CNCF On-Demand Webinar: Build authorization at scale with SpiceDB on Amazon EKS

Authorization
That Scales

Unblock your business with an authorization system inspired by Google's Zanzibar white paper.

Trusted By

Neo FinancialRedpandaWithClutchTuroMatillionHackerRankEvisortAviseonXClear StreetSpotAI

SpiceDB: inspired by Google's Zanzibar
Evolved by AuthZed

The most mature open source Zanzibar implementation designed for both consistency and performance at scale.

Authorize anything, anywhere

Define fine-grained access for any object in your application or across your product suite and manage permissions using a centralized schema.

Minimize latency, maximize correctness

Specify consistency requirements per authorization check; tunable consistency features balance performance and correctness according to your use case.

Policy that scales

Determine attribute-based access (ABAC) with SpiceDB Caveats - our novel design for blending policy with a Zanzibar-based system.

Who has access?

SpiceDB returns lists of authorized subjects and accessible resources, helpful when pre-filtering permission-based results.

Ops-friendly permissions systems

Instrumented with observability tooling, a powerful Kubernetes Operator, and load testing capabilities, SpiceDB prioritizes both developer and platform engineering experiences.

Enterprise-ready products available

Love SpiceDB but not the idea of running a highly available, globally distributed, and mission-critical service? The AuthZed team is here to take the pager!

GreenPinkFrost

Our Customers

Permissions systems
on easy mode.

Highly available,
securely managed
permissions systems

AuthZed Dedicated prioritizes resiliency and safety because we recognize your users are counting on us, too.

Fault tolerance
We deploy all components of AuthZed Dedicated permissions systems across multiple instances and availability zones.
Distributed deployment
AuthZed can distribute permissions systems across multiple regions to ensure service survival during regional outages.
Workload isolation
Your workloads remain safe from noisy neighbors: all resources are fully isolated and dedicated to your system.
Global availability
Choose any region currently supported by AWS or GCP. Azure support coming soon!
Security & compliance admin features
Designate bounded access to SpiceDB APIs using access tokens and review all activity in audit logs.
Private networking
Only allow trusted networks to connect to permissions systems, eliminating entire classes of security risks.

The latest from AuthZed

AuthZed Blog

AuthZed Raises Series A Funding from General Catalyst

/assets/team/jake-moshenko.jpg
Jake Moshenko
June 27, 2024
AuthZed announces $12 million of Series A fundraising to build and commercialize our next round of big bets in modern authorization.
8 minutes

Relationship integrity

/assets/team/joey-schorr.jpg
Joey Schorr
September 30, 2024
SpiceDB v1.36.0 introduces a new feature: relationship integrity. It ensures that all relationships written to the backing datastore are signed by a key only known to SpiceDB, protecting your SpiceDB permissions system from modifications to their relationship data.
4 minutes

Open source authorization: embed or look for alternatives? Comparing Casbin and SpiceDB

/images/upload/jess-hustace.jpg
Jess Hustace
September 23, 2024
The article discusses two approaches to authorization: embedding it directly into your application using a library like Casbin, or centralizing it with an external service like SpiceDB. Casbin gives you fine-grained control and flexibility, ideal for smaller projects or custom needs. SpiceDB simplifies management for large-scale systems, offering scalability and auditability. The choice depends on your project's specific needs and priorities.
6 minutes

Learn Together


Join our thriving community to learn about SpiceDB, Zanzibar, production deployments, and more!

Users Online

Get started for free

Join 1000s of companies doing authorization the right way.