Centralized Policy Enforcement with OPA
The adoption of microservices architecture has continued to increase across the industry in recent years. Governing the behavior of microservices is rather challenging. In addition to our home-born microservices, we also have services that are part of our stack: API gateways, messaging brokers, orchestration tools, and service mesh solutions, to name a few.
Having such a large amount of services can decrease policy compliance’s consistency and make governance harder to maintain, forcing us to redeploy services on each policy change. Enter Open Policy Agent (OPA). OPA is a CNCF incubation project that makes our policy more consistent, and therefore gives us more control over the system. In this talk, we will discuss what is OPA, and explore OPAs’ integrations with all the levels of our cloud-native stack, along with on-stage demos. Join us on this journey to better microservices governance.
Technical Level: Intermediate
Additional Notes: This is a comprehensive talk with a demo, in this talk we will discuss the whole concept of OPA and how it handles authorization policies and governance.