End-to-end authorization platform
Allow your entire team - from devs to sales, to securely manage permissions. The only solution with a no-code policy editor. Supports any model - RBAC, ABAC and ReBAC. Permit generates fully transparent policy as code based on OPA's Rego or AWS' Cedar. Everything is managed as code in Git and controlled with a simple API.
APIs for everything
Create, manage and automate your policies with Permit's API. Anything done via the UI can be done with our API, Terraform provider or SDKs as well!
One platform, any use case
Create dynamic Role Based Access Control policies, like: Banker can Approve Loan. Build nuanced attribute based access control policies by adding attributes, like: Weekend Shift Employees can access Database during Weekend. Create policies based on relationships between users and resources, like: Caregiver of a Patient can View Patient's Medical Files.
Fully functional authorization in 5 minutes
Just add permit.check() to your code, middleware, mesh, or API gateway. Seamlessly migrate from any existing authorization solution. GitOps and Multi-tenancy available out-of-the-box.
Hybrid Model
All authorization decisions are made on your side with zero latency. Use sensitive data for authorization decisions, without it ever leaving your VPC/Network. Permit is always up (+99.99) - but you are not dependent on our availability. Compliant with HIPAA, SOC2, and more.
Flexible, Customizable, and Scalable Implementation
Supports any Authentication provider.
