Office Hours: Let's Deploy SpiceDB to Amazon Elastic Container Service (ECS)

Products

Managed Services

AuthZed Dedicated

Self-Hosted

Open Source

Resources

Learn

Company

Support

Community

Authorization
That Scales

Unblock your business with an authorization system inspired by Google's Zanzibar white paper.

Trusted By

+SpiceDB

As the creators of SpiceDB, the AuthZed team delivers enterprise-ready permissions systems built for scale and security.

Read customer stories →

“Authorization is something that has to be able to not only scale exceptionally, but also it's a decision on who is going to support that system.”

Andre Sanches

API Services Technical Lead

SpiceDB: inspired by Google's Zanzibar
Evolved by AuthZed

The most mature open source Zanzibar implementation designed for both consistency and performance at scale.

Authorize anything, anywhere

Define fine-grained access for any object in your application or across your product suite and manage permissions using a centralized schema.

Minimize latency, maximize correctness

Specify consistency requirements per authorization check; tunable consistency features balance performance and correctness according to your use case.

Policy that scales

Determine attribute-based access (ABAC) with SpiceDB Caveats - our novel design for blending policy with a Zanzibar-based system.

Who has access?

SpiceDB returns lists of authorized subjects and accessible resources, helpful when pre-filtering permission-based results.

Ops-friendly permissions systems

Instrumented with observability tooling, a powerful Kubernetes Operator, and load testing capabilities, SpiceDB prioritizes both developer and platform engineering experiences.

Enterprise-ready products available

Love SpiceDB but not the idea of running a highly available, globally distributed, and mission-critical service? The AuthZed team is here to take the pager!

Our Customers

Permissions systems
on easy mode.

“AuthZed's SpiceDB Dedicated is the easy button for Google Zanzibar at scale. The maturity of the open source project made it a clear choice for building fine grained authorization for HackerRank's customers.”
Vinay Aggarwal
Sr. Dir. of Software Engineering, HackerRank
“We needed a long-term partner for our authorization needs. SpiceDB's modern approach to permissions, and the AuthZed team, made it an obvious choice for building out robust authorization in Spot AI's products.”
Rish Gupta
Co-Founder & CPO, Spot AI
“AuthZed removed the friction associated with managing a permissions system by doing all the heavy lifting. Their excellent tooling and comprehensive docs allowed our developers to iterate quickly and confidently.”
Jordan Cuker
Senior Software Engineer, Avise

Highly available,
securely managed
permissions systems

AuthZed Dedicated prioritizes resiliency and safety because we recognize your users are counting on us, too.

Fault tolerance

We deploy all components of AuthZed Dedicated permissions systems across multiple instances and availability zones.

Distributed deployment

AuthZed can distribute permissions systems across multiple regions to ensure service survival during regional outages.

Workload isolation

Your workloads remain safe from noisy neighbors: all resources are fully isolated and dedicated to your system.

Global availability

Choose any region currently supported by AWS or GCP. Azure support coming soon!

Security & compliance admin features

Designate bounded access to SpiceDB APIs using access tokens and review all activity in audit logs.

Private networking

Only allow trusted networks to connect to permissions systems, eliminating entire classes of security risks.

The latest from AuthZed

AuthZed Blog

AuthZed Raises Series A Funding from General Catalyst

Jake Moshenko

June 27, 2024

Company

AuthZed announces $12 million of Series A fundraising to build and commercialize our next round of big bets in modern authorization.

8 minutes

Relationship integrity

Joey Schorr

September 30, 2024

SpiceDB v1.36.0 introduces a new feature: relationship integrity. It ensures that all relationships written to the backing datastore are signed by a key only known to SpiceDB, protecting your SpiceDB permissions system from modifications to their relationship data.

4 minutes

Open source authorization: embed or look for alternatives? Comparing Casbin and SpiceDB

Jess Hustace

September 23, 2024

The article discusses two approaches to authorization: embedding it directly into your application using a library like Casbin, or centralizing it with an external service like SpiceDB. Casbin gives you fine-grained control and flexibility, ideal for smaller projects or custom needs. SpiceDB simplifies management for large-scale systems, offering scalability and auditability. The choice depends on your project's specific needs and priorities.

6 minutes

Learn Together

Join our thriving community to learn about SpiceDB, Zanzibar, production deployments, and more!

Users Online

Get started for free

Join 1000s of companies doing authorization the right way.

AuthorizationThat Scales