#off-topic

Hey @everyone,

In the past few months, we have talked to over 100 engineers from both Fortune 500 companies and startups about their approach to authorization.

Here's what's broken about authorization, and how to get it right!

https://www.permify.co/post/why-decouple-authorizations

Hey @everyone,

Hope all is well. Here is an article to understand what authorization services are, how they affect the software development process, and why it’s important to know about them.

Thanks to @unique fjord for this great piece.

https://dev.to/aviyel/what-is-authorization-service-and-why-does-it-matter-5d9d

Hey @everyone,

Hope all is well. We are planning to develop an API endpoint that will return an SQL query according to the authorization data you stored, and your authorization model.

We are waiting for your thoughts on the issues page.

https://github.com/Permify/permify/issues/27

Hey @everyone,

Here is our latest blog post about Relational Based Access Control and its common use cases 🚀

https://www.permify.co/post/relational-based-access-control-models

Hey, I wrote an Elixir client for Permify (https://github.com/GRoguelon/permify) in order to play with it. Let me know if you have any feedbacks.

Do you have the openapi file published in your repo ?
I found this reference https://app.swaggerhub.com/apis-docs/permify/permify-api/v0.0.0-alpha4

Hey @wide jay here is the openapi file https://github.com/Permify/permify/tree/master/docs

Yes you could autogenerate the clients via the default generators for openapi contract.
But I would also check https://liblab.com/
They are still in stealth mode but sounds a thing could change the sdk generation process and stick to maintain only the contract.

That looks cool, thanks for sharing! We would love to give it a shot and check the quality of SDKs. If they’re good as they claim to be, we’d love to use this!

They have a waitlist BETA do you know them? Would you be open to make an intro @wide jay

I don't have a contact there but you could reach them directly

Makes sense that was my second option 🙂

Hi @everyone,

Check out our latest blog post about Google Zanzibar, which is the global authorization system used at Google for most of its products including YouTube, Drive, Cloud and Maps. 🎯

https://www.permify.co/post/google-zanzibar-in-a-nutshell

Hi guys

I've forked a open source repo which maintainer of this repo doesn't support any more and the last commit of him for 4 years ago. so I'v decided to continue this project by forking it. if anyone would like to contribute in my fork feel free to contact me via DM or my email address which mentioned below.
the project that I've forked related to a top A top-5 project of the Apache Software . the project name is Apache Ignite , it's Distributed Database For High‑Performance Applications With In‑Memory Speed , if you wanna know more about Ignite please check official website that mentioned below.

what's the purpose of developing this repo?
this repo is Apache Ignite Go Client , some of the main features of Apache Ignite still didn't support also go version of maintainer repo is old , therefore we want to working on these topics.

• I would be happy if you wanna helping me to supporting full features of apache ignite in Apache Ignite Go Client

• if you have more questions about Apache Ignite , feel free to ask

Maintainer Repo: https://lnkd.in/eEpAe5uU
Apache Ignite official website: https://ignite.apache.org
My Forked Repo: https://lnkd.in/enmSWjVe
My Email Address: amirvalhalla@proton.me

Hi, Thank you for the permify tool. I tried to summarise my experience of setting up permify for test environment with persistent storage in the blog. I am going to use it with Golang, and write about it next.

https://medium.com/gitconnected/security-permify-authorization-as-a-service-b0927f9568f3?sk=c83726f537c6b7e3b55f555ec4a8e9ee

Authorization as a service article

Are there any plans for a javascript version of permify? I'm going to be switching to local-first and it's an electron based app. Being that the #1 requirement is for the app to work completely offline. There's no connection to the permify "golang" server. But if the app was in javascript, then another worker could be run along side the electron main worker.

Hi Paul, small world 😀 There already is a node.js client for Permify. What is actually the challenge is running it offline-first, since right now Permify only connects to postgres as the storage layer. Right now, the only solution to actually run a Permify setup completely offline is to hack together a service in Go, which actually embeds a Postgres server using something like embedded-postgres. Then to use that in your electron setup, you would run that Go permission service side-by-side with your main process and use a javascript gRPC client to communicate with it.

Hey Sebastian. 👋 That does sound pretty good, but ideally I want to encapsulate all the deps within the javascript world (for now). I'm actually moving away from golang as the intention in the future is a move to Tauri and have most of the backend in rust.

Alright well, then you would literally just do the same in Rust using one of the embedded Postgres crates. Or something entirely else - this is one of those times where you have to really consider if you actually need something like Permify and if the answer is yes, perhaps a hack like this could be worth exploring.

