Cedar

What is Cedar ?

Basic Components

Policy

A policy is a statement that declares which principals are explicitly permitted/forbidden to perform an action on a resource.

The collection of policies together define the authorization rules for an application. A policy as as follow structure:

Policy can be created in two ways:

• Static Policy: Standalone, complete policies that require no additional processing

• Template-linked Policy: Policies created from a policy template that has placeholders for the principal, resource, or both. The template is completed by replacing the placeholders with specific values.

Entities

Context

Schema

Deep Dive

References

---