Using GitLab as your source code provider
Securing your source code
GitLab is a DevOps platform that can help you quickly ship, deploy, and store packages and containers. You can also use GitLab as a source code provider for storing and versioning authorization policy code.
Aserto expresses policies as code. Developers can build, tag, sign, push, and pull access control policies like Docker containers.
Benefits of using the Policy CLI with GitLab
Aserto natively supports GitLab as a source code provider for authorization policies. With the Policy CLI, you can build, tag, and then push policy updates to your GitLab organization and Aserto will automatically update connected policy instances. Leveraging the Policy CLI with GitLab streamlines building and evolving access control policies.
What is Aserto?
Aserto helps developers build secure applications. We make it easy to add fine-grained, policy-based, real-time access control to cloud applications and APIs. Built around established cloud-native, open-source technologies, like OPA and Zanzibar, Aserto handles all the heavy lifting required to achieve secure, scalable, high-performance access management.
Aserto authorizes locally and manages centrally, offering blazing-fast authorization of a local library, coupled with a centralized control plane for managing policies, user attributes, resource and relationship data, and decision logs. And it comes with everything you need to deliver fine-grained RBAC, ABAC, or ReBAC, as well as comprehensive developer resources for any language or framework - saving you months of engineering time.
VP of Technology
"Authorization involves really hard problems that I want experts to solve. We like to focus our internal engineering efforts on our customers and their problems. Aserto allows us to do just that, at a small fraction of the cost it would take to build and maintain it ourselves, not to mention the opportunity cost."
Mathias Biilmann Christensen
Co-founder & CEO, Netlify
"As millions of developers and businesses are adopting a Jamstack approach, most modern web applications involve multiple APIs and services. Aserto's promise of separating policies from code could radically simplify the implementation of authorization across the front-end UI and the larger world of back-end functions and endpoints."
"Building & managing an authorization/RBAC system is a huge pain, especially at enterprise scale. So stop! Aserto has a distributed, millisecond latency, 100% availability API for that. I'm excited to help as an angel investor!"