Authorization Platform - January 2023 Release

What's New

The January 2023 version release of the Authorization Platform brings several "game-changer" features to the way you can create and manage your authorization policies. As you will see below, several new and important features have been added to the Authorization Platform.

• Policy-as-Code 

  • Policy-as-Code is a practice for the management of Policies in a similar way to code. By allowing developers to define Policies-as-Code, the Platform provides a developer-friendly, well defined code format in which they can manage key steps in Policy Management.

  • The Platform’s Policy-as-Code allows efficient management of the full policy lifecycle while easily integrating with CI\CD pipelines. In addition, it allows organizations to standardize the way policies are written and managed across the organization.

  • Together with the full set of management capabilities, the Platform enables better collaboration between business and technical stakeholders. For every policy created in the Platform, both a code representation, and a business-oriented, graphical representation (Policy Map) is available.

• IDP Authorizers

  • This version introduces a simplified way to Integrate Admin Time Authorization as part of the IDP authentication flow, allowing applications to consume claims without the need for additional, specific integration.

  • The new IDP Authorizer enables token enrichment, which is used to dynamically calculate and provide the list of claims (Authorizations) to the IDP, as part of the login process.

Product Enhancements

• In this release, the following features and functionality have been enhanced:

  • Runtime enhancements to further fine-tune Policy decision definitions of Rules used in Policy decisions, include the addition of new operators:

    • <= (less than or equal)

    • => (greater than or equal)

  • Authorization Audit enhancements including:

    • The ability to add an external ID for the AuthZ request. This further improves our traceability capabilities for the integrating Application.

    • Includes the AuthZ calculation duration in Audit, which shows how long it took the Platform to calculate the Policy decision.

  • Policy Map enhancements now include the ability to drill down and see more granular details on Assets, Actions, and Rulesets connected for each Asset Type.

  • Envoy Authorizer Improved Flexibility - support additional methods for serving the PlainID Policy Decision response - in a customizable JWT format.

  • Customer-hosted Deployment Option to install the entire Platform within the customer network including all components (PAP + PAA) on Kubernetes.

  • Policy Authorization Agent Enhancements including:

    • Multi-Region - The Authorization Platform's new Multi-Region Group functionality simplifies managing Authorization requirements across multiple regions and networks.

    • Improved Performance - A new communication architecture that provides faster, more secure interaction between the PlainID Cloud Authorization Platform, Policy Administration Point (PAP) and Customer-hosted Policy Authorization Agents (PDP and PIP).

   -----

We're happy to hear about your experiences with these new features and look forward to hearing more of what you want to see in the Authorization Platform.

As always, please feel free to contact us if you have any questions or feedback.

For more information, visit the PlainID Documentation Portal.