Here's what we've been up to in May:
New set rules & operators
First up, Warrant now supports the 'allOf' (intersection) and 'noneOf' (not) set rules for object type relations, in addition to the already supported 'anyOf' (union) rule. This brings the Warrant authz service closer to the Google Zanzibar specification. Using these rules, you can create more powerful authz policies including those based on exclusion rules to prevent common issues like 'role explosion.' You can read more about the new rule types here.
Revamped Docs & Quickstart guides
We've also revamped our docs site, adding sections for architecture & data model, built-in object types, and created new quickstart guides for role based access control and fine grained authorization.
'Check Access' Updates
The 'Check Access' page in the Warrant dashboard has been renamed to 'Validate' with two separate sections to test your role-based and fine-grained access control rules. Each rule validation now also shows 'route resolution' and processing time to help you easily debug your access rules and check authz check latency.
New Warrants APIs
Stay tuned for more to come in the future and get in touch with us if you have any questions or feedback!