-
Notifications
You must be signed in to change notification settings - Fork 0
Market Survey
Comparison criteria
usecases / user stories
pricing
ease of use
Demo link: Policy Enforcement with Open Policy Agent - YouTube
Styra DAS acts as a central control plane for all OPA agents distributed over various microservices. Each agent can act autonomously, and the central control plane (Styra DAS) receives telemetry data and logs from agents and pushes the latest configurations.
- A control plane, a log aggregator, and an IDE for authoring policies
- Can run tests against production data that was recorded, unit tests having been previously written
- Github Integration
| Units | Description | 1 MONTH | 12 MONTHS |
|---|---|---|---|
| Styra DAS Enterprise | Enterprise Edition - 16 systems, 100 MM decisions per month | $5,000 | $50,000 |
| Enterprise OPA 10 | Enterprise-grade Open Policy Agent Distribution, 10 Instances | $2,000 | $20,000 |
| Enterprise OPA 20 | Enterprise-grade Open Policy Agent Distribution, 20 Instances | $4,000 | $38,000 |
| Enterprise OPA 30 | Enterprise-grade Open Policy Agent Distribution, 30 Instances | $5,000 | $54,000 |
Demo link: Easily create ABAC policies with the Permit UI - Tutorial - YouTube
Permit.io offers low-code solutions to secure APIs from the frontend, enforce ABAC, and provide out-of-the-box access control elements you can embed directly into your app.
# Market SurveyComparison criteria
usecases / user stories
pricing
ease of use
Demo link: [Policy Enforcement with Open Policy Agent - YouTube](https://www.youtube.com/watch?v=Slr8kaPaO50&t=562s&ab_channel=Styra)
Styra DAS acts as a central control plane for all OPA agents distributed over various microservices. Each agent can act autonomously, and the central control plane (Styra DAS) receives telemetry data and logs from agents and pushes the latest configurations.
- A control plane, a log aggregator, and an IDE for authoring policies
- Can run tests against production data that was recorded, unit tests having been previously written
- Github Integration
| Units | Description | 1 MONTH | 12 MONTHS |
|---|---|---|---|
| Styra DAS Enterprise | Enterprise Edition - 16 systems, 100 MM decisions per month | $5,000 | $50,000 |
| Enterprise OPA 10 | Enterprise-grade Open Policy Agent Distribution, 10 Instances | $2,000 | $20,000 |
| Enterprise OPA 20 | Enterprise-grade Open Policy Agent Distribution, 20 Instances | $4,000 | $38,000 |
| Enterprise OPA 30 | Enterprise-grade Open Policy Agent Distribution, 30 Instances | $5,000 | $54,000 |
A batteries-included system for building authorization in your application. Similar to OPA, the Oso authorization library uses the Polar programming language to express authorization logic and policies, with libraries that currently support Python, Node.js, Ruby, Go, Java, and Rust.
Multi-tenancy
Separate users by organization to keep their data separate from each other.
Roles (RBAC)
Group permissions by feature, project, or whatever criteria make sense for your app.
Files & folders
Configure access at the resource level. E.g., Mark a specific file as private so no one can read it except admins.
Monolith
Keep authorization specifics out of your business logic by lifting your user roles into Oso Cloud.
Microservices
Share roles across services, and use service-local attributes when you need to
UI authorization
Show or hide elements in your UI based on your users’ permissions.
List endpoints
Beyond just, "Can this user access this resource, yes or no?" ask, "What are all the resources this user can access.”
Authorizing mutations
Control who can create, update, and delete resources.
Debugging
When you get an unexpected result, inspect the specific logic and data used to generate an authorization decision.
Logging
See logs of authorization decisions to confirm that your system is working as you expect it to.
Users can use Oso’s programming language Polar for free, and can choose to subscribe to a Pro plan that offer basic Service-Level Agreement (SLA) starting at 149 USD/month.
PlainID offers Authorization as a Service through its SaaS-enabled Authorization Platform. It is powered by Policy-Based Access Control (PBAC) and enables modern businesses with a next-generation approach to access control. PlainID’s Centralized Management Dashboard provides users the ability to create and manage enterprise-wide authorization policies from a central point while maintaining distributed enforcement capabilities
- Policy Lifecycle Management
- Runtime Access Decisions
- Advanced Analytics
- Rapid and Controlled Deployment
- Universal Authorization
- Graphical UI & REST API
- Version Control
- Approval Workflows
- Built in Support for Leading Standards (LDAP, SQL, REST, SCIM)
| Users | Description | 36 Months |
|---|---|---|
| PlainID for Workforce | 10,000 workforce identities including 1 Authorizer | $750,000 |
| PlainID for Consumer | 150,000 consumer (external) identities including 1 Authorizer | $490,000 |
| AuthZ Delegation for B2B | Delegated Authorization for 15,000 Management for B2B identities | $260,000 |
Demo link: [See a Demo - Aserto](https://www.aserto.com/see-demo)
Aserto provides cloud-native authorization as a service for developers, allowing them to add fine-grained RBAC, ABAC, or ACL to their application in under a day. Once a user is authenticated, Aserto determines what the user is authorized to do. The application calls Aserto, which provides a sidecar that is deployed right next to your application. Aserto enables developers to lift access control logic out of each microservice and manage it centrally, providing a consistent authorization layer across all your microservices.
- SDK for JS, Go, Python, Java, Ruby, [ASP.NET](http://ASP.NET) core
- Multi-tenant RBAC
- ABAC
- Relationship-based access control
- PBAC
- Microservices authorization
| Starter | Essential | Pro | Enterprise |
|---|---|---|---|
| For personal projects, open source software, and commercial users evaluating Aserto | For small teams or early-stage startups that use Auth0 for authentication, and don’t need audit trails of decision logs | For SaaS vendors that need an enterprise-ready authorization solution | For enterprises that want to create an authorization control plane for all of their internal applications |
| Free | $0.20 | ||
| Per user/month | Contact for plan prices | contact for plan prices |
Demo link: [Easily create ABAC policies with the Permit UI - Tutorial - YouTube](https://www.youtube.com/watch?v=QCsWlsjEE5A&ab_channel=Permit)
[Permit.io](http://Permit.io) offers low-code solutions to secure APIs from the frontend, enforce ABAC, and provide out-of-the-box access control elements you can embed directly into your app.