Rust Authorization

Open-source Rust projects categorized as Authorization

Missing quite a few other open source projects in this space like SuperTokens (https://supertokens.com) and Keycloak.

Top 9 Rust Authorization Projects

  • oso

    Oso is a batteries-included framework for building authorization in your application.

    Project mention: Show HN: ILLA is an Open-source alternative to Retool | news.ycombinator.com | 2022-11-19

    Not OP but Authentication is easy, authorization is a cross-cutting concern that often requires custom code. E.g., there are people and teams, both of which can have different kinds of access to something (read/write). Sometimes teams have sub-teams. Do the sub-teams have access to the parent teams' resources and/or vice versa? Also what kind of sharing are you going to support? Do people have to have an account to view stuff shared to them or can you just send a link? There are some efforts to make custom DSLs for describing authorization policies, to avoid cross-cutting code[1].

    Computed fields require different treatment at every level of the stack. This isn't inherently hard, but it is an extra feature these low-code/no-code platforms need. Where things get difficult is inn migrations. It's common for a field that is computed at the beginning to become customizable, or for the computation to change. When that happens, what should the value be for old columns? Computed fields also often pull data from multiple other tables, which may require some combination of custom queries and database optimization.

    [1] https://github.com/osohq/oso

  • casbin-rs

    An authorization library that supports access control models like ACL, RBAC, ABAC in Rust.

    Project mention: A Tutorial on How to Integrate Casbin with Poem Web Services | dev.to | 2022-07-23

    Casbin-rs is an authorization library that supports access control models like ACL, RBAC, ABAC written in Rust.

  • Scout APM

    Truly a developer’s best friend. Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.

  • yup-oauth2

    An oauth2 client implementation providing the Device, Installed, Service Account, and several more flows.

  • biscuit-rust

    Rust implementation of the Biscuit authorization token

    Project mention: Space and Time. Защита данных в сети без доверия. Перевод на русский язык | reddit.com/r/u_nfterrax1 | 2022-11-13
  • actix-web-grants

    Authorization extension for actix-web to validate user permissions

    Project mention: authz crates for rocket and poem | reddit.com/r/rust | 2022-02-23

    Beta versions of rocket-grants and poem-grants have been released 🎉 🦀🔐 These are complete analogues of actix-web-grants

  • rust-spa-auth

    Example application using a Vue frontend with Rust backend that has authentication + authorization.

  • poem-grants