Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
OPA for policy enforcement
Search
Sibi
April 29, 2020
Technology
74
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
OPA for policy enforcement
Sibi
April 29, 2020
More Decks by Sibi
See All by Sibi
Just
psibi
0
100
Nix/NixOS
psibi
0
120
Rust
psibi
2
330
Rust + Credstash
psibi
0
88
ASG and lifecycle hooks
psibi
0
64
Haskell + Azure Pipelines
psibi
0
97
Web programming in Haskell using Yesod
psibi
0
170
Monad
psibi
1
190
Science behind Quantum Computing
psibi
0
310
Other Decks in Technology
See All in Technology
product engineering with qa
nealle
0
150
AI時代のエンジニアキャリアについて今一度考える
sakamoto_582
1
1.2k
AWS Blocks を触ってみた/first-tach-aws-blocks
fossamagna
2
140
スタートアップにおけるアジャイルの実践について #shibuyagile
murabayashi
3
2.1k
プライバシー保護の理論と実践
lycorptech_jp
PRO
1
240
AI駆動開発におけるQAエンジニアの役割事例 〜AI駆動開発の現場から〜
kobayashiyorimitsu
0
320
FinOps X 2026 Recap from Engineer Side #JapanFinOps
chacco38
0
260
打造你的 AI 工作流:Agent Skill + MCP 實戰工作坊
appleboy
0
640
デジタル・デザイン:次の50年を描く「進化する青写真」
y150saya
0
810
從觀望到全公司落地:AI Agentic Coding 導入實戰 — 流程整合與安全治理
appleboy
1
990
事業価値を⽣み出すSREへ SREが担うべき意思決定の5層
kenta_hi
0
210
なぜ人は自分のプロジェクトを 「なんちゃってアジャイル」と 自嘲するのか
kozotaira
0
250
Featured
See All Featured
Build your cross-platform service in a week with App Engine
jlugia
234
18k
sira's awesome portfolio website redesign presentation
elsirapls
0
290
Claude Code どこまでも/ Claude Code Everywhere
nwiizo
65
56k
Building Applications with DynamoDB
mza
96
7.1k
Joys of Absence: A Defence of Solitary Play
codingconduct
1
410
[RailsConf 2023] Rails as a piece of cake
palkan
59
6.7k
Mozcon NYC 2025: Stop Losing SEO Traffic
samtorres
1
270
Fashionably flexible responsive web design (full day workshop)
malarkey
408
66k
Site-Speed That Sticks
csswizardry
13
1.2k
Groundhog Day: Seeking Process in Gaming for Health
codingconduct
0
240
How to build an LLM SEO readiness audit: a practical framework
nmsamuel
1
800
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
35
2.5k
Transcript
OPA for policy OPA for policy enforcement enforcement Sibi Prabakaran
April 29, 2020
Agenda Agenda Overview of OPA Rego Usecases/Integra ons Example integra
on of OPA + Python web service
OPA OPA Project started in a company named Styra at
2016 Currently an incubator project at Linux founda on (CNCF) Goal: Unify policy enforcement
Overview Overview
Rego Rego Language for wri ng policy Expresssions, Variables, Rules
Itera on Tooling
Expressions Expressions > input.servers[0].protocols[0] "https" > input.servers[0].protocols[0] undefined decision input.servers[0].id
== "app" input.servers[0].protocols[0] == "https"
Rego Variables Rego Variables hello := "world"
Iteration Iteration networks = [{ "id": "net1", "public": false}, {
"id": "net2", "public": false}] > networks[x] +---+------------------------------+ | x | networks[x] | +---+------------------------------+ | 0 | {"id":"net1","public":false} | | 1 | {"id":"net2","public":false} | +---+------------------------------+
Rules Rules any_public_networks = true { # is true if...
net := networks[_] # some network exists and.. net.public # it is public. }
API Integration API Integration Python code Rego code
Experience Experience Policies Error messages aren’t nice Community Tooling
OPA OPA Integrations Integrations
Comparision Comparision with Sentinel with Sentinel Open Source Applicable more
generally Language differences
Other Stu Other Stu WASM Support Editor integra ons h
ps:/ /play.openpolicyagent.org/
Haskell Haskell - Fugue Rego Toolkit h ps:/ /github.com/fugue/fregot
Questions Questions