Show HN: Open-source authorization service based on Google-Zanzibar

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  • permify

    An open-source authorization as a service inspired by Google Zanzibar, designed to build and manage fine-grained and scalable authorization systems for any application.

    Interesting to see another project open sourced around Google Zanzibar. On a timeline for context:

    - Ory came out first with Ory Keto ( https://github.com/ory/keto ) which is trying to be a close adaptation of the paper. Initially, many concepts were missing but they are making a lot of progress with the DSL and it interfaces with the rest of Ory (OAuth2, User Mangement)

    - Authzed came out as a SaaS only, open sorucing the code base later on at https://github.com/authzed/spicedb

    - Auth0 has been playing around with Zanzibar concepts in various forms and published a beta service at https://dashboard.fga.dev - apparently now also open source parts of it similar to what Authzed did: https://github.com/openfga

    - Permify - who on a side note spammed me quite a lot with outreach because I was active in these communities - joins as well https://github.com/Permify/permify

    It's exciting to see so much movement, yet also sad that so many companies are brewing their own beer instead of working collaborative on the more succesful projects. Feels like we'll just end up with one or two successful projects (looking at Ory / Auth0 here) with the rest perishing. I'm wondering if there truly is a business model for just this permission system as a saas service (looks like this is what everyone is going with). Here I'm giving Auth0 probably the biggest plus as they have an established identity service. Then again, Okta (parent of Auth0) and Auth0 themselves are not particularly known for good business practices that we usually expect from developer tooling.

    What's refreshing though with Permify is that they are trying a bit of a different approach to Zanzibar!

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • spicedb

    Open Source, Google Zanzibar-inspired permissions database to enable fine-grained authorization for customer applications

    Interesting to see another project open sourced around Google Zanzibar. On a timeline for context:

    - Ory came out first with Ory Keto ( https://github.com/ory/keto ) which is trying to be a close adaptation of the paper. Initially, many concepts were missing but they are making a lot of progress with the DSL and it interfaces with the rest of Ory (OAuth2, User Mangement)

    - Authzed came out as a SaaS only, open sorucing the code base later on at https://github.com/authzed/spicedb

    - Auth0 has been playing around with Zanzibar concepts in various forms and published a beta service at https://dashboard.fga.dev - apparently now also open source parts of it similar to what Authzed did: https://github.com/openfga

    - Permify - who on a side note spammed me quite a lot with outreach because I was active in these communities - joins as well https://github.com/Permify/permify

    It's exciting to see so much movement, yet also sad that so many companies are brewing their own beer instead of working collaborative on the more succesful projects. Feels like we'll just end up with one or two successful projects (looking at Ory / Auth0 here) with the rest perishing. I'm wondering if there truly is a business model for just this permission system as a saas service (looks like this is what everyone is going with). Here I'm giving Auth0 probably the biggest plus as they have an established identity service. Then again, Okta (parent of Auth0) and Auth0 themselves are not particularly known for good business practices that we usually expect from developer tooling.

    What's refreshing though with Permify is that they are trying a bit of a different approach to Zanzibar!

  • kala-go

    An authorization framework written in Go based on Google's Zanzibar.

    I also wrote something similar that also has a dashboard where you can see the graph between relations (code quality is really lacking though). It uses a DSL built on yaml.

    https://github.com/DeluxeOwl/kala-go

  • connector-postgresql

    Import PostgreSQL foreign key relationships into SpiceDB

    Welcome! Glad to see more folks joining the space!

    Making synchronization first-class is a great area to explore. The Authzed team[0] built Postgres syncing with the SpiceDB Postgres Connector[1] to explore the syncing while avoid adding syncing into the schema language. Users in the SpiceDB community are using technologies like CDC external to SpiceDB successfully, but there are many foot-guns to syncing because it can violate data consistency. It'd be create to see in the README/docs for syncing clarify how Permify handles the Zookies/The New Enemy Problem from the Zanzibar paper.

    [0]: https://github.com/authzed/spicedb

    [1]: https://github.com/authzed/connector-postgresql

  • Ory Keto

    Open Source (Go) implementation of "Zanzibar: Google's Consistent, Global Authorization System". Ships gRPC, REST APIs, newSQL, and an easy and granular permission language. Supports ACL, RBAC, and other access models.

    Interesting to see another project open sourced around Google Zanzibar. On a timeline for context:

    - Ory came out first with Ory Keto ( https://github.com/ory/keto ) which is trying to be a close adaptation of the paper. Initially, many concepts were missing but they are making a lot of progress with the DSL and it interfaces with the rest of Ory (OAuth2, User Mangement)

    - Authzed came out as a SaaS only, open sorucing the code base later on at https://github.com/authzed/spicedb

    - Auth0 has been playing around with Zanzibar concepts in various forms and published a beta service at https://dashboard.fga.dev - apparently now also open source parts of it similar to what Authzed did: https://github.com/openfga

    - Permify - who on a side note spammed me quite a lot with outreach because I was active in these communities - joins as well https://github.com/Permify/permify

    It's exciting to see so much movement, yet also sad that so many companies are brewing their own beer instead of working collaborative on the more succesful projects. Feels like we'll just end up with one or two successful projects (looking at Ory / Auth0 here) with the rest perishing. I'm wondering if there truly is a business model for just this permission system as a saas service (looks like this is what everyone is going with). Here I'm giving Auth0 probably the biggest plus as they have an established identity service. Then again, Okta (parent of Auth0) and Auth0 themselves are not particularly known for good business practices that we usually expect from developer tooling.

    What's refreshing though with Permify is that they are trying a bit of a different approach to Zanzibar!

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • warrant VS openfga - a user suggested alternative

    2 projects | 15 Aug 2023
  • Write your own RBAC?

    1 project | /r/golang | 16 Sep 2022
  • Resource-based authentication

    5 projects | /r/ExperiencedDevs | 15 Aug 2022
  • SpiceDB: Production-ready permissions database inspired by Google Zanzibar

    1 project | news.ycombinator.com | 14 Jul 2022
  • Zanzibar-like authorization framework written in Go

    3 projects | /r/golang | 13 Jul 2022

Did you konow that Go is
the 4th most popular programming language
based on number of metions?