[bradhe]

Ah, super cool to see an implementation of Zanzibar out in the wild. The paper looked really interesting when it bubbled up on HN a while back.

Wonder if there are planned integrations with any stacks? For instance, would be super cool to see how this could plug into Rails/ActiveRecord for a kind of out-of-the-box authorization experience.

[robertlagrant]

Ory [0] is also an OSS Zanzibar implementation.

[0] https://ory.sh

[rhamzeh]

Love the growing number of OSS Zanzibar implementations, and congrats to the Aserto team for launching Topaz!

Ory Keto's intro video @ SV IAM User Group [0] is worth a watch.

Other OSS Zanzibar implementations:

- https://github.com/authzed/spicedb

- https://github.com/Permify/permify

- https://github.com/openfga/openfga

[0]: https://www.youtube.com/watch?v=3vtTFLB_jDo

[Disclaimer: On the OpenFGA team]

[rschwabco]

That's cool! What's neat about Topaz is that it combines the Zanzibar approach and the policy-as-code approach. That allows you to use the ReBAC, ABAC and RBAC authz patterns interchangeably.

[Aeolun]

Trying to set up Ory was really hard though.

It’s like all these ostensibly OS libraries deliberately make it hard to set up to drive you to their paid offering.

[ogazitt]

Would love any feedback you have on setting up Topaz, if you choose to give it a try! We built it to be useful completely standalone.

[ogazitt]

Thanks! We do have Rack middleware [1], as well as a Rails integration [2]. Let us know what you think!

[1] https://www.topaz.sh/docs/software-development-kits/ruby/mid...

[2] https://www.topaz.sh/docs/software-development-kits/ruby/rai...