Python Authorization

Open-source Python projects categorized as Authorization

Missing quite a few other open source projects in this space like SuperTokens ( and Keycloak.

Top 17 Python Authorization Projects

  • OAuthLib

    A generic, spec-compliant, thorough implementation of the OAuth request-signing logic

    Project mention: Easy Django library for Oauth2 | | 2022-06-27


  • django-rules

    Awesome Django authorization, without the database

    Project mention: Permissions (access control) in web apps | | 2022-11-30 A generic, approachable open source framework for building rule-based systems in Django (Python).

  • Sonar

    Write Clean Python Code. Always.. Sonar helps you commit clean code every time. With over 225 unique rules to find Python bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.

  • OPAL

    Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...) (by permitio)

    Project mention: Cedar Policy Language Is Now Open Source | | 2023-05-10

    I agree with you re:"I wouldn't say Cedar is directly competitive as SpiceDB" - I think Zanzibar and SpiceDB in particular can work well together with Cedar / OPA. By syncing SpiceDB via OPAL[0] into edge nodes with Cedar-agents[1].


  • KubiScan

    A tool to scan Kubernetes cluster for risky permissions

    Project mention: Looking for Tips on Open Sourcing a kubernetes security tool | | 2022-10-12
  • pycasbin

    An authorization library that supports access control models like ACL, RBAC, ABAC in Python

    Project mention: GitHub - holinnn/deny: Python authorization library | | 2022-06-02

    See also and targe and oso.

  • Authomatic

    Simple yet powerful authorization / authentication client library for Python web applications.

  • Python Social

    Python Social Auth - Core

  • InfluxDB

    Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.

  • Autorize

    Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

    Project mention: Plugins that allow you to automate the Authentication and Authorization Security Testin | | 2022-12-06

    View on GitHub

  • django-rest-framework-passwordless

    Passwordless Auth for Django REST Framework

  • easyauth

    Create a centralized Authentication and Authorization token server. Easily secure FastAPI endpoints based on Users, Groups, Roles or Permissions with very little database usage.

  • raider

    OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions (by OWASP)

  • deny

    Python authorization library

    Project mention: GitHub - holinnn/deny: Python authorization library | | 2022-06-02

    But my client canceled the mission, so here it is, new open source project :

  • sanic-security

    An effective, simple, and async security library for the Sanic framework.

    Project mention: Sanic Security: An effective, simple, and async security library for the Sanic framework. (Python) | | 2023-02-03
  • fastapi-auth-middleware

    Lightweight auth middleware for FastAPI that just works. Fits most auth workflows with only a few lines of code

    Project mention: Using Dependency Injection in SQL Alchemy Model? | | 2023-04-25

    You’re looking for a auth middleware and the context variables feature of python. Not exactly dependency injection, more like thread-save global variables. Check out starlettes context middleware: and You may also have a look at one of my personal projects for inspiration:

  • simple-auth0-fastapi-react-app

    A simple application for authentication, authorization and user management based on Auth0. 🐍 Python ⚡ FastAPI + React.

    Project mention: Rant about Auth0 | | 2023-02-14
  • targe

    Policy based authorization library built for python.

  • blog-rbac

    A simple blogging application built using Flask featuring RBAC model based on Google Zanzibar implemented via Permify service. (by BOVAGE)

    Project mention: Create Robust Access Control in Your Flask Application using Flask-login & Permify | | 2023-02-24

    Note: The source code for this project is available on GitHub.

  • CodiumAI

    TestGPT | Generating meaningful tests for busy devs. Get non-trivial tests (and trivial, too!) suggested right inside your IDE, so you can code smart, create more value, and stay confident when you push.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2023-05-10.

Python Authorization related posts


What are some of the best open-source Authorization projects in Python? This list will help you:

Project Stars
1 OAuthLib 2,581
2 django-rules 1,628
3 OPAL 1,570
4 KubiScan 1,133
5 pycasbin 1,107
6 Authomatic 1,010
7 Python Social 768
8 Autorize 674
9 django-rest-framework-passwordless 620
10 easyauth 443
11 raider 99
12 deny 84
13 sanic-security 79
14 fastapi-auth-middleware 49
15 simple-auth0-fastapi-react-app 32
16 targe 9
17 blog-rbac 3
ONLYOFFICE Docs — document collaboration in your environment
Powerful document editing and collaboration in your app or environment. Ultimate security, API and 30+ ready connectors, SaaS or on-premises