open policy agent gin middleware for custom usage
-
Updated
Dec 13, 2022 - Go
The Open Policy Agent (OPA, pronounced “oh-pa”) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.
What is OPA
open policy agent gin middleware for custom usage
Check K8s yaml-files and helm-charts with rego policies
CLI audit tool for GitHub organization with OPA/Rego
Open Policy Agent (OPA) Authorization middleware for Traefik
An implementation of Envoy External Authorization
Examples for validation using Policy Language Rego
Audit Logging for OPA Decision Logs
An easy way to generate Gatekeeper contraintTemplates from Rego files.
OPA GitHub Pull Request Review Bot.
Merge and convert the rego coverage format to codecov json
Synchronize profile editors into the Open Policy Agent for use in MinIO Access Control / Synchronisation de données des éditeurs de profiles stockés dans Open Policy Agent, ceux-ci utilisés pour la contrôle d'accès à MinIO
This example app acts as a webhook server that listens to Terraform Cloud Run Tasks and performs OPA evaluation using open-policy-agent Go API.
Golang REST API Template
Authorization Control using OpenPolicy Agent and Google Groups
Helm Chart Unit: helps to unit test rendering of your templates using policies
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0-Okta), AuthZ (OPA), defense-in-depth (WAAP/WAF), and observability (metrics, logs, alerting, dashboard).
Sign your artifacts, source code or container images using Sigstore tools, Save the Signatures you want to use, and Validate & Control the deployments to allow only the known Sources based on Signatures, Maintainers & other payloads automatically.