On April 14, Styra and Curity will host a webinar focused on using OAuth, OpenID Connect, and OPA for fine-grained authorization in microservices and APIs.
OAuth and OpenID Connect (OIDC) are mature and well-adopted standards. These work well for authentication in general and user authentication in particular. The evolution of securing access to APIs has moved from using Basic Authentication and static API keys that are easy to lose track of and difficult to manage, all the way to a full token-based architecture leveraging centralized trust using claims.
Although it’s certainly possible to leverage this model to authorize what’s allowed, a more powerful, scalable, and flexible approach is to integrate with a fine-grained externalized authorization engine such as the Open Policy Agent (OPA).
In the live webinar, experts from Styra and Curity will show:
- how the Authorization Server (OAuth/OIDC) takes care of authentication and issues access tokens;
- how tokens are passed on and consumed by the authorization engine (OPA);
- how scopes and claims of the access tokens can be used for access control decisions when the authorization policy is evaluated.
Join us if you want to learn how to elevate authorization processes and improve your microservices and APIs' security.
Date: Wednesday, April 14, 2021
Time: 11 AM ET / 17:00 CET
To participate in the webinar, register here.