A Policy Engine is a tool that allows for checking user privileges as well as evaluate a responsibility matrix based on dynamic data for a given user. A Policy Engine is not only an Entitlement Management System but also provides for functional evaluation of conditions that result in deterministic responsibilities for a given user or actor.
This session shows how we use Open Policy Agent with Spring Boot and HOCON to produce a responsibility management solution that scales to volume and performance needs. We also show some hiccups that we faced while deriving the most optimal solution for our needs. A short explanation of some tooling we built for validating the policy files in the IDE will also be discussed.