This is so great to hear! Congratulations to the OPA team!
I'm the Group Tech Lead for the Security Org at Yelp. I've found great utility from the OPA project. At the time of this writing, I've implemented authorization semantics using OPA across several different use cases:
- Service mesh authorization (via Envoy ext_authz filter) - Linux authorization (via PAM module) - Kubernetes Authorization (via Authorization Webhook)
In all these cases, OPA has been able to meet all security and operational requirements.
My experience with the documentation, tooling, and support from the maintainers and the community has been really positive.
