Introducing A Low-Code Policy Builder for Rapid Development

The creators of opa-icon-color-1 Open Policy Agent

Curity + Styra

OAuth & OpenID Connect

OAuth and OpenID Connect (OIDC) are the established standards for API-based authentication and authorization. The Curity Identity Server is built for these proven and well-adopted protocols  to enable modern, standards-based security that scales over time.

Authenticating the User

To apply a useful Authorization policy, OPA needs to know who the user is. The Curity Identity Server  allows you to define the user profile in a powerful and flexible authentication workflow. The attributes of the user can be issued as claims in access tokens, consumed by OPA to evaluate an authorization policy.

Claims & Scopes Support Access Control

Attributes defining the user are issued as asserted claims in access tokens. Tokens are excellent carriers of this type of data. OPA can validate that a token has not been tampered with before using its data when evaluating a policy.

Multi-layered integration

The Curity Identity Server ships with a plugin SDK allowing integration with OPA at many different layers. Authorization Managers can be implemented to leverage the power of OPA to authorize access to and filter content exposed by Curity APIs, for example, User Management and Dynamically Registered Clients (DCR).

Using OAuth, OIDC, and OPA for fine-grained authorization in microservices and APIs

Check out this on-demand Webinar to learn more about how the Curity and OPA solutions complement each other.

On-demand webinar

Curity Overview

Curity is a leading provider of API-driven identity management that simplifies complexity and secures digital services for large global enterprises.  Through proven experience, IAM and API expertise, Curity builds innovative solutions that provide secure authentication across multiple digital services.  Curity is trusted by large organizations in many highly regulated industries and partners with leading technology and consulting companies.  To learn more, visit https://curity.io/.

Cloud native
Authorization

Entitlement Explosion Repair

Join Styra and PACLabs on April 11 for a webinar exploring how organizations are using Policy as Code for smarter Access Control.

Register now

Speak with an Engineer

Request time with our team to talk about how you can modernize your access management.

Schedule a demo