We are excited to announce the public beta launch of Cerbos Hub, as well as two new unique features, which make authorization management simple for developers.
Cerbos Hub is a complete authorization management system for authoring, testing, and deploying authorization policies. It is a collaborative solution for developer teams who want to save time, streamline their workflows and confidently roll out authorization updates, letting them focus on delivering great products and end-user experiences.
Embedding authorization logic in your core application code becomes a maintenance burden due to potential security bugs and ever-changing business requirements. The stateless and scalable open source Cerbos Policy Decision Point (PDP) product solves this pain, enabling users to seamlessly implement roles and permissions within their applications.
“As an application developer, one of the worst things you can do, aside from rolling your own cryptography, is rolling your own authorization model"
- Sebastien Jeanquier, Chief Security Officer at Upvest
Cerbos Hub provides a complete and centralized authorization SaaS solution. It delivers a management interface and policy distribution infrastructure that extends the PDPs’ functionality.
Cerbos works with every major programming language, with SDKs for JavaScript, Python, Java, Go, Rust, .NET, PHP, and Ruby. Cerbos is also simple to use with popular frameworks such as Express, GraphQL, NextJS, and NestJS.
Cerbos products natively support JWT for integration with authentication providers such as Auth0, Okta, AWS Cognito, Magic, WorkOS, Clerk, FusionAuth, and Stytch.
Documentation for Embedded Policy Decision Point
Powered by WebAssembly, Cerbos Hub generates an embeddable version of its policies, enabling authorization decisions to be made on-device, at-edge and in other environments where it is not possible to run a service. Bundles are generated through the Cerbos Hub CI/CD pipeline and are kept in sync with your policies on every change. The bundles can be accessed in applications via the Cerbos SDKs. And they handle authorization checks without requiring a roundtrip to the backend service.
With today’s variety of deployment models, the need for flexible and adaptable authorization mechanisms is paramount. Cerbos Hub-powered embedded decision points open up even more deployment options to enforce authorization across your entire application architecture.
Documentation for Collaborative Playground
Users of Cerbos’ open source product, Cerbos PDP, will be familiar with the Cerbos Playground. It is an interactive space where users can write, test, and simulate Cerbos policies in real time.
Cerbos Hub now comes with a fully-featured collaborative IDE - Cerbos Hub Playground, for developing, iterating, and testing policy. It provides instant feedback on changes, has an automated test runner, and integrates into your git-based workflow, enabling your authorization policies to evolve with ease.
The playground environment helps both newcomers and experienced developers understand and experiment with Cerbos' capabilities without any setup or installation within minutes. Developers can simulate different scenarios and answer authorization questions specific to their own policies. The sample policies included in the Playground are especially useful for new users, providing best practices and inspiration on how best to design policies for optimal security and scalability.
Cerbos Hub makes authorization and permissions easy, even if you’re not familiar with terms like RBAC, ReBAC, and ABAC:
Cerbos Hub has a generous always-free tier for you to start experimenting and a 3-month free trial with additional features for larger deployments. Give it a try and tell us what you think!
Book a free Policy Workshop to discuss your requirements and get your first policy written by the Cerbos team
Join thousands of developers | Features and updates | 1x per month | No spam, just goodies.