by Chris | Jan 3, 2026 | Blog
For organizations building a Modern SaaS, the architectural choice is often a painful compromise. Public cloud costs for compute are skyrocketing, yet pure on-premise environments often lack the security rigor and durability required for enterprise-grade compliance....
by Chris | Dec 31, 2025 | Blog
In the rapidly evolving landscape of Cloud-Native development, the intersection of Multi-Tenant SaaS and Large Language Model (LLM) integration has introduced unprecedented complexity to access control. As organizations shift from monolithic structures to distributed...
by Chris | Dec 31, 2025 | Project
Project Overview This open-source project demonstrates a production-ready PEP + PDP authorization pattern using Cerbos as the external Policy Decision Point, specifically designed for Multi-Tenant SaaS environments. GitHub link: https://github.com/ChrisXHLeung/jsonRAG...
by Chris | Dec 28, 2025 | Blog
Introduction: The Invisible Crisis of Authorization Silos In the modern distributed landscape, OWASP A01: Broken Access Control has ascended to the top of the security threat hierarchy for a reason. As enterprises move from centralized monoliths to sprawling...
by Chris | Dec 28, 2025 | Project
This project is a high-performance, secure file management showcase. It demonstrates the industry-standard Decoupled Authorization architecture, separating Identity Authentication (Auth0) from Granular Access Control (Cerbos). link:...
