator-managed resources directly in the API (examples in the link).
There are some other projects like Kyverno and Gatekeeper that try to do this generically with mutating webhooks, but embedding a `patches` API into the operator itself gives the operator a chance to ensure the changes are within some reasonable guardrails.
[0]: https://github.com/authzed/spicedb-operator/releases/tag/v1....
What are some alternatives?
examples - A collection of examples for SpiceDB users
topaz - Cloud-native authorization for modern applications and APIs
prometheus-operator - Prometheus Operator creates/configures/manages Prometheus clusters atop Kubernetes
spicedb - Open Source, Google Zanzibar-inspired permissions database to enable fine-grained access control for customer applications
kubebuilder - Kubebuilder - SDK for building Kubernetes APIs using CRDs
connector-postgresql - Import PostgreSQL foreign key relationships into SpiceDB
rbacsync - Automatically sync groups into Kubernetes RBAC
openfga - A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar
kubeplus - Kubernetes Operator to create Kubernetes-native APIs from Helm charts for SaaS
databricks-kube-operator - A Kubernetes operator to enable GitOps style deploys for Databricks resources
schemahero - A Kubernetes operator for declarative database schema management (gitops for database schemas)