The control plane offers a user-friendly authorization management interface to the build.security platform that dramatically simplifies the process of building and managing your organization's authorization policies. build.security significantly reduces development time and allows organizations to create authorization policies without writing a single line of code. Once created, you can access decision logs that enable you to evaluate and fine-tune your authorization policies, even perform test your policy in a variety of ways prior to enabling a policy change.
The build.security workflow is based on a few basic steps including:
After you log into the platform, you will need to configure some basic elements in the build.security interface, including:
Enabling decision logs (by default, already enabled)
Enabling log shipping (by default, disabled)
Enabling Git integration (by default, disabled)
Defining and publishing a policy which expresses your authorization requirements for allowing or denying your users access to your resources
At any time, you may decide to add additional policies or change existing ones. Finally, build.security enables you to log authorization decisions, centrally collect them and then view / forward them.
In addition, using the
Monitored status option for a policy item, you can analyze the impact that a policy item would have on the authorization decision, without actually activating it.