Warrant Changelog - May 2022

Here's what we've been up to in May:

New set rules & operators

First up, Warrant now supports the 'allOf' (intersection) and 'noneOf' (not) set rules for object type relations, in addition to the already supported 'anyOf' (union) rule. This brings the Warrant authz service closer to the Google Zanzibar specification. Using these rules, you can create more powerful authz policies including those based on exclusion rules to prevent common issues like 'role explosion.' You can read more about the new rule types here.

Revamped Docs & Quickstart guides

We've also revamped our docs site, adding sections for architecture & data model, built-in object types, and created new quickstart guides for role based access control and fine grained authorization.

'Check Access' Updates

The 'Check Access' page in the Warrant dashboard has been renamed to 'Validate' with two separate sections to test your role-based and fine-grained access control rules. Each rule validation now also shows 'route resolution' and processing time to help you easily debug your access rules and check authz check latency.

New Warrants APIs

We've added a 'delete' warrant API as well as a new 'list' warrants endpoint to make it easier to work with and manage warrants.

Stay tuned for more to come in the future and get in touch with us if you have any questions or feedback!