A naukri.com initiative
Amazon
4d
321
Image Credit: Amazon
How to support OpenID AuthZEN requests with Amazon Verified Permissions
- The OpenID Foundation's AuthZEN Working Group is drafting a new specification and associated standard mechanisms for communicating authorization-related information.
- Modern application designs decouple authorization capabilities from application code to enable consistent enforcement and dynamic updates.
- Fine-grained permissions are derived from subject role assignments, attribute values, relationships between subjects and resources, and a hybrid model.
- Expressing access control rules in policies leads to policy-based access control (PBAC).
- Components like PDP, PEP, and PIP work together in an access control system.
- Verified Permissions integrates as a managed service combining the roles of PDP, policy store, and PAP.
- The AuthZEN interface for Verified Permissions enables interoperability and standardization in authorization patterns on AWS.
- The deployment process involves creating a policy store, deploying the AuthZEN interface, and testing the interoperability.
- The AuthZEN interface aims to provide industry-standard authorization practices while leveraging the benefits of AWS's managed service.
- Developers interested in the specification can join the AuthZEN Working Group and provide feedback through the associated GitHub repository.
Read Full Article
19 Likes
For uninterrupted reading, download the app