Tailor Made: Dynamic Fine-Grained Authorization for API Traffic - Erica Hughberg, Tetrate & Andres Aguiar, Okta

less than 1 minute read

Abstract

Modern API access control requires authorization models that can adapt to real-time conditions and complex relationships. Learn how to move beyond static authorization methods that are complex to revoke, like API keys and tokens, and improve your security posture with dynamic access decisions.We’ll demonstrate how to implement fine-grained authorization at the gateway level by integrating OpenFGA with Envoy Gateway in Kubernetes, enabling context-aware access decisions at the edge of your system. With live demonstrations, we’ll showcase how OpenFGA’s Relationship-based Access Control (ReBAC) model can solve complex authorization challenges. For example, has your boss approved you to access confidential information about Project X?We’ll present three entertaining yet practical examples that showcase common multi-tenant SaaS challenges, B2B API access, and data-dependent authorization rules.

Sched URL

Video

Share on

X Facebook LinkedIn Bluesky

About

Conferences

Tailor Made: Dynamic Fine-Grained Authorization for API Traffic - Erica Hughberg, Tetrate & Andres Aguiar, Okta

Abstract

Video

Share on

You May Also Enjoy

The Shared Service Blueprint: A Guide to Multi-Tenancy, Illustrated With KEDA - Aya Igarashi, Preferred Networks, Inc.

SPIFFE Meets OAuth: Federated Identity for Cloud Native Workloads - Yoshiyuki Tabata, Hitachi, Ltd.

SB💣💣M: Making SBOMs Play Together - Jacopo Bufalino, CNAM & Agathe Blaise, Thales SIX GTS France

Why Security of Kubernetes Comes Down to Linux Security - Marina Moore, Edera