Posted On: Nov 28, 2022
Today, AWS is announcing the preview of HAQM Verified Permissions, a scalable, fine-grained permissions management and authorization service for custom applications. With HAQM Verified Permissions, application developers can let their end users manage permissions and share access to data. For example, application developers can use HAQM Verified Permissions to define and manage fine grained permissions to determine which HAQM Cognito users have access to which application resources.
This central fine-grained permissions management system simplifies changing and updating permission rules in a single place without needing to change the code. Teams can use the permissions system to shorten their development timelines and implement more dynamic permissions across application resources. HAQM Verified Permissions also gives IT administrators a comprehensive audit capability that scales to millions of policies using automated reasoning.
HAQM Verified Permissions uses a custom policy language called Cedar to define fine-grained permissions for application users. The service manages access within the application by storing and evaluating these fine-grained permissions to determine what each user is allowed to do. Access requests are evaluated in a few milliseconds which allows continual verification as required by Zero Trust. HAQM Verified Permissions can be used with any identity provider, such as HAQM Cognito.
HAQM Verified Permissions is available during the preview period in the following AWS Regions: US East (Ohio), US East (N. Virginia), US West (Oregon), Asia Pacific (Tokyo), and Europe (Ireland).
To join the waitlist to access HAQM Verified Permissions, visit the sign-up page. For more information, visit the HAQM Verified Permissions webpage.