So, "like IAM but generalized to all cloud providers"?
My worry is that there will be statements that only make sense with one cloud provider -- like, you're running on Google Cloud, and you want to make some declaration that only makes sense in Google Cloud. But I guess Cedar wouldn't allow that?
It's like SQL libraries: the ones that are supposed to be database-agnostic usually have some escape hatch to say "I need to call this Postgres-specific function."
My worry is that there will be statements that only make sense with one cloud provider -- like, you're running on Google Cloud, and you want to make some declaration that only makes sense in Google Cloud. But I guess Cedar wouldn't allow that?
It's like SQL libraries: the ones that are supposed to be database-agnostic usually have some escape hatch to say "I need to call this Postgres-specific function."