firatcan

It's Firat from Permify. We have been building things for quite a while with my co-founders. We have failed a couple of times as well. Building so many products, we realized we had problem with a repetitive and overlooked part of product development.

-Authorizations & Access Control-

It's been a problem to manage roles, permissions, and access control for our apps. Whether it's for subscription tiers, or complex role management.

There are 4 main reasons we frustrated;

1. Overwhelming to build complex & flexible access control.

2. User needs changes quickly.

3. Building access control is repetitive most of the time.

4. Maintenance is important, and usually overlooked.

While working on full time with client projects, features and daily work. It was almost impossible to focus on access control. Also there are dozens of great solutions for Authentication, but not much for Authorizations. So, That's why we built Permify, it's an plug-&-play authorizations API, that makes your apps flexible with future-proof access control. Whether it's for custom roles, permissions, or subscription tier management.

With Permify you can;

- Built Authorizations & Access Control in minutes.

- Create customer roles in seconds.

- We have hosted UI where you can give your users an admin panel for custom roles.

- Gate UI layers & Different Components on your apps for different subscription tiers.

You can try Permify for free without a credit card, and we have a free tier as well :)

I always love HN, yeah I had times when people were rude etc. But usually I found people willing give their best opinions and help me. So feel free to reach me out at firat@permify.co if you need higher plan, I can offer up to 6 months free trial for higher tiers. (Thanks to our AWS credits)

Here's the link:

https://permify.co

My name is Firat, and I just start leading a really technical (an Authorization API, simply Stripe for Authorization)

And I don't have really technical background. I'm trying to talk as many technical person as possible, and understand the problem.

But still I feel incompetent sometimes, so what would be the single best advice you'd give to me? (As a person who are discovering the problem space and understand Authorizations in web and mobile applications)

tl;dr - What do you use for Authorization in your projects, and what's the benefit of using that system?

I'll be honest, I'm working on building an Authorization system right now.

We were contracted to build an ERP for a client. And last of our 4-5 project needed a complex authorization system.

So this time we wanted to build Authorization system as a product which you can customize the permissions, roles and policies. (And use again and again - We already have a Demo)

I have found several ways to handle authorization such as Zanzibar, OPA, Ory Keto etc... And I'm wondering what do you use yourself in your side projects or work?

What's the benefits did you find your own way etc.?