Fine Grained News - June 2024

June 30, 2024 · 3 min read

Andres Aguiar

Product Manager

Welcome to Fine Grained News, June 2024 edition!

This is where we share what has been going on in the OpenFGA community during the last 30 days :).

What are we working on?

We started adding OpenTelemetry instrumentation to our SDKs. We just shipped metrics support for Python and Javascript. We'll continue with tracing and logging, and we'll be adding support for Java, Go and .NET next.
We are close to ship a first iteration to add additional consistency options for OpenFGA.
We are working with Krishna Kumar and Eddie Knight from the CNCF Tag-Security team on a joint security assessment for OpenFGA. We are pretty close to wrapping it up! You can follow the progress in this PR.
We'll be working on adding authorization for OpenFGA APIs.
We've identified a few areas where we can improve performance and we are actively working on them.

If you have any feedback, or want to try a feature early, or are interested to learn more, please reach out!

New Adopters

We are thrilled to welcome Sourcegraph to the list of companies in our Adopters list! We are proud to be addressing their fine-grained authorization needs.

If you are using OpenFGA in production, please consider adding your company/project to the list, it will be greatly appreciated!

Community

Zuplo released an OpenFGA Authorization Inbound Policy that makes it super simple to add fine-grained authorization to your APIs. They are also using OpenFGA deployed globally in GCP for Zuplo itself. You can learn more about their OpenFGA integration journey in this webinar.
Martin Besozzi built an APISIX plugin for OpenFGA. He also published a blog post about Mastering Access Control: Implementing Low-Code Authorization Based on ReBAC and Decoupling Pattern demonstrating how to use it.
Andres Aguiar and Damian Schenkelman will do an OpenFGA Deep Dive in the July 17 episode of Identirati Office Hours.

OpenFGA @ CloudNative SecurityCon

OpenFGA was present in CloudNative SecurityCon North America!

Maria Ines Parnisari from the OpenFGA team and Evan Anderson from Stacklok presented on Implementing a Multi-Tenant, Relationship-Based Authorization Model with OpenFGA.

CloudNative SecurityCon Presentation

We also got a last-minute kiosk to showcase OpenFGA at the event:

OpenFGA Kiosk

Thanks to everyone that stopped by!

Latest Features

In case you missed them, here are some of the latest major features we've added to OpenFGA:

List Users API allows you to retrieve all the users that have a specific relation with a resource.
Modular Models makes it easy for multiple teams to collaborate on a single OpenFGA model.
JetBrain's IDEs plugin to allow syntax coloring and validation of OpenFGA models.
Conditional Tuples allows you to define tuples that are only valid under certain conditions
Spring Boot Starter for OpenFGA simplifies integrating OpenFGA with Spring Security applications.

Transitioning from Discord to CNCF's Slack

As we mentioned before, we transitioned out from Discord for OpenFGA and are now using the CNCF #openfga Slack channel. If you are not part of the CNCF Slack workspace, you need to join the CNCF Slack first.

Checkout https://openfga.dev/community for all the places to find us.

See you next month!

Fine Grained News are published every month. If you have any feedback, want to share your OpenFGA story, or know about something that you think is worth mentioning, please let us know!

What are we working on?​

New Adopters​

Community​

OpenFGA @ CloudNative SecurityCon​

Latest Features​

Transitioning from Discord to CNCF's Slack​

See you next month!​