teler-waf
topaz
teler-waf | topaz | |
---|---|---|
6 | 9 | |
293 | 973 | |
4.4% | 1.7% | |
9.2 | 9.5 | |
6 days ago | 9 days ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
teler-waf
- kitabisa/teler-waf: Introduces external custom rules & DSL expression support!
- GitHub - kitabisa/teler-waf: teler-waf v0.6.0 released
- kitabisa/teler-waf: teler-waf is a Go HTTP middleware that provides teler IDS functionality to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate.
-
GitHub - kitabisa/teler-waf: teler-waf is a Go HTTP middleware that provide teler IDS functionality with teler IDS to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate into existing Go applications.
Yes! The package comes with a standard net/http.Handler, thus it's easy to integrate into any existing Go frameworks. Take a look at examples/ directory.
topaz
-
Open Policy Agent
OPA is a great tool for implementing a policy-as-code system. But if you're trying to use it for application authorization (e.g. fine-grained authz for B2B SaaS or a set of internal applications), you may find that its policy story is strong, but it doesn't really have a "data plane": you either store data in a data.json file and rebuild the policy any time that data changes, or make an http.send call out of the policy to fetch dynamic data.
Check out Topaz [0], which uses OPA as its decision engine, but adds a data plane that is based on the ReBAC ideas explored in the Google Zanzibar [1] paper.
Disclaimer: I work on the team [2] that builds and maintains the Topaz project.
[0] https://www.topaz.sh
[1] https://research.google/pubs/zanzibar-googles-consistent-glo...
[2] https://www.aserto.com
-
Show HN: Topaz 0.30 – OSS authz service combining the best of OPA and Zanzibar
You can, simply use the topazd.exe binary from the topaz_windows_x86_64.zip from the GH releases page (https://github.com/aserto-dev/topaz/releases). Note this is currently not a Windows Service, so not net start topaz. Let me know if that would be interesting.
-
OPA (Open Policy Agent) VS topaz - a user suggested alternative
2 projects | 25 Jul 2023
Topaz is an open-source authorization project for cloud-native applications. It uses OPA as the decision engine and supports Rego policy as first-class citizens. It also has an embedded relationship database to support data-centric authorization models like Google Zanzibar's relationship-based access controls (ReBAC).
- Topaz
- Show HN: Topaz: open-source authorization combining the best of OPA and Zanzibar
What are some alternatives?
coraza - OWASP Coraza WAF is a golang modsecurity compatible web application firewall library
openfga - A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar
secure - HTTP middleware for Go that facilitates some quick security wins.
permify - Open source authorization service inspired by Google Zanzibar to build fine-grained and scalable authorization systems.
certificates - An opinionated helper for generating tls certificates
DSP-Shared_Collection
teler - Real-time HTTP Intrusion Detection
spicedb - Open Source, Google Zanzibar-inspired permissions database to enable fine-grained access control for customer applications
Themis - Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
ASP.NET Identity
coraza-caddy - OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities
IAmRoot NuGet Package - 📦🏴☠️ NuGet package that shows we can run arbitrary code from any NuGet package