I’ve just started working on the next article in the series about authentication and authorization in a microservice architecture. In contrast with part 3 and part 4, which describe hand-coded authorization logic, this article will explore a declarative approach using Oso Cloud as an external authorization service. I’ve just committed some changes to the RealGuardIO example application that Defines an Oso Cloud policy document which captures the authorization rules for who can disarm a se...
