Authorization is a critical part of any application due to greater privacy awareness by users and by new privacy standards like GDPR. Therefore, developers today are required to build complex authorization logic. However, most developers lack the expertise to build authorization with Java correctly, and they end up rebuilding authorization from scratch again and again.
In his talk, Asaf Cohen, co-maintainter and author of open source OPAL and co-founder and CTO at Permit.io, will provide best practices for building authorization with Java. To do so, he will show how to use existing tools in the ecosystem: OPA, OSO, OPAL, Zanzibar and others. Finally, he will provide recommendations about how to replace the pain of building authorization with implementing a simple and scalable solution.
Asaf is the CTO and co-founder of Permit.io, and co-maintainer and author of open source OPAL.ac. Before he started Permit, Asaf worked on internal developer tools as well as FBLite server infrastructure at Facebook (now Meta). He also worked at Claroty as one of the first engineers in the company, and at Microsoft, where he worked on the Xbox recommendation system. Prior to that Asaf served at the 81 elite cyber unit of the IDF. Asaf holds an M.Sc. in Computer Science, Magna Cum Laude, from Bar-Ilan University. His thesis in cryptography is used as one of the privacy foundations in Apple’s child safety system.