/!\ This is incomplete - work in progress.
Cedar-Server is a server for Cedar policies and data. Written in Rust, with a GRPC API and PostgreSQL backend.
Another implementation of such server is Cedar-Agent a fast, non-persistent, in-memory store, requiring additional software (e.g. OPAL) to manage data and policies. Which I would recommend you take a look at if you're looking at large scale cloud deployments.
This implementation aims to be a battery-included alternative for those who do not require such scale and do not want to have to manage the complexities associated with it.
Cedar's core SDK is written in Rust, hence the choice of language for this project, however the use of Protobuf for the APIs should make this a non-issue to integrate with other stacks.
The resulting schema and client for other languages are available on Buf.build
Stores
- CreatePolicyStore
- DeletePolicyStore
Policies
- CreatePolicy
- GetPolicy
- ListPolicies
- DeletePolicy
Schemas
- CreateSchema
- GetSchema
- ListSchemas
- DeleteSchema
- IsAuthorized
- BatchIsAuthorized
[ ] Use Postgres partitions for individual stores (https://www.postgresql.org/docs/current/ddl-partitioning.html)