filmov
tv
Open Policy Agent Deep Dive
Показать описание
The Open Policy Agent (OPA) is an open-source general-purpose policy engine hosted by the Cloud Native Computing Foundation (CNCF). At OPA’s core is a domain-agnostic declarative language that embodies policy as code. OPA helps you implement policy as code so that you can apply best practices like unit testing, dry runs, and code review to your policies.
0:00 Intro Of Speaker
1:39 What problem does OPA solves?
2:30 Challenges managing Policies in Complex Systems?
3:11 Goals Of OPA
3:57 What OPA provide to us?
6:39 Some words on OPA community
7:44 OPA production users
8:00 Kelsey thoughts on OPA
8:26 OPA decision model
11:18 OPA deployment
12:39 Policy Authoring & Rego
14:30 Policy Data
16:40 Demo Rego in action 🚀
20:36 Testing Policies in Rego
22:22 Formatting policies in Rego
23:00 Providing Input to policies
25:45 Testing Input policies
27:00 OPA eval and what's the limitations?
🚀 OPA's responsibility is to make a policy decision on its own and return that decision as a JSON object back to the caller. It's up to the caller to decide what to do with the OPA decision. Semantically, OPA only operates on the data passed to it (typically as JSON). So OPA doesn't require a deep knowledge about the environment itself. This makes OPA flexible and portable to many different use cases.
🚀 Rego is a high-level declarative language that's based on decades of research into policy systems. It embodies specific ideas that make it useful for these kinds of more modern cloud-native systems and is designed like an onion. There are core parts of the language that are extremely fast. As you need more expressiveness, you move up the performance curve.
🚀 OPA is most often used as an admission controller in Kubernetes. An admission controller is where all the semantic validation of Kubernetes resources occur before resources are persisted to etcd and controllers go off and start doing work.
Join Anders for a deep dive session that shows how to apply policy as code across microservices and Kubernetes, covering core language features like search, composition, and querying of complex document-oriented data. See how powerful declarative languages become with the right tooling.
About the Guest
🎓 Anders Eknert | Developer Advocate at Styra, Inc. 🎓
Have worked in various roles from systems developer to technical lead, team lead and developer advocate. With a background in both tech and business, I enjoy building bridges between people from all backgrounds. Technical experience across the full stack in a number of different languages, frameworks and data stores - the last years however have been quite heavy on JVM languages and tooling - Java, Kotlin, Clojure, Groovy and related technologies. From time to time scripting as well, using whatever seems like the best tool for the job including Python, Scheme and of course just regular shell scripts.
A curated list of OPA related tools, frameworks and articles.
⚒️ About the OPA.
Policy-based control for cloud native environments
Makers of OPA
👨🎓 About the Host 👨🎓
Join Cloud Native Islamabad community.
🧑🤝🧑 About the Community 🧑🤝🧑
Here's we host our Cloud Native Webinar's Thanks to CNCF:
#CloudNativeIslamabad #OpenPolicyAgent #StyraInc
0:00 Intro Of Speaker
1:39 What problem does OPA solves?
2:30 Challenges managing Policies in Complex Systems?
3:11 Goals Of OPA
3:57 What OPA provide to us?
6:39 Some words on OPA community
7:44 OPA production users
8:00 Kelsey thoughts on OPA
8:26 OPA decision model
11:18 OPA deployment
12:39 Policy Authoring & Rego
14:30 Policy Data
16:40 Demo Rego in action 🚀
20:36 Testing Policies in Rego
22:22 Formatting policies in Rego
23:00 Providing Input to policies
25:45 Testing Input policies
27:00 OPA eval and what's the limitations?
🚀 OPA's responsibility is to make a policy decision on its own and return that decision as a JSON object back to the caller. It's up to the caller to decide what to do with the OPA decision. Semantically, OPA only operates on the data passed to it (typically as JSON). So OPA doesn't require a deep knowledge about the environment itself. This makes OPA flexible and portable to many different use cases.
