a JSON format ▪ Write Rego files once to check JSON policies with an input from microservice ▪ Maintain easy to update JSON policies Sample implementation: https://github.com/piotrjanik/opa-iam-like-policies [ { "effect": "Allow", "principal": "*", "resources": "*", "action": ["GetAll" ] }, { "effect": "Allow", "principal": { "name": "John", "email_verified": true }, "resources": [ {"name": "enquiries","id": 1}, {"name": "enquiries","id": 2}, {"name": "enquiries","id": 3} ], "action": ["Update"] }, { "effect": "Allow", "principal": { "email_verified": true }, "resources": [ {"name": "orders","status": "CANCELLED"} ], "action": ["Update"] } ]