AuthZed Blog

What do Benjamin Franklin's satirical letter about waking up early and a failing CI test have in common? When our automated tests mysteriously started breaking after the end of Daylight Saving Time, we uncovered unexpected timestamp behavior and embarked on a systematic debugging journey to find a fix.

The release of SpiceDB v1.38 debuts new foundational API functionality for SpiceDB: Transaction Metadata. When writing relationships, you can now include arbitrary metadata that will be stored alongside the transaction and published to consumers of the Watch API.

Here are 4 ways I'm learning SpiceDB, and this could apply to learning any new technology.

SpiceDB v1.36.0 introduces a new feature: relationship integrity. It ensures that all relationships written to the backing datastore are signed by a key only known to SpiceDB, protecting your SpiceDB permissions system from modifications to their relationship data.

The article discusses two approaches to authorization: embedding it directly into your application using a library like Casbin, or centralizing it with an external service like SpiceDB. Casbin gives you fine-grained control and flexibility, ideal for smaller projects or custom needs. SpiceDB simplifies management for large-scale systems, offering scalability and auditability. The choice depends on your project's specific needs and priorities.

Both SpiceDB and Zanzibar combine performance, scalability, and correctness into one manageable, global authorization solution. Strong consistency is key to ensuring correctness, but caching is necessary for performance. Consistency and caching are often diametrically opposed so how do SpiceDB and Zanzibar solve this problem? With a few key realizations around staleness, when consistency is necessary and how the two interact.

In this episode of That Tech Pod, Jake Moshenko, co-founder and CEO of AuthZed, discusses his journey from Amazon and Google to building a leading permissions system.

AuthZed's CEO and co-founder Jake Moshenko is interviewed at The Open Source Startup Podcast. Learn about the Google Zanzibar approach, AuthZed's focus on large-scale applications, and how a Hacker News launch propelled SpiceDB growth.

Jake Moshenko, co-founder and CEO of AuthZed, discusses his entrepreneurial journey and the challenges of building a distributed authorization platform. He emphasizes the need for fast, consistent authorization in modern applications. The conversation also touches on the technical complexities of distributed systems and AuthZed's approach to addressing them.

While the practice of building authorization in applications is not new, modern approaches are evolving rapidly and our language for defining it remains unsettled.

Announcing 2 new developer tools for SpiceDB: a Language Server Protocol implementation within SpiceDB and a new extension for Visual Studio Code that provides the capabilities of Playground!

SpiceDB v1.33.0 introduces experimental reflection APIs that provide deeper insights into your authorization schema. Explore how these APIs can empower dynamic schema-based decision-making and streamline your authorization workflows.

In this episode of Winning with AI, Jake Moshenko, co-founder and CEO of AuthZed, discusses the challenges of building permission systems and how SpiceDB, a cloud-native permissions system, can help software developers.

Explore how AuthZed's flexible authorization service can streamline user permissions management in your applications. Learn about Google's Zanzibar approach and AuthZed's implementation.

The spicedb-kubeapi-proxy is open source! The SpiceDB KubeAPI Proxy functions as a network proxy positioned between a Kubernetes client and a Kubernetes cluster and can provide fine-grained access management for Kubernetes API objects.

Play in your own SpiceDB Playground: SpiceDB Playground is now open source and self-hostable. Jump into modeling permissions right away - it’s the quickest way to start learning how to use SpiceDB!