https://www.pistack.xyz/tags/authorization/Recent content in Authorization on Pi StackHugoen-usSun, 19 Apr 2026 00:00:00 +0000https://www.pistack.xyz/posts/casbin-vs-opa-vs-cedar-self-hosted-authorization-engines-2026/Sun, 19 Apr 2026 00:00:00 +0000https://www.pistack.xyz/posts/casbin-vs-opa-vs-cedar-self-hosted-authorization-engines-2026/<p>When building self-hosted applications, <strong>authorization is often the hardest part to get right</strong>. Hardcoding access checks into application code leads to tangled logic, security bugs, and painful refactoring when business rules change.</p>https://www.pistack.xyz/posts/spicedb-vs-openfga-vs-permify-self-hosted-fine-grained-authorization-guide-2026/Sat, 18 Apr 2026 00:00:00 +0000https://www.pistack.xyz/posts/spicedb-vs-openfga-vs-permify-self-hosted-fine-grained-authorization-guide-2026/<p>When you move beyond simple role-based access control (RBAC), permissions get complicated fast. &ldquo;Can user X view document Y, but only if they&rsquo;re in the same organization, haven&rsquo;t been blocked by user Z, and the document hasn&rsquo;t expired?&rdquo; Hard-coding that logic into your application is a recipe for bugs, security holes, and endless refactoring.</p>