Skip to main content

EnforceAuth Platform Overview

EnforceAuth provides an enterprise authorization control plane designed for production environments — governance, policy lifecycle, versioning, multi-environment promotion, rollback, auditability, compliance evidence, decision telemetry, operational visibility, and enterprise support.

What we are (and are not)

EnforceAuth isEnforceAuth is not
Enterprise platform for policy lifecycle, deployments, and auditA replacement for OPA/Cedar PDPs
Multi-tenant SaaS console + APIAn IAM/SSO provider
Decision log ingestion and compliance evidenceA SIEM
Your PDP — OPA or EOPA?

EnforceAuth operationalizes authorization with OSS OPA (default) or Enterprise OPA (EOPA) at enterprise scale. Same Rego, same bundles, same deploy pipeline. → OPA vs EOPA

Define → Enforce → Audit

  1. Define — Rego (and future engines) in Git, peer-reviewed with version history
  2. Enforce — Bundles promoted across environments to your PDP fleet
  3. Audit — Every decision logged for investigation, replay, and compliance

Enterprise capabilities

CapabilityWhat it gives you
GovernanceEntity hierarchy, inherited policy, environment-scoped promotion
Policy lifecycleGit-backed sources, draft → test → deploy, rollback
Fleet operationsPDP health, bundle activation status, monitoring dashboards
Decision telemetryIngestion, replay, coverage, and audit trails
ComplianceContinuous authorization evidence for regulated workloads
IntegrationsGitHub Actions, MCP for AI agents, API and CLI

Multi-engine roadmap

  • OPA / EOPA — production today (OPA vs EOPA)
  • Cedar (Arbi) — coming soon
  • Zanzibar (iBar) — coming soon

Integrations

Next