Go upmarket faster
Enterprise-grade authorization without redoing your application architecture.
Platform Engineering Teams 🤍 Oso
![VISA logo](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/6164d5e299bc4583327cdb82_1153467.png)
![0xide logo](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/62425410deb53f3d81bd0d2a_Oxide.png)
![fiddler logo](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/60f7321fb0380c7d73e90a77_fiddler%20white.png)
![Microsoft Logo](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/63ebb24dc2eaac475390b341_Microsoft%20white.png)
![Arc logo](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/648a4f9c388022dcf4a8f8f2_arc%20logo.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/6495ba7afa74fe2dcb625bdd_Fever_logo.svg.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/63375e9a3009b069ae0a7538_vz-2_1c_rgb_r.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/624255d56cd76192cd0f3ce0_Optum.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86c789389e51ef2003e4b_sesh.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/648b045692d1619b4eb14e24_Productboard%20(1).png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a859aa1f3146d16804e147_3%20ganeymede.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a74eff20f10f4fe584b806_unnamed.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/648b090bf8a7ff8e3e6a588c_Oyster_Logo.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a85bd4b0e239b2ae48e62b_6%20waylit.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a860e65e7fa3896918392c_9%20digimarc.webp)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/60f1efe92ca989de1c832413_Intercom_Logo_Horizontal_Black.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a8632d756e06b1f709188c_12%20Ericsson-logo.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/624266296cd761abcc0f98ba_Prudential%20Logo%201.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a85ebad2425a01fd4a60f0_4%20Outside.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a85f9ee8997e5a27d051bc_14%20olo%20logo.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a85ef1b3548ce52d9c0397_7%20Xendit.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a868591adcb00160c5ad2e_8%20chan%20zuckerberg.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a8686c44e5cd1563b6eac2_15%20hour%20one.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a8686fa4d8d06ce58e35ff_17%20arenko%20group%20logo.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a8687308bd168395f3c34c_11%20veeva.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a8686a93be72508a50212d_pixofarm.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a868633bb2957738cae84d_27%20Kaleidoscope_logo_(002).png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86860944d79396cce7a39_24%20amplience.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86868151bd4b249c99300_30%20Olive_Logo.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86c3b0c3e07ee19a7c52f_25%20prima.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86a91944d79396cd186cc_32%20VITAS_Healthcare_logo.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86a91f15a0eb004bcded0_31%20Picket_PrimaryLogo_Purple.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86a95151bd4b249ccabbf_Wellhty.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/649c4f387d24dbb8b992a284_logotype-lapis.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86b661937bf71d11fc596_20%20ReplyPro.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86b66e6d7f48c1ff58749_19%20first%20rosonance.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/64a86b6648fbf45c6d46cd9c_21%20sparkmeter.png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/66958fe719199eb7d295b51f_What%20is%20Oso%20(1).png)
What is Oso?
- Oso is authorization as a service, like LaunchDarkly is feature flags as a service or Auth0 is authentication as a service
- Oso exposes an API that can answer any permissions question, like:
- Can user X perform action Y on resource Z?
- List the resources can user P perform action Q on?
- What actions can user A perform on resource B?
- Why did user X get access to resource Y?
Local authorization
Generates SQL filters for you to run on your app database
High availability
Runs in 20+ regions for 99.99% uptime
Performance
<10 ms latency and up to
1M reads/sec
Extensible
RBAC, ReBAC, and ABAC
RBAC, ReBAC, and ABAC
Deterministic
Testable, debuggable, observable
Testable, debuggable, observable
Run anywhere
Cloud, hybrid, or on-prem
Cloud, hybrid, or on-prem
Built in 🦀 Rust, hardened by thousands of engineering teams
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/661e820e762f29f2cf062ffa_Group%20216.png)
Why Oso?
- The only authorization service that doesn’t force you to rethink your application architecture, enabling you to ship basic RBAC, fine-grained permissions, and custom roles in weeks
- Oso authorizes locally using your *existing* database – no syncing required
- Roll out Oso incrementally across your services and apps
- When needed, you can centralize shared permissions data in Oso Cloud
How Oso works
- Write your authorization rules in Polar, Oso’s DSL for authorization
- Tell Oso about your database schema
- Call the Oso API to ask any authorization question
- Oso generates SQL filters, which you run locally against your database and, optionally, shared permissions data in Oso Cloud
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/66958851ee2b5863abb33908_how%20oso%20works%201%20(2).png)
![](https://cdn.prod.website-files.com/5f148310b9588c295ed77f20/6696c031570bd6766b22f5ee_authz%20as%20a%20service%202.png)
Why authorization as a service?
- Ship changes fast and reduce errors by decoupling authorization code from business logic
- Ensure security and correctness
- Eliminate duplicate effort by having a shared capability across teams, like authentication or feature flags
- Transition to microservices successfully