Currently working on an open-source agent for privilege access management (PAM) and just-in-time access (JIT) to cloud infrastructure, SaaS applications and local systems. It's using serverless workflows (https://serverlessworkflow.io/) and https://www.temporal.io to guarantee robust deterministic workflow execution. Temporal is used to orchestrate elevations across environments and systems. It tasks “agents” to grant access where it needs to be rather than centralising permission stores. It guarantees execution and revocation of permissions. Run it locally for sudo, UAC. Or in the cloud for IAM or for individual applications. Check it out: https://github.com/thand-io/agent
Curious why you chose Temporal, which requires your users to either run an external coordination server or pay Temporal money for theirs? Did you look at DBOS (which doesn't required an external server and can just use your existing database)?
The agent can run without Temporal (completly stateless). Wanted to make it easy to deploy without many dependancies. Temporal is there as it provides quite a number of core capabilities (scheduling, durable execution etc). Without having to deploy lots of stuff (via temporal cloud). I hadn't actually seen DBOS. So I'll take a look thanks!