🚀 Rego is a high-level declarative language that's based on decades of research into policy systems. It embodies specific ideas that make it useful for these kinds of more modern cloud-native systems and is designed like an onion. There are core parts of the language that are extremely fast. As you need more expressiveness, you move up the performance curve.
🚀 OPA is most often used as an admission controller in Kubernetes. An admission controller is where all the semantic validation of Kubernetes resources occur before resources are persisted to etcd and controllers go off and start doing work.
Join Anders for a deep dive session that shows how to apply policy as code across microservices and Kubernetes, covering core language features like search, composition, and querying of complex document-oriented data. See how powerful declarative languages become with the right tooling.
About the Guest
🎓 Anders Eknert | Developer Advocate at Styra, Inc. 🎓
Have worked in various roles from systems developer to technical lead, team lead and developer advocate. With a background in both tech and business, I enjoy building bridges between people from all backgrounds. Technical experience across the full stack in a number of different languages, frameworks and data stores - the last years however have been quite heavy on JVM languages and tooling - Java, Kotlin, Clojure, Groovy and related technologies. From time to time scripting as well, using whatever seems like the best tool for the job including Python, Scheme and of course just regular shell scripts.
A curated list of OPA related tools, frameworks and articles.
⚒️ About the OPA.
Policy-based control for cloud native environments
Makers of OPA
👨🎓 About the Host 👨🎓
Join Cloud Native Islamabad community.
🧑🤝🧑 About the Community 🧑🤝🧑
Here's we host our Cloud Native Webinar's Thanks to CNCF:
#CloudNativeIslamabad #OpenPolicyAgent #StyraInc
1:25:13
Open Policy Agent Deep Dive
0:32:44
Open Policy Agent (OPA) Intro & Deep Dive - Anders Eknert, Styra & Xander Grzywinski, Micros...
0:41:11
Open Policy Agent (OPA) Intro & Deep Dive - Anders Eknert, Styra & Will Beason, Google
0:33:23
Open Policy Agent. (OPA) Intro & Deep Dive - Charlie Egan, Styra, Inc.
1:02:25
OPA(Open Policy Agent) Deep Dive
0:33:18
Open Policy Agent Deep Dive - Anders Eknert, Styra
0:27:44
Open Policy Agent Deep Dive - Tim Hinrichs & Ash Narkar, Styra
0:37:32
Deep Dive: Open Policy Agent - Torin Sandall & Tim Hinrichs, Styra
1:01:37
This Truck Insurance Company Hasn’t Increased Renewals on Their Clients in 4 Years w/ Jared Flinn
0:05:05
Open Policy Agent OPA Quickstart Guide with Simple Rego Rules and Json Inputs
0:02:18
CNCFMinutes 1 - OPA (Open Policy Agent )
0:10:47
What is Open Policy Agent (OPA)?
1:14:10
Introduction to Open Policy Agent | Rawkode Live
0:36:34
Deep-dive into Open Policy Agent + Conftest + GateKeeper: Kubernetes Policy in Action
0:37:06
Deep-dive into Open Policy Agent + Conftest + GateKeeper | Noaa Barki | Conf42 Cloud Native 2022
0:39:31
Decoupling Data Policy and Application Code with Open Policy Agent OPA By Lander Visterin
0:33:58
Open Policy Agent (OPA) Intro & Deep Dive - Charlie Egan, Styra & Sertaç Özercan, Microsoft...
1:32:13
Вебинар «Open Policy Agent»
0:31:21
Deep Dive: Open Policy Agent - Torin Sandall, Styra
0:45:10
OPA Deep Dive - Tim Hinrichs, Styra & Torin Sandall, Styra
0:10:37
Introduction to OPA || Open Policy Agent
0:45:14
Open Policy Agent Deep Dive – Tim Hinrichs & Torin Sandall, Styra (Intermediate Skill Level)
0:00:50
What is Open Policy Agent for your Cloud Native Infrastructure as Code
0:34:16
Cloud native policy enforcement with Open Policy Agent
Комментарии