Hi, I see when I read some of hte docs that the policies are stored in yaml. In the How it Works it says the policy repository can be either git, disk or database. If its git or disk then I assume theres are multiple or single yaml files (not sure which yet) for each resource. If you use the db are the yamls files just added as a single entry in one column of a table or are they stored in different tables/columns and when you do a query it builds a yaml from them tables or something?

Hi Conor!

git

,

disk

and also `blob` drivers indeed store the policies as YAML files (a single file for a single policy, as it stands). For the mutable db drivers, the policies are stored in a single table. The bulk of the policy definition resides within a single binary data-type column, in which we store the serialized data. There's some other metadata related columns also, but that's mostly stuff that can be derived from the serialized policy.

Cool. thanks

You don't have to worry about interacting with the db itself, that's abstracted away from you. You'd handle dynamic policy changes via the Admin API. Interactions can be via the SDK (an example implementation is detailed here), the cerbosctl utility or directly through the API if you preferred.

Awesome. thanks again