RBAC done right

Oso lets you write policies to control who can do what in your app. Select different policies above to see how they change the permissions in the sample app on the right.

For teams that are past rolling their own permissions

Authorization, abstracted

Authorization is intertwined with the rest of your code – hard to refactor, debug, and reason about.

Oso Cloud gives you:
  • An opinionated model for authorization
  • Clean abstractions and primitives for common patterns
  • A fully-managed service built on best practices

Copy pasta, and be done with it.
Get an overview of Oso Cloud

Trusted and verified

Leaky authorization abstractions make for leaky authorization systems.

Oso is a provable, fully-managed authorization system with:
  • Unit testing for your authorization policies
  • Visibility into why authorization decisions succeed or fail
  • High availability and low latency on every request

You can now sleep easier.
Run your first authorization check

Backed by open source

It's your first time looking at an authorization service and you'd like some assurances. Fair enough.

Oso Cloud is a fully-managed authorization service. At the heart of Oso Cloud is the open source Oso library, trusted by startups to the Fortune 100. Get the benefit of a cloud service with the comfort of having many eyes on Oso open source code and freedom from vendor lock-in.

Or if you prefer to DIY or have on-premises requirements, you can build your own authorization solution with the Oso library.
Read the Oso library docs
Authorization Academy

Learn authorization best practices

Read a series of technical guides that explains how to build authorization into an app, including architecture, modeling patterns, enforcement, and more — whether you use Oso or not.
Browse the Guides

Loved by Developers

Calvin French-Owen
Founder, Segment

“We spent 6+ months building authz infra. Oso is ensuring other companies get the right building blocks from day one."

Brian Scanlan
Engineer, Intercom

“Oso is excellent and well worth taking a look at. The rollout at Intercom has been very slick."

KC Chintalapati
Engineer, Fiddler

“Oso was the fastest path to building roles and has been incredible – easy to wrap our heads around, great docs, and makes life much simpler."

Karan Talati
CEO, First Resonance

“We love Oso because it lets us manage the chaos of access. We got up to speed in 1 week and into production in 3 weeks with 1 engineer.”

Nicholas Matison
Senior Engineer, Wayfair

“We needed to manage authorization across all of our new microservices. The answer was the Oso authorization framework."

Simen A. W. Olsen
CDO, Bjerk

“We love Oso, and that's not just because their authorization library is the best, but because the team is awesome too!"

Andrew McClain
Founding Engineer, Sesh

“Oso gives us everything we need to solve authorization – conceptually and implementation-wise. It's just the right amount of magic."

Mike Dearman
Engineer, Undisclosed

“I've really appreciated the teamwork and honestly, quick turnaround vs. other vendors and projects."

Let's see some code.