All integrations
Java
SDKs

Authorization for Java applications

Add Cerbos authorization to your Java application with the official SDK. Available on Maven Central, with Spring Boot integration and CompletableFuture support.

Maven Central package

Maven Central package

Available on Maven Central for easy inclusion in Maven and Gradle projects, with no additional repository configuration needed

Spring Boot compatible

Spring Boot compatible

Register the Cerbos client as a Spring bean and integrate authorization checks with Spring Security, controllers, and service layers

Blocking and async clients

Blocking and async clients

Choose CerbosBlockingClient for synchronous calls or CerbosClient for non-blocking operations that return CompletableFuture

What is Cerbos?

Cerbos is an enterprise authorization solution built to secure access across complex, distributed environments, SaaS products, and regulated systems.

It externalizes authorization logic from application code, making access control consistent and centrally managed across all your services. Instead of scattering permission checks throughout your codebase, you make a single API call to the Cerbos PDP.

Authorization policies are written in human-readable YAML supporting RBAC, ABAC, and conditional rules. They live outside your application and can be updated, tested, and deployed independently.

The Java SDK makes integrating Cerbos straightforward, checking authorization is as simple as calling a function, and the stateless PDP scales horizontally with your infrastructure.

Policy-as-codeHuman-readable YAML policies managed like source codeScalable PDPStateless policy decision point with sub-millisecond latencyCentralized managementManage, test, and deploy policies from a single control plane

How to authorize with the Java SDK

  1. Install the Java SDK. Add dev.cerbos:cerbos-sdk-java as a dependency in your Maven pom.xml or Gradle build file.
  2. Initialize the Cerbos client. Create a CerbosBlockingClient or CerbosClient pointing at your Cerbos PDP running as a sidecar, remote service, or connected via Cerbos Hub.
  3. Call checkResources(). Pass the principal, resource, and actions. Use the blocking client for synchronous responses or the async client for CompletableFuture-based responses.
  4. Cerbos returns allow or deny. The PDP evaluates your YAML policies and returns a decision your application can enforce immediately.

FAQ

How do I use the Cerbos Java SDK?

Add the cerbos-sdk-java dependency to your Maven pom.xml or Gradle build file, create a CerbosBlockingClient or CerbosClient pointing at your PDP, and call checkResources() with the principal, resource, and actions.

Does the Java SDK work with Spring Boot?

Yes. The SDK can be configured as a Spring bean and injected into your services and controllers. It works with Spring Security for integrating Cerbos decisions into your existing authorization flow.

Is the Java SDK open source?

Yes. All Cerbos SDKs are open source and available on GitHub. They are actively maintained and kept up to date with the latest Cerbos PDP features.

Learn more about Cerbos

How Cerbos worksCerbos PDPCerbos HubWebinars and ebooksFeatures & use casesSuccess stories

Related integrations

View all integrations →
.NET
.NETNuGet package with async/await and strongly typed Cerbos models
SDKs
Go
GogRPC-native SDK with strongly typed checks and context.Context support
SDKs
JavaScript
JavaScriptAsync SDK for Node.js, edge runtimes, and browsers with TypeScript types
SDKs
Laravel
LaravelCerbos policies behind Laravel Gate::allows() and @can directives
SDKs
PHP
PHPPSR-compatible Composer package for Cerbos authorization in PHP
SDKs
Python
Pythonpip-installable SDK for sync and async Cerbos authorization in Python
SDKs

Cerbos + Java

  • Authorization check via a single function call in Java
  • Policies evolve independently of application code
  • Full audit trail for every authorization decision
  • Stateless PDP instances scale horizontally
Book a free policy workshopTry the Playground