Skip to main content

10 docs tagged with "enforceauth"

View all tags

API Keys for PDPs and Automation

API keys are service identities that let OPA/EOPA instances and automation report decision logs and status to EnforceAuth. They are scoped to an entity and carry explicit permission scopes.

Bundle Destinations

A bundle destination is where EnforceAuth publishes OPA bundles after a successful deployment. Your PDPs (OPA, EOPA, or sidecars) pull bundles from this location.

Deployments and Promotion

A deployment is how EnforceAuth turns Git policy sources into OPA bundles at your bundle destination. The Deployments page is the audit trail: who triggered what, for which entity and environment, and whether the pipeline succeeded.

EnforceAuth Getting Started

Deep dive after the 15-minute quickstart. For architecture decisions first, read Your Policy as Code journey.

EnforceAuth Platform Overview

EnforceAuth provides an enterprise authorization control plane designed for production environments — governance, policy lifecycle, versioning, multi-environment promotion, rollback, auditability, compliance evidence, decision telemetry, operational visibility, and enterprise support.

Entity Model and Configuration

EnforceAuth organizes authorization work under entities — a hierarchy of organizations and systems that own policy sources, bundle destinations, environments, secrets, and API keys.

GitHub Actions and CI/CD

EnforceAuth fits into the same Git workflow you use for application code: push Rego changes, run tests in CI, deploy bundles to your bundle destination, and track every run on the Deployments page.

GitHub and Storage Integration Troubleshooting

Most onboarding failures during GitHub and S3 setup are customer-side configuration issues — wrong repo access, branch name, bucket policy, or IAM permissions. EnforceAuth logs the underlying error, but you only save time when you know which surface shows it.

Policy Management in the Console

The Policies page is your operational view of authorization policy across every system in the tenant. Use it to understand coverage, find errors, and open the Git-backed editor when you need to change Rego.

Policy Sources

A policy source tells EnforceAuth where your Rego (and related policy files) live. On every deployment, the platform fetches from this source, runs tests, builds an OPA bundle, and publishes to your bundle destination.