https://authzed.com logo
Join Discord
Powered by
p
Hello, I have been searching online for more about spice db the official website tells how to use it, but i need to know whether this is the right solution for my product Currently i use Postgres, but i need to find better db solutions as the joins are getting expensive, Plus i need to employ user management where i need to add new roles and permission level . May i get some more insights on it or reference about it On the website all i found was " SpiceDB is an open source database system for managing security-critical fine grained permissions checking. " Thank you
v
SpiceDB exposes a gRPC API that allows to write "relationships", which form a graph to compute permissions. Permissions are checked the same way, with a gRPC API, there are multiple types of APIs that answer questions like: - does user A have permission P over resource B - tell me all the users that have permission P over resource B - tell me all the resources over which User A has permission P
In order to run SpiceDB, you can plug one of the supported databases (Postgres, MySQL, Spanner, CockroachDB)
We recommend running it in Kubernetes with the spicedb-operator https://github.com/authzed/spicedb-operator
Authzed also offers a managed version, so you get your own SpiceDB, or the cloud version, which you can try in https://app.authzed.com/
y
and a possible clarification: SpiceDB is not a general-purpose database, and is not even a general-purpose user management solution. it's built specifically to answer the question "does subject X have permission Y on object Z?"
f
I tell teammates it's a domain-specific graph database built on top of existing DBs like MySQL, Postgres, Cockroach, etc. It gives you a schema language to model relationships and does efficient execution of permission-checking queries served over a gRPC API
p
okay, thanks for chipping in, appreciate it
3 Views
PreviousNext
Powered by