Open Policy Agent (OPA) is an open source, general-purpose policy engine.
-
Updated
Oct 21, 2024 - Go
The Open Policy Agent (OPA, pronounced “oh-pa” ) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.
What is OPA
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
🐊 Gatekeeper - Policy Controller for Kubernetes
Cloud-native authorization for modern applications and APIs
A policy management tool for interacting with Gatekeeper
Integrations, examples, and proof-of-concepts that are not part of OPA proper.
A plugin to enforce OPA policies with Envoy
S3 Reverse Proxy with GET, PUT and DELETE methods and authentication (OpenID Connect and Basic Auth)
Open source compliance tool for development platforms.
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
Sidecar for managing OPA instances in Kubernetes.
Notice: Postee is no longer under active development or maintenance.
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
CLI for searching Rego policies
Traefik plugin which checks JWT tokens for required fields. Supports Open Policy Agent (OPA) and signature validation with JWKS
A Golang restful API boilerplate based on Echo framework v4. Includes tools for module generation, db migration, authorization, modular, authentication and more.
A command line tool for validating Kubernetes configs with rego