Hacker News new | past | comments | ask | show | jobs | submit login

This seems like a fairly brute-force policy management approach that has the shortcomings outlined in this article from TailScale: https://tailscale.com/blog/rbac-like-it-was-meant-to-be/

What happens when you have sweeping changes to existing policies? It seems like you have to chase down every other line of DSL and fix policies individually.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: