Question 1

How to integrate Ladon into a Go microservice for authorization?

Accepted Answer

Implement a manager for policy storage (e.g., in-memory or community adapter), define policies using Ladon's structs, and call the warden's IsAllowed method in your code. For HTTP, you must create custom endpoints to handle policy management and access requests.

Question 2

Ladon vs Casbin: which is better for access control in Go?

Accepted Answer

Ladon focuses on AWS IAM-like, fine-grained policy-based control with extensible conditions in Go, while Casbin supports multiple models including RBAC and ABAC across languages. Choose Ladon for IAM flexibility in Go ecosystems, but Casbin might offer broader pre-built integrations.

Question 3

Can Ladon work with OAuth2 and OpenID Connect?

Accepted Answer

Yes, Ladon can be integrated with OAuth2/OpenID Connect servers like ORY Hydra, which uses Ladon for access control. You'll need to map tokens to subjects and contexts in your Ladon policies within your application logic.

Question 4

How to add a custom condition in Ladon?

Accepted Answer

Implement the ladon.Condition interface in Go with Fulfills and GetName methods, then register it in ladon.ConditionFactories. For example, create a struct and add it to the factory map to use in policies.

Question 5

What databases can I use to store Ladon policies?

Accepted Answer

Officially, only an in-memory manager is provided. Community adapters exist for CockroachDB, Redis, RethinkDB, and SQL databases via third-party libraries, but availability and stability may vary.

Question 6

Is Ladon suitable for high-performance applications?

Accepted Answer

Ladon performs well with in-memory storage, but with SQL backends, performance degrades due to regex matching. The README notes significant overhead, so for high-traffic systems, consider caching or in-memory solutions to mitigate bottlenecks.

Ladon

What is Ladon?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Open Source Alternative To

Frequently Asked Questions