Policies

Policies in the Kubiya platform are rules defined using Open Policy Agent (OPA) and written in the Rego language. These policies enable Attribute-Based Access Control (ABAC), a flexible and dynamic access control mechanism.

By leveraging ABAC, policies evaluate user, resource, and contextual attributes in real-time to make authorization decisions for tools and actions within the platform. This approach ensures fine-grained control over who can perform specific actions or access particular resources, aligning security enforcement with organizational requirements and compliance standards.

With Kubiya, policies are directly integrated into the platform's automation workflows, ensuring secure interactions with tools and services. Administrators can define policies to enforce various rules, such as restricting access to sensitive workflows based on a user's role, ensuring requests are executed only during specific timeframes, or limiting operations to users with approved permissions.

By utilizing OPA's robust capabilities, Kubiya makes it easier to create, test, and apply policies that scale with your organization's needs, empowering teams to manage permissions effectively while maintaining security and governance.