Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
OPA for policy enforcement
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Sibi
April 29, 2020
Technology
74
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
OPA for policy enforcement
Sibi
April 29, 2020
More Decks by Sibi
See All by Sibi
Just
psibi
0
100
Nix/NixOS
psibi
0
120
Rust
psibi
2
330
Rust + Credstash
psibi
0
89
ASG and lifecycle hooks
psibi
0
65
Haskell + Azure Pipelines
psibi
0
97
Web programming in Haskell using Yesod
psibi
0
170
Monad
psibi
1
190
Science behind Quantum Computing
psibi
0
310
Other Decks in Technology
See All in Technology
AI Driven AI Governance
pict3
0
290
認証認可だけじゃない! ID管理の構成要素と ライフサイクルを意識しよう
ritou
1
530
Claude Code 珍プレー好プレー
shinyasaita
0
290
Compose 新機能総まとめ / What's New in Jetpack Compose
yanzm
0
150
キャリアの中で本を作る / Making a Book During Your Career
ak1210
0
120
Foxgloveについて 実際にExtensionを開発して公開するまでの話 / About Foxglove: The Story of Developing and Releasing an Extension
ry0_ka
0
180
Mastraエージェント、どのクラウドにデプロイする?
minorun365
PRO
2
170
生成AI活用によるODC欠陥分析の分類高速化の実践と導入効果 / 20260703 Suguru Ishii
shift_evolve
PRO
2
110
証券システムを10年Scalaで作り続けるということ - 関数型まつり2026
krrrr38
3
760
Amazon EVS で VCF 9.0 / 9.1 のサポート開始まとめ
mtoyoda
0
280
AIペネトレーションテスト・ セキュリティ検証「AgenticSec」紹介資料
laysakura
2
8.1k
依頼文化をやめる日 EM視点で語るPlatform EngineeringとInclusive SRE / Discussing Platform Engineering and Inclusive SRE from an EM's Perspective
shin1988
4
4.4k
Featured
See All Featured
Building Applications with DynamoDB
mza
96
7.1k
RailsConf 2023
tenderlove
30
1.5k
Unsuck your backbone
ammeep
672
58k
The Curse of the Amulet
leimatthew05
2
13k
Are puppies a ranking factor?
jonoalderson
1
3.7k
Abbi's Birthday
coloredviolet
3
8.5k
Prompt Engineering for Job Search
mfonobong
0
370
技術選定の審美眼(2025年版) / Understanding the Spiral of Technologies 2025 edition
twada
PRO
118
120k
The Pragmatic Product Professional
lauravandoore
37
7.4k
Navigating the moral maze — ethical principles for Al-driven product design
skipperchong
2
410
brightonSEO & MeasureFest 2025 - Christian Goodrich - Winning strategies for Black Friday CRO & PPC
cargoodrich
3
750
Designing Experiences People Love
moore
143
24k
Transcript
OPA for policy OPA for policy enforcement enforcement Sibi Prabakaran
April 29, 2020
Agenda Agenda Overview of OPA Rego Usecases/Integra ons Example integra
on of OPA + Python web service
OPA OPA Project started in a company named Styra at
2016 Currently an incubator project at Linux founda on (CNCF) Goal: Unify policy enforcement
Overview Overview
Rego Rego Language for wri ng policy Expresssions, Variables, Rules
Itera on Tooling
Expressions Expressions > input.servers[0].protocols[0] "https" > input.servers[0].protocols[0] undefined decision input.servers[0].id
== "app" input.servers[0].protocols[0] == "https"
Rego Variables Rego Variables hello := "world"
Iteration Iteration networks = [{ "id": "net1", "public": false}, {
"id": "net2", "public": false}] > networks[x] +---+------------------------------+ | x | networks[x] | +---+------------------------------+ | 0 | {"id":"net1","public":false} | | 1 | {"id":"net2","public":false} | +---+------------------------------+
Rules Rules any_public_networks = true { # is true if...
net := networks[_] # some network exists and.. net.public # it is public. }
API Integration API Integration Python code Rego code
Experience Experience Policies Error messages aren’t nice Community Tooling
OPA OPA Integrations Integrations
Comparision Comparision with Sentinel with Sentinel Open Source Applicable more
generally Language differences
Other Stu Other Stu WASM Support Editor integra ons h
ps:/ /play.openpolicyagent.org/
Haskell Haskell - Fugue Rego Toolkit h ps:/ /github.com/fugue/fregot
Questions Questions