Software Development, Finance and AI14 Mars 2024

Authorization as a Service (feat. Jake Moshenko)

Jake Moshenko⁠, CEO of ⁠AuthZed⁠, discusses the importance of permissioning databases and the challenges of implementing permissions at scale. He explains how AuthZed solves this problem by providing a common API for flexible and fine-grained authorization. The target market for AuthZed includes companies of all sizes that need to add complex permission workflows to their applications. Jake demonstrates how AuthZed can be integrated with backend systems, web applications, and mobile apps. He also explains the benefits of using AuthZed, such as increased security and improved product velocity. The conversation concludes with a discussion on the AuthZed schema language and how permissions and roles are defined in the system. Jake Moshenko introduces the concept of permissions and relations in the context of access control. He explains how permissions can be granted to users for specific actions on resources, and how relationships between users and objects are defined. Jake also discusses the flexibility of defining roles and the granularity of permissions. He demonstrates how permissions can be visualized and edited in a user interface, and highlights the benefits of using a startup solution for access control. The conversation concludes with a discussion on the importance of leveraging existing tools and trusting innovative startups.

Takeaways

Permissions can be granted to users for specific actions on resources, such as read, write, and admin privileges.
Relations define the relationships between users and objects, allowing users to be readers, writers, or admins of a particular object.
Roles can be used to group multiple privileges or permissions together, providing a higher level of access.
Design time actions involve configuring the access control system, while runtime actions involve making API calls to enforce permissions.
When considering building or buying a solution, it is important to focus on core competencies and leverage existing tools and services.

Chapters

00:00 Introduction and Background

01:04 The Problem of Permissions at Scale

05:25 Implementing Authorization for Different Client Types

06:46 Integration with Backend and Web Applications

10:24 Implementing Permissioning for Mobile Apps

14:25 Benefits of Using AuthZed for Permissioning

22:00 Granting Access to Resources with AuthZed API

25:11 Defining Permissions and Roles in AuthZed

30:42 Introduction to Permissions and Relations

31:11 Understanding Permissions and Roles

32:20 Decoupling Relationships and Actions

33:36 Granularity of Permissions

34:14 Grouping Privileges into Roles

36:01 Design Time and Runtime Actions

36:46 Visualizing and Editing Permissions

39:33 Trusting a Startup

53:36 Building vs. Buying Solutions

58:36 The Value of Innovation and Trust

Upptäck Premium

Prova 14 dagar kostnadsfritt

Skaffa Premium

Avsnitt(414)

One approach to create UX Designs is to draw them out quickly without relying on tools

If you can draw, this approach will work really well! But, even if you are like me and cannot really draw, it will still save you a ton of time if you manually drew out the UI pages to share with your development team.

31 Dec 202010min

User Experience(UX) Designs for Web and Mobile Apps

While it would save time (which is priceless for everyone, not to mention smaller startups where it is even more valuable!) to use UX designs created for the Web for Mobile Apps, and vice-versa, it is hardly ever possible (if a seamless User Experience across devices is at the top of your priority list).

26 Dec 20207min

How to deal with the issue of Bot Sign ups?

Well, as technology improves, we get smarter as humans. But, so do bots. There's any number of things you can, and should, do to ensure your app is not hit with bot (aka: fake) sign ups.

26 Dec 20202min

GitHub Projects - How we manage our repo-specific issues

We use our own product (obviously!) to give us a federated view of all the projects that our ecosystem comprises of but at a code repository level, we use GitHub's Project feature to manage repo-specific issues. Here's how we do it.

1 Dec 20202min

Snowpal Pitch: GitHub Branch Management

There is no single answer to what branching strategies work for you when it comes to GitHub. We've tried more than a few ourselves but eventually arrived at one that works quite well for us.

28 Nov 20203min

Unit Testing vs Functional Testing vs Integration Testing: What are some differences?

While it's important to not be bogged down by terminologies, it is also imperative that there is consensus within any given team so there is no confusion.

28 Nov 20205min

TypeScript & ECMAScript6

It is hard to overstate the value strong typing brings to the table, especially in the context of teams that move real fast (and have fun doing so)!

22 Nov 20202min

SSL Connect Error: Upgrade to heroku-20

If you upgraded to heroku-20, and ran into SSL errors, this quick video (less than 2 minutes is very, very quick for someone for who brevity ain't always a forte!) may help you. It took me 3 hours to figure this out, and if I can save you that time, it would be worth it, right!

20 Nov 20201min

Allt en och samma app

Lyssna på dina favoritpoddar och ljudböcker på ett och samma ställe.

Noga utvalt innehåll

Njut av handplockade tips som passar din smak – utan ändlöst scrollande.

Fortsätt när du vill

Fortsätt lyssna där du slutade – även offline.

Premium

99 kr/ månad

Tillgång till alla Premium-poddar
Reklamfritt premium-innehåll
Avsluta när du vill

Prova 14 dagar gratis

Premium

129 kr/ månad

Tillgång till alla Premium-poddar
Reklamfritt premium-innehåll
Avsluta när du vill
Ett extra konto

Prova 14 dagar gratis

Populärt inom Teknik

Berättelserna och rösterna du älskar att lyssna på

Obegränsad lyssning på alla dina favoritpoddar och ljudböcker

Upptäck Premium