Discussion about this post

User's avatar
David Brossard's avatar

This is because a lot of the languages (OPA Rego, XACML, Oso Polar) are built as declarative languages not imperative programming languages. In addition Rego builds on top of Datalog which makes it even harder to understand. What we need is human-readable, hierarchical, and constrained policy languages. ALFA (and the future ALFA 2.0 in the works at IETF) gives you that. It's easy enough for anyone to at least read and most to write. Check out the samples on alfa.guide and let me know what you think.

Expand full comment

No posts