Axiomatics Policy Server keeps evolving to meet the needs of our customers as they migrate resources to the cloud. Our latest update to the cloud-native Policy Decision Point (PDP) makes it compliant with the REST and JSON profiles version 1.1 of the XACML 3.0 standard (version 1.1 was published
How to solve the consistency problem of managing authorization of Single Page Application & .NET Core WebAPI? Question from Stack Overflow User Ishan Akin. We are currently developing a web application that has following architecture. A single page application based on
Introduction Extending the authorization capabilities of an API Gateway to use fine-grained dynamic authorization with the Axiomatics Policy Server is a common use case. There are several different aspects of authorization that are typically applied to API’s: Authorizing whether or not
The Axiomatics technical teams across sales engineering, development and customer relations often engage with the Stack Overflow community to get insights and answers. They also contribute knowledge on access control and dynamic authorization. This question on access control models, asked by
This describes how we can deploy a cloud-native authorization engine facilitated by Attribute Based Access Control (ABAC) as a microservice application in Kubernetes (K8s) environment. We are going to use Google Kubernetes Engine (GKE) but the Kubernetes commands in this blog should also work on
Dynamic Authorization and DevOps work well together. I'll give a quick overview of the process and then share a few things specific to Axiomatics dynamic authorization and the move to DevSecOps. DevOps defines the process between development and IT for efficient collaboration to build, test and
In case you missed our press release on the Critical Data Security Trends for 2019, we're sharing the list here on the blog for the ease of our readers. What's on your priority list? We'd love to hear your feedback. More Data, More Devices and More Regulations Mean New Approaches to Data Security
Recently we introduced you to the exciting new release and integration with IDF Connect (you can read Part 1 of the blog here). In part 2 of this series, we asked our two experts - Richard Sand from IDF Connect and Gerry Gebel from Axiomatics, to take us through the details of this integration and
The Axiomatics technical teams across sales engineering, development and customer relations often engage with the Stack Overflow community to get insights and answers. They also contribute knowledge on access control and dynamic authorization. This question on Alternatives for Roles/Claims
Today’s blog is a deep dive on various types of access control. I’ll be reviewing the differences between Expression-Based Access Control, Role Based Access Control (RBAC), and Attribute Based Access Control (ABAC), with a deeper focus on how we can use Expression-Based Access Control and
