Chapter 8: Policy Engines
Now that we have established concepts such as Everything as Code (EaC), talked about the different instruments, and discussed the implementation of PolicyOps, this chapter will begin highlighting the more technical part of coercive instruments to help understand how to establish authorization and access to resources.
We will define policy engines, their role, and their benefits. We will see some examples of the most common policy engines in the ecosystem, such as Kyverno, Sentinel, and K-Rail.
Each section will be focused on a small introduction to the policy engine, with an example policy being shown. We will also show the architecture when it makes sense, followed by the main benefits and a summary.
By the end of ...
Get Policy Design in the Age of Digital Adoption now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
