Introduction:
Today, we hosted an exciting and insightful event that brought together industry experts and tech enthusiasts in KL, Malaysia. With a jam-packed agenda full of cutting-edge topics ranging from Open Policy Agent (OPA) to modern identity management solutions using Open Source technology from the engineers Employeed at Grab Malaysia, we were able to dive deep into technologies shaping the future of security, infrastructure, and software development. Let's take a quick look at the key takeaways from each segment!
Welcome Note
We kicked off the event with a warm welcome to all attendees at Grab Office. It was wonderful to see so many people passionate about tech and eager to learn about the latest trends and solutions.
Talk #1: Open Policy Agent (OPA) at Grab
Our first speaker took us on an insightful journey through Open Policy Agent (OPA), exploring how it's being used at Grab to enhance policy-driven management in their systems. Here’s a brief overview of what we covered:
What is OPA?
Open Policy Agent (OPA) is a lightweight, open-source policy engine that enables unified, context-aware policy enforcement across an organization’s stack.
Use Cases of OPA:
OPA can be applied to a range of scenarios, such as controlling access to services, managing configurations, and ensuring compliance.
- Middleware Integration: We explored how OPA integrates into various middleware systems to enforce policies at scale.
- Infrastructure as Code (IaC): OPA’s role in IaC ensures that policy checks are embedded directly into the infrastructure deployment process.
- Centralized CODEOWNERS: OPA simplifies governance by enforcing policies through centralized CODEOWNERS, improving the consistency and accuracy of access management.
Buzzcorner: Dragonfly v2.2.0, CNCF, and Rust
In this engaging segment, we at Buzzcorner shared insights on the latest release of Dragonfly v2.2.0, an open-source P2P image distribution system. We also discussed the importance of CNCF (Cloud Native Computing Foundation) and the role of Rust in the development of modern, high-performance applications in the CNCF space.
Lightning Talk 🔥 / Hiring
The Lightning Talk session was brief but impactful, providing a platform for several companies to share exciting hiring opportunities. We also heard from several tech leaders who discussed the importance of building strong teams in today’s fast-evolving tech landscape.
Talk #2: DexIDP - Enabling Single Sign-On with a Complex Application Ecosystem
The second talk focused on DexIDP and how it facilitates Single Sign-On (SSO) across organizations with a wide range of applications. This session covered:
- OpenID Connect (OIDC): We explored the foundational principles of OIDC, which enables secure authentication between systems.
- Open Authorization (OAuth 2.0): The speaker explained OAuth 2.0, its role in authorization processes, and how it works alongside OIDC for seamless user authentication.
- Authorization (Authz) vs Authentication (Authn): The distinction between Authz (who can access a resource) and Authn (verifying who the user is) was clarified in the context of modern identity and access management solutions.
Conclusion:
Our event today was an incredible success, and we are truly grateful to everyone and our sponsor (Grab Malaysia) who attended and contributed to the discussions. The insightful talks on Open Policy Agent (OPA), single sign-on with DexIDP, and modern identity management have provided us with a deeper understanding of the evolving tech landscape. A heartfelt thank you to all our speakers, sponsors, and participants for making this event so memorable. Stay tuned for more exciting updates, and we can’t wait to welcome you to our next event!
Top comments (0)