本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。 # 资源 **参考** + [Amazon 已验证权限文档](https://docs.aws.amazon.com/verifiedpermissions/)(AWS 文档) + [如何使用 Amazon 验证权限进行授权](https://aws.amazon.com/blogs/security/how-to-use-amazon-verified-permissions-for-authorization/)(AWS 博客文章) + [使用亚马逊验证权限为 ASP.NET 核心应用程序实施自定义授权策略提供程序](https://aws.amazon.com/blogs/dotnet/implement-a-custom-authorization-policy-provider-for-asp-net-core-apps-using-amazon-verified-permissions/)(AWS 博客文章) + [使用 Amazon 验证权限通过 PBAC 管理角色和权利](https://aws.amazon.com/blogs/devops/manage-roles-and-entitlements-with-pbac-using-amazon-verified-permissions/)(AWS 博客文章) + [使用基于每租户策略存储的 Amazon 验证权限进行 SaaS 访问控制](https://aws.amazon.com/blogs/security/saas-access-control-using-amazon-verified-permissions-with-a-per-tenant-policy-store/)(AWS 博客文章) + [OPA 官方文档](https://www.openpolicyagent.org/docs/latest/) + [为什么企业必须拥抱最近毕业的CNCF项目——开放政策代理](https://www.forbes.com/sites/janakirammsv/2021/02/08/why-enterprises-must-embrace-the-most-recently-graduated-cncf-projectopen-policy-agent/?sh=44d1089550e2)(Janakiram MSV 在《福布斯》上发表的文章,2021年2月8日) + [使用开放策略代理创建自定义 Lambda 授权](https://aws.amazon.com/blogs/opensource/creating-a-custom-lambda-authorizer-using-open-policy-agent/)方(AWS 博客文章) + [通过 Open Policy Agent 使用 AWS Cloud Development Kit 实现策略即代码](https://aws.amazon.com/blogs/opensource/realize-policy-as-code-with-aws-cloud-development-kit-through-open-policy-agent/)(AWS 博客文章) + [云治理和合规性 AWS 以政策即代码](https://aws.amazon.com/blogs/opensource/cloud-governance-and-compliance-on-aws-with-policy-as-code/)(AWS 博客文章) + [在 Amazon EKS 上使用开放政策代理](https://aws.amazon.com/blogs/opensource/using-open-policy-agent-on-amazon-eks/)(AWS 博客文章) + [使用开放政策代理、Amazon 和 AWS Lambda(AWS 博客文章)对 Amazon EventBridge ECS 进行合规即代码](https://aws.amazon.com/blogs/containers/compliance-as-code-for-amazon-ecs-using-open-policy-agent-amazon-eventbridge-and-aws-lambda/) + [Kubernetes 基于策略的对策 — 第 1 部分](https://aws.amazon.com/blogs/containers/policy-based-countermeasures-for-kubernetes-part-1/)(博客文章)AWS + [使用 API Gateway Lambda 授权方](https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-use-lambda-authorizer.html)(文档)AWS **工具** + [Cedar Play](https://www.cedarpolicy.com/en/playground) ground(用于在浏览器中测试 Cedar) + [雪松 Github](https://github.com/cedar-policy) + [雪松语言参考](https://www.cedarpolicy.com/en) + [Rego Playgro](https://play.openpolicyagent.org/) und(用于在浏览器中测试 Rego) + [OPA 存储库 GitHub](https://github.com/open-policy-agent/opa) **合作伙伴** + [Identity and Access Management](https://partners.amazonaws.com/search/partners?facets=Use%20Case%20%3A%20Security%20%3A%20Identity%20and%20Access%20Management) + [应用程序安全合作伙伴](https://partners.amazonaws.com/search/partners?facets=Use%20Case%20%3A%20Security%20%3A%20Application%20Security) + [云治理合作伙伴](https://partners.amazonaws.com/search/partners?facets=Use%20Case%20%3A%20Cloud%20Operations%20%3A%20Cloud%20Governance) + [安全与合规合作伙伴](https://partners.amazonaws.com/search/partners?facets=Industry%20%3A%20Government%20%3A%20Security%20%26%20Compliance) + [安全运营和自动化合作伙伴](https://partners.amazonaws.com/search/partners?facets=Use%20Case%20%3A%20Security%20%3A%20Security%20Operations%20and%20Automation) + [安全工程合作伙伴](https://partners.amazonaws.com/search/partners?facets=Use%20Case%20%3A%20Security%20%3A%20Security%20Engineering)