Top 20 Python Authorization Projects

OAuthLib

1 2,740 7.7 Python

A generic, spec-compliant, thorough implementation of the OAuth request-signing logic
OPAL

33 2,281 8.9 Python

Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...) (by permitio)

Project mention: Top 5 Access Control Features You Should Implement in 2024 | dev.to | 2023-12-27

Another tool that can help you deploy a Policy as Code-based solution in 2024 is OPAL, the Open Policy Administration Layer. OPAL is an open-source project that provides a comprehensive policy-based service for applications. With one click, you can deploy a full architecture of a Git-based centralized policy store with decentralized policy engines running as a sidecar with your applications. OPAL also provides a unified architecture to sync all the data you need with the policy engines.

WorkOS

workos.com sponsored

The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
django-rules

3 1,767 4.8 Python

Awesome Django authorization, without the database
KubiScan

10 1,277 5.9 Python

A tool to scan Kubernetes cluster for risky permissions
pycasbin

4 1,276 8.0 Python

An authorization library that supports access control models like ACL, RBAC, ABAC in Python
Authomatic

2 1,027 4.0 Python

Simple yet powerful authorization / authentication client library for Python web applications.
Autorize

3 882 4.7 Python

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

Project mention: Autorize – The most popular tool to discover AuthZ/AuthN flaws | news.ycombinator.com | 2023-12-28

InfluxDB

www.influxdata.com sponsored

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Python Social

2 817 8.4 Python

Python Social Auth - Core

Project mention: New, easy to integrate OAuth2 authentication for FastAPI | /r/Python | 2023-08-22

fastapi-oauth2 is a middleware-based social authentication mechanism supporting several OAuth2 providers. It leverages the social-core authentication backends and integrates seamlessly with FastAPI applications.

django-rest-framework-passwordless

1 688 0.0 Python

Passwordless Auth for Django REST Framework
easyauth

4 524 4.4 Python

Create a centralized Authentication and Authorization token server. Easily secure FastAPI endpoints based on Users, Groups, Roles or Permissions with very little database usage.
route-detect

2 226 6.5 Python

Find authentication (authn) and authorization (authz) security bugs in web application routes.

Project mention: Introducing route-detect: find authentication and authorization bugs in web application routes | /r/netsec | 2023-06-29

Here's the paper [PDF] behind route-detect if you're interested in the details: https://github.com/mschwager/route-detect/blob/main/practicum/final-paper.pdf

raider

1 103 0.0 Python

OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions (by OWASP)
django-casbin

1 97 3.2 Python

Authorization middleware for Django based on PyCasbin

Project mention: Ask HN: How do you implement authorization in Django? | news.ycombinator.com | 2023-12-03

sanic-security

22 90 7.9 Python

An effective, simple, and async security library for the Sanic framework.
deny

1 84 0.0 Python

Python authorization library
fastapi-auth-middleware

1 74 0.0 Python

Lightweight auth middleware for FastAPI that just works. Fits most auth workflows with only a few lines of code
simple-auth0-fastapi-react-app

1 73 2.7 Python

A simple application for authentication, authorization and user management based on Auth0. 🐍 Python ⚡ FastAPI + React.
EdgeAuth-Token-Python

1 27 2.8 Python

Akamai Authorization Token for Python
targe

3 9 2.1 Python

Policy based authorization library built for python.
blog-rbac

1 4 10.0 Python

A simple blogging application built using Flask featuring RBAC model based on Google Zanzibar implemented via Permify service. (by BOVAGE)
SaaSHub

www.saashub.com sponsored

SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Python Authorization related posts

Top 5 Access Control Features You Should Implement in 2024
2 projects | dev.to | 27 Dec 2023
How Reddit Built Authorization with OPA
2 projects | dev.to | 18 Dec 2023
OPAL: A Flexible, Self-Hosted Authorization Solution Inspired by Netflix's AuthZ Strategy
1 project | /r/selfhosted | 11 Dec 2023
Policy as Code Open Source Project – Roadmap Questions
1 project | news.ycombinator.com | 11 Dec 2023
Opal – an open source cross-language policy administration tool
3 projects | news.ycombinator.com | 6 Nov 2023
Implementing Role-Based Access Control in Django
2 projects | dev.to | 1 Nov 2023
Terraform Provider for Application-level Authorization
3 projects | /r/Terraform | 12 Oct 2023
A note from our sponsor - SaaSHub
www.saashub.com | 26 Apr 2024

SaaSHub helps you find the best software and product alternatives Learn more →

Index

What are some of the best open-source Authorization projects in Python? This list will help you:

	Project	Stars
1	OAuthLib	2,740
2	OPAL	2,281
3	django-rules	1,767
4	KubiScan	1,277
5	pycasbin	1,276
6	Authomatic	1,027
7	Autorize	882
8	Python Social	817
9	django-rest-framework-passwordless	688
10	easyauth	524
11	route-detect	226
12	raider	103
13	django-casbin	97
14	sanic-security	90
15	deny	84
16	fastapi-auth-middleware	74
17	simple-auth0-fastapi-react-app	73
18	EdgeAuth-Token-Python	27
19	targe	9
20	blog-rbac	4