Daniel Bass

Attribute-Based Access Control (ABAC) and Relationship-Based Access Control (ReBAC) - how to make the most suitable choice for your application?

Discover how Discord built "Access!" - a secure, user-friendly portal for managing authorization, and what should you use to cover your entire user stack.

Google designed its Zanzibar authorization system to handle its complex access needs. See how you can leverage this to create fine-grained ReBAC in your app

Learn best practices for managing user roles and access delegation and how to implement a cascading authorization model to enhance your app's access control.

Learn how to quickly create and implement custom user experiences for your application with User Attributes and Feature Flags

Learn how to use JWT for authorization, understand the basics of what JWT is, and explore examples of proper JWT usage in authentication and authorization.

Learn how to build cloud-native authorization systems with CI/CD, thorough testing, and precise modeling and implementation.

10 topics, 45 questions: Authorization is part of every app—here are the questions you NEED to ask yourself before you implement this critical security feature

Policy languages and frameworks like OPA, Cedar, and OpenFGA are rising in popularity. Explore the solutions they provide, and the benefits of using them.

OPA just announced its newest version, 1.0. How does it affect you? What does it mean? What's new? Find out here -

Learn how to implement fine-grained RBAC, ABAC, and ReBAC authorization in a Next.js application using a working demo of a mobile plan management application

Scale is a challenge that every developer encounters at some point - how did Reddit approach this challenge, and what can we learn from it?