by Chris | Dec 31, 2025 | Blog
In the rapidly evolving landscape of Cloud-Native development, the intersection of Multi-Tenant SaaS and Large Language Model (LLM) integration has introduced unprecedented complexity to access control. As organizations shift from monolithic structures to distributed...
by Chris | Dec 31, 2025 | Project
Project Overview This open-source project demonstrates a production-ready PEP + PDP authorization pattern using Cerbos as the external Policy Decision Point, specifically designed for Multi-Tenant SaaS environments. GitHub link: https://github.com/ChrisXHLeung/jsonRAG...
by Chris | Dec 28, 2025 | Blog
Introduction: The Invisible Crisis of Authorization Silos In the modern distributed landscape, OWASP A01: Broken Access Control has ascended to the top of the security threat hierarchy for a reason. As enterprises move from centralized monoliths to sprawling...
by Chris | Dec 28, 2025 | Project
This project is a high-performance, secure file management showcase. It demonstrates the industry-standard Decoupled Authorization architecture, separating Identity Authentication (Auth0) from Granular Access Control (Cerbos). link:...
by Chris | Dec 17, 2025 | Blog
I. Introduction: The Silent Threat to the Modern Pipeline Modern cyberattacks rarely begin at the application’s external interface. Attackers now target the software supply chain—the dependencies, components, and build artifacts that development teams trust by...
