Developers massively underestimate the time and effort required to implement even basic permissions for SaaS or enterprise applications. We’ve even modeled common designs, so you don’t have to.
Our tools enable developers to design, validate, and iterate before spending time integrating with their applications. Slow, expensive security audits are no longer the only way to gain confidence in your permissions.
Because all applications can query Authzed, developers are always a single API call from checking permissions on any data they’re working with: even when it’s “owned” by another application.
Companies such as Google, GitHub, and Airbnb have all adopted internal permissions services. Authzed is inspired by the authorization system described in the Zanzibar paper.
Resilient globally distributed services like Authzed are exactly the kind of workloads we had in mind when we created CockroachDB. Authzed has the opportunity to redefine how we think about application permissions at a fundamental level.
We knew when building Indent, we’d need a permission service similar to the one at Google, but we didn’t have the resources to spend on the mountain of effort required to build it.