Thinking about this some more. It would be more preferable to have a Rust version of Permify. As with Tauri, the whole backend can run tightly integrated at the source. Rather than as a collection of distributed binaries.
I have been thinking about a stack such as:

• tauri
• iggy.rs
• socketioxide
• surrealdb
  I've not yet found for Rust what would qualify as the authentication + socials. But for my use case having my backend being able to reach out and touch the source instead of them being a standalone binary (executed by Tauri) then allows me more custom functionality. Which ultimate is what I'm always after.

Of course, I'm thinking of the future me here. Which someone has released a version of servo which works and Tauri having the bindings available. Or perhaps the electrobun dev releases a version of chrome he has teased about. Still it's something I'm thinking about in the back-burner so to speak.

Perhaps look into Cerbos then. They support embedded policy decision points compiled down to WASM.

Cerbos looks awesome (thanks for the suggestion), the pricing doesn't. I'm in the unfortunate position where I have B2B and B2C. The B2B I charge for, the B2C is free. B2C can have unlimited users, but is not to a degree where it will pay for itself. Will never happen. I just joined their slack, lets see what they say 😄

I hear you brother, it is the exact same case with what we are doing on the platform I am spearheading. Lots of free users with free functionality. Basically rules out most cloud offerings, so we self-host anything we can get away with. It is definitely not for the faint of heart and is a real responsibility. Wishing you the best of luck with your project!

Where are you thinking of self-hosting with? After a lot of consideration. I went with https://zerops.io/. They are relatively new but by the end of next year will be just as good as the other providers. If not better. Their prices for bandwidth and storage are reasonable compared to other providers.

Hi folks, I am curious, why did you choose Permify over other solutions like OpenFGA or SpiceDB? Could you share your considerations?

Hey @everyone ,

Here's a great article about authorizations in micro-services at scale.

https://blogs.cisco.com/developer/microservicesauthorization01

Hey @everyone,

Authorization and authentication are two concepts that are often confused with each other. I found this video explaining the differences between the two, I think it might be helpful to learn about key points of these concepts and their differences.

https://www.youtube.com/watch?v=hmJKUQlcGAc&t=33s

Hey @everyone ,

Here's how AirBnb do authorization as a centralized scalable authorization system.

https://medium.com/airbnb-engineering/himeji-a-scalable-centralized-system-for-authorization-at-airbnb-341664924574

Hi @everyone
I've wrote a Proxy Grabber which right now just grab and check Http Proxies, Please check my repo and join to develop this open source package🙌
also I've added future features in Todo of Readme.md
https://github.com/amirvalhalla/proxy-grabber

Hey @everyone,

Here's how Cisco manages authorization in micro-services. We thought it could worth a look! https://blogs.cisco.com/developer/microservicesauthorization01

Hey @everyone,

Authorization is hard! Especially in micro-services. And if you're like Airbnb it's particularly hard in terms of scalability & decision architecture.

Here's a Scalable Centralized System at @Airbnb from @alancyao

https://medium.com/airbnb-engineering/himeji-a-scalable-centralized-system-for-authorization-at-airbnb-341664924574

Hi @everyone
I've update the Proxy Grabber which Announced already , Please check my repo and join me to develop this open source package.

• the target is we should add some more websites etc... to web scraping and grabbing more proxies

New Features : (which proxy-grabber has right now)

• Grabbing Http Proxies
• Grabbing Https Proxies
• Grabbing Socks5 Proxies
• Grabbing different types of proxies at the same time or separate
• Define Timeout time of Reverse proxy to checking active proxies
• Define Chunk Size to increase speed of checking active proxies

https://github.com/amirvalhalla/proxy-grabber

Hey @everyone,

Building a unified authorization system is hard. So here's how @Intuit does it!

https://medium.com/intuit-engineering/authz-intuits-unified-dynamic-authorization-system-bea554d18f91

Hey @everyone,

Hope all is well. We get a lot of questions about JWT, so here's our blog post about how you can integrate JWT Authentication for React: https://www.permify.co/post/jwt-authentication-in-react

Hey @everyone,

If you're working with SQL, and you have to make trade-offs between security vs performance, here's a great read: https://arctype.com/blog/database-security-performance/

Hey @everyone,

Building authorization in micro-services can be a mess. You might end up with multiple authorization systems to maintain.

That was what happened to the Carta. Here's how their new authorization system works.

https://medium.com/building-carta/authz-cartas-highly-scalable-permissions-system-782a7f2c840f