Blueprints
June 8

Authorization at scale in platform environments

Security is a complex topic. It requires the developer to think about many possibilities and ways to protect their application from external and internal attacks, using audit and trace. In this talk, we share how to abstract away the complexity in platform environments, introducing concepts of permissions validation for access to APIs and services.
Talk abstract

Every day MercadoLibre has more than 10k deploys with over 12k engineers working on its products. In this talk we discuss the challenges of having a platform with a high level of authorization in its APIs and maintaining availability. We’ll cover the purpose of having an authorization module inside your Internal Developer Platform (IDP), to add auditing, traceability, and visibility to security teams, and whenever it’s needed the most. 

Join our talk to discover:

  • The challenges when implementing an AuthZ strategy in your IDP 
  • Tradeoffs to consider for adoption at scale
  • What we learned on this journey

Antônio Malheiros
Engineering Manager, Mercado Libre

Related talks

Blueprints
June 9
Demystifying the hybrid multicloud landing zone
While cloud providers have individuated designs to create landing zones within their respective environments, there is little available guidance on creating modern enterprise hybrid multicloud landing zones. This lack of informed guidance with clear design goals and architectural reasoning results in duplication and reinvention as opposed to increasing learning and enhancing rigor.
Naveen Purushothaman
Chief Architect - Platform Engineering Services, IBM
sponsored
Blueprints
June 8
Build golden paths for day 50, not for day 1!
When most people think about creating golden paths, they think about the simple scaffolding use case of a new service or resource. However, this leaves out the remaining 99% of golden paths you can and should design for your developers. Here’s how to design sustainable golden paths that help both developers and platform engineers.
Kaspar von Grünberg
CEO, Humanitec
sponsored
Blueprints
June 8
Build abstractions, not illusions
The tech we have today is amazing, but it can also be complex. This talk reflects on two decades of building complex distributed systems, highlighting where abstractions helped and where illusions led to major disappointments.
Gregor Hohpe
Author Cloud Strategy
sponsored
Blueprints
June 9
7 platform engineering blueprints that can save the day for developer teams
Software engineers have discovered many patterns, good practices, and useful approaches to solve problems and provide quality and security for applications. Platform engineers are now doing the same in cloud native.
Giulio Roggero
Co-Founder & CTO, Mia-Platform
sponsored