Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
Melange is a free, open-source OpenFGA-to-PostgreSQL authorization compiler. It reads authorization models written in the OpenFGA DSL and compiles each relation into dedicated PostgreSQL functions, allowing permission checks to run directly inside your existing database instead of relying on a separate authorization service. Its core goal is to deliver Zanzibar-style fine-grained, relationship-based access control while reducing network calls and external state synchronization.
Melange’s core components include a CLI, schema.fga, a user-created melange_tuples view, and optional runtime libraries. The CLI handles workflows such as validate, migrate, doctor, and client generation. During migration, it installs functions such as check_permission, list_accessible_objects, list_accessible_subjects, as well as generated functions for each type+relation. It requires PostgreSQL 14+ and maps existing business tables into authorization tuples such as subject_type, subject_id, relation, object_type, and object_id through a view. This keeps permission data consistent with business data and makes it transaction-aware.
The generated SQL functions can be called from Go, Python, Node.js, or any PostgreSQL client. The documentation also mentions Go and TypeScript runtime libraries, which provide type-safe wrappers, caching, batch checks, contextual tuples, decision overrides, and error mapping. Installation options include Homebrew, Go install, and binary packages from GitHub releases. Because it is compatible with the OpenFGA DSL, teams already familiar with OpenFGA modeling should face a relatively low migration cost.
The page clearly states that Melange is free and open source, and we did not find information about a commercial edition, hosted service, or paid support. The documentation is fairly strong, covering installation, quick start, project initialization, migrations, permission checks, list queries, caching, testing, extensions, troubleshooting, performance, CLI/SQL/Go/TypeScript APIs, and OpenFGA compatibility, with plenty of command-line and SQL examples.
Its advantages include not needing an external authorization service, fewer network round trips, consistency with database transactions, and the ability to query existing tables directly. The downsides are its tight coupling to PostgreSQL 14+, the need to design and maintain the melange_tuples view yourself, and the fact that stability still needs to be evaluated while the project remains in the v0.x stage. It is best suited for PostgreSQL-based SaaS products, multi-tenant systems, and backend teams dealing with complex organization/project-level permissions where consistency matters.
The crawled text did not provide information about mainland China network access, payments, or mirrors, so its access status can only be marked as unknown. If GitHub access or binary downloads are unstable, alternatives such as OpenFGA, SpiceDB, Casbin, Oso, and Permify may be worth evaluating.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on melange.sh official site.
melange.sh is an Unknown Dev Tools provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach melange.sh directly.