Overview
The course teaches how to build modern access control for cloud applications by utilizing policy as code and open-source tools like OPA, OPAL, and Zanzibar. The learning outcomes include understanding best practices, new ways of thinking about permissions, and implementing secure access control. The course covers topics such as security, compliance, IAM waterfall, and storing JWTs in web applications. The intended audience for this course is software developers, security professionals, and individuals interested in access control for modern applications.
Syllabus
- Stream Start
- Intros
- Building Modern Access Control - Start
- What are some examples of Security & Compliance
- New Way of Thinking About Permissions
- The IAM Waterfall
- Is Relying on Open Source Software a Recipe for Disaster?
- How Do You Pronounce JWT?
- Where Do You Store JWTs in Web Applications?
- 5 Best Practices
- Engines and Camps
- Open Policy Agent OPA
- OPAL
- Demo
- Stream End
Taught by
Snyk