You are viewing content from a past/completed QCon

Presentation: Beyond Entitlements for Cloud-Native

Track: Modern Java Innovations

Location: Majestic Complex, 6th fl.

Duration: 5:25pm - 6:15pm

Day of week: Tuesday

Share this on:


A Policy Engine is a tool that allows for checking user privileges as well as evaluate a responsibility matrix based on dynamic data for a given user. A Policy Engine is not only an Entitlement Management System but also provides for functional evaluation of conditions that result in deterministic responsibilities for a given user or actor.

This session shows how we use Open Policy Agent with Spring Boot and HOCON to produce a responsibility management solution that scales to volume and performance needs. We also show some hiccups that we faced while deriving the most optimal solution for our needs. A short explanation of some tooling we built for validating the policy files in the IDE will also be discussed.

Speaker: Chandra Guntur

Sr. Principal Architect, Resilient Systems Engineering @BNYMellon

Find Chandra Guntur at

Speaker: Hong Liu

Principal Developer, Resilient Systems Engineering @BNYMellon

Hong Liu is a Principal Developer in Resilient Systems Engineering, BNY Mellon. Hong has 18+ years of experience as a technologist using Java, with a recent focus on microservices and AI. Hong is adept at creating plugins for IDEs such as Eclipse and IntelliJ IDEA. In her spare time, she likes to listen classic music. Astronomy is her favorite theme to watch on TV.

Find Hong Liu at

Proposed Tracks

  • Trouble-Shooting in Production

  • Disrupting Technology on Wall Street

  • Resilience vs Failure in Architecture

  • The Weeds of Distributed File Systems

  • Organizational Agility

  • Product & Customer Focused Teams

  • Just Culture (Blameless Culture)

  • Modern CS in the Real World

  • Architectures You’ve Always Wondered About

  • Machine Learning and AI in the New Decade

  • Evolving Java - Including K8s/Containers, Kotlin and Impact on AOT

  • Ethical Considerations in Software

  • Microservices and Scalability

  • Container Slinging

  • Native Compilation Is Back (A Look at Non-Vm Compilation Targets)