RBAC, ReBAC, ABAC, AnyBAC you need.
Never build authorization again.
Trusted by
How Oso for apps works
Oso is what engineering teams use when they’re done rolling their own permissions. It lets your application answer questions like “can this user read that document?” and “which objects can this agent manage?”
Write your policy
RBAC, ReBAC, ABAC, AnyBAC you need. Express any authorization model with Polar, our flexible DSL for permissions logic.
Plug in your data
Sync your authorization data with Oso, or keep it in your database – whatever fits your architecture best.
Integrate (for the last time)
The right abstractions for every use case. Idiomatic SDKs in the language of your choice. Inline policy tests. Logging, regression testing, and debugging. Backed by the most comprehensive documentation on earth and the team that created the category.
Featured in
Testimonials
Oso is a compelling fit because of their singular focus on authz, plus the flexibility of their Polar rule definitions. In twenty minutes we’d managed to define a custom Polar definition to handle our current use case.
We reviewed multiple solutions – Oso came out on top for its devex, scalable and consistent performance, and the flexibility to match all our needs.
Oso is A+. As we moved upmarket, being able to implement authz consistently and accurately helped us move faster and resolved a never-ending source of bugs.
It used to take us months to add new roles. With Oso we cut that time 10x. The Oso team has also been very helpful, making our migration super smooth.
We needed to break our monolith into microservices [and] manage authorization across all of our new microservices. The answer was the Oso authorization framework... Today, we have multiple services within our domain that are utilizing Oso as their source of authorization management.
Built for the critical path
Scalability
Scales horizontally to
1M+
requests/sec
Reliability
Runs in 30+ AZs for
99.99%
uptime
Performance
Delivers
<10ms
p90 latency
Built in Rust
