ODRL to REGO mapping #86
Comments
|
wow that looks cool! if REGO would have had an RDF representation, we could easily define SHACL rules to map from one to the other ;) |
|
This is something that @jsalvachua has in his roadmap, I have a plan to do this at some point, also a mapping to openFGA - but at the moment, my results with "native" ODRL PDP (policy decision point) are good (1 - 30 microseconds per constraint when the cache is "warm", and when cold still < 50 milliseconds when asking for complex things like
Something to consider for both is that those are zero-trust languages ('everything is prohibited unless explicitly permitted'). So, there is an inherent complexity to working out when a Permission and a Prohibition intersect how those will pan out as permissions in REGO. Also, they don't have the concept of Duties (those would be left entirely for post-processing) and there is no implicit way to "notify" or "interact" with the user. |
|
someone from fiware has already started, but doesn't look very active. @jsalvachua |
Would it be possible to create (an automated) mapping from ODRL to REGO.
https://www.openpolicyagent.org/docs/latest/policy-language/
REGO is the language used to drive the Open Policy Agent https://www.openpolicyagent.org
The text was updated successfully, but these errors were encountered: