+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ OPA is a general purpose policy engine . All these software that we see on the right at some point of time understands that it needs a policy decision. So what it is does it cobles on whatever policy decision that it needs about as a policy query and hands that query over to OPA . And OPA makes the decision and returns into the service , it is the services responsibility to enforce that decision . It is OPA responsibility to make that decision. For example if that service was a kubernetes API server . Kubernetes will decide that some user is trying to create a new resource on it , POD or ingress lets say on the kubernetes cluster . Kubernetes would take that 100 or 500 line of code of JSON or YAMLthat describes the new resource the user trying to deploy on to the cluster and it will hand that entire JSON o...
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Single Value : There are a number of design princples that we can put in place when we design Rego, But here are the top three. Syntax : In terms is Rego syntax we have designed it to mirror those real world polices that you find in PDFs , E-Mails, So the idea of Rego statement is that it is a simple IF Statements, Something are true if the other things are true . For example , allow this request if this user is actually alice 2. Semantics : The second design principle is more symantic . The idea here was the hierarchical data JSON/YAML and so on are pervasive so we wanted Rego to support that hierarchical data in a first class way and so 3. Algorithm : OPA coould automatically optimize performance so the policy can often focus on correctness and make retain able polices Rego Overview one you wri...
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ All Credits to the creators of this course. ..I am just taking notes from this video tutorial for my knowledge so it helps me remember them later https://academy.styra.com/courses/take/opa-rego/lessons/15312900-welcome-video sreejith.cloudme@gmail.com App +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Welcome : How to use this course ? The Problem OPA solves . When we started OPA the problem that we saw that we have all kinds of different pieces of software in this could native eco-system all of which implements Policy and Authorization in it own unique way. You can think about kubernetes, when every time someone is trying to deploy a new resource on Kubernetes , there needs to be a policy or authorization problem that needs to be solved there. Every time a microservice runs in an API call and another microservice to run there is a policy decision th...
Comments
Post a Comment