Apply for $700 in starter credits on AuthZed Cloud

References

Deep dives into authorization concepts, Google Zanzibar, and how to build secure, scalable permissions systems.

Featured

What are the key components of ReBAC?

Learn the core building blocks of ReBAC: object types, relations, permission computation, graph traversal, and consistency guarantees, with implementation examples from SpiceDB and OpenFGA.

9 min

Practice

Building an Authorization Platform: Seven Steps to Implementing AuthZ

Learn how to replace fragmented, DIY authorization with a centralized authorization platform—covering common pitfalls, key design decisions, and a seven-step migration framework.

12 min

Foundations

An Introduction to Google Zanzibar and Relationship-Based Authorization Control

Learn how Google's authorization system works and how relationship-based access control can solve complex permission challenges.

25 min

Foundations

Agent-to-agent (A2A) communication: A guide to Google's A2A protocol

MCP and OAuth 2.1: How authentication works for MCP servers

Landscape

ABAC vs ReBAC: When to use which

PBAC vs ReBAC: When to use which

RBAC vs ReBAC: When to use which

ZTA vs ReBAC: When to use which

Alternatives to OpenFGA

Practice

Auditing and Logging MCP Server Activity for Compliance

MCP authorization patterns: Beyond authentication

Agent authorization: 5 common mistakes

The Challenges of Implementing Authorization On Your Own