What's new at AuthZed?
AuthZed has introduced the Terraform and OpenTofu Provider for AuthZed Dedicated, giving customers a powerful way to manage their authorization infrastructure using industry standard best practices.
With this new provider, teams can define, version, and automate their resources in their AuthZed Dedicated environment entirely through declarative infrastructure-as-code. This makes it easier than ever to integrate authorization management into existing operational workflows. And we’re continuing work to support additional resources in AuthZed Dedicated environments, including Permissions Systems.
Modern infrastructure teams rely on Terraform and OpenTofu to manage everything from compute resources to networking and identity. With the new AuthZed provider, you can now manage your authorization layer in the same way, improving consistency, reducing manual configuration, and enabling repeatable deployments across environments.
For AuthZed customers interested in using the Terraform and OpenTofu provider, please contact your account manager for access.
To explore the provider and get started, visit the AuthZed Terraform Provider on GitHub.
This release brings improvements to SpiceDB's reliability, new AI-assisted development tools, enhanced visibility for cloud customers, and customer stories that showcase real-world authorization implementations.
Better Handling of High Traffic: SpiceDB now intelligently manages write loads by returning clear error messages when the system is busy. (Available when using CockroachDB as the datastore.) This means authorization decisions stay reliable during traffic spikes, preventing service disruptions across applications.
Faster Permission Checks: We've optimized how SpiceDB processes relationship queries, allowing it to skip unnecessary work when checking permissions.
Improved Query Engine: The Lookup Resources engine, which powers queries like "show me everything this user can access," now uses less memory.
Note: If you use the zed command-line tool, you'll need to update to v0.33.0 for full compatibility.
For customers using AuthZed's managed services, this release brings improvements to monitoring, alerting, and operational visibility.
Proactive Resource Monitoring: A new warning banner in the dashboard now alerts you when permission system resource usage is high, giving you time to take action before issues arise. New response code graphs provide visibility into API performance, helping you understand how your authorization system is behaving.
Expanded Monitoring Coverage: Over 25 improvements were made to the monitoring infrastructure, including new alerts that notify teams when storage capacity exceeds 90%, when too many API requests fail, or when memory issues occur. The monitoring system now tracks performance across different regions and customer environments more precisely, helping ensure consistent service quality.
We've launched two Model Context Protocol (MCP) servers that bring SpiceDB resources directly into your AI coding assistant:
These tools work with AI assistants like ChatGPT and Claude Code to help you develop schemas, test permissions, and learn SpiceDB concepts through natural conversation. The zed CLI tool now includes experimental MCP agent support, enabling AI-assisted schema development right from your command line.
All AuthZed client libraries have been updated to support the latest SpiceDB v1.45.4 API changes. Here's what's new:
Watch API Improvements: The Watch API now includes expanded metadata, giving you richer context about permission changes as they happen. This is useful for building audit logs, real-time dashboards, or notification systems that react immediately to authorization updates.
Language-Specific Highlights:
ErrorReason enumThe zed CLI received reliability improvements, including more robust retry mechanisms for Watch functionality and better support for the latest SpiceDB versions.
Turo's Success Story: The world's leading car-sharing platform shared how they transformed their authorization system with SpiceDB and AuthZed Dedicated hosting. Their team-based permissions solution solved critical security challenges where fleet owners previously had to share passwords. After two years in production, they've experienced only one incident, demonstrating the reliability of managed hosting.
Canva Insights on the Dual Write Problem: Artie Shevchecko from Canva presented solutions to the dual-write problem when implementing centralized authorization. The talk showed how SpiceDB simplifies data replication challenges compared to traditional event-driven architectures.
Both presentations were part of the Authorization Infrastructure event hosted by AuthZed in August.
We've launched a brand guidelines page with downloadable assets including AuthZed and SpiceDB logos in multiple formats, complete color palette documentation, and usage guidelines.
Updates, new features, and improvements from AuthZed.