With the growing importance of zero-trust architecture which is based on the principle that nothing can be trusted, questions around the level of access granted have become critical. Furthermore, security and compliance are mandatory problems to tackle in any architecture, and authorization is a crucial part of any solution, bearing in mind that the 2021 top OWASP risk was a broken access control. And last but not least, you have to make authorization flexible, fast and scalable to address nowadays use cases.

Thanks to the implementation of Keycloak open-source Identity and Access Management platform integrated with OpenFGA, which is an open source solution for Fine-Grained Authorization that applies the concept of ReBAC (created by the Auth0 inspired by Zanzibar) you will address those problems. Here there is an article and workshop with more information about how to integrate those platforms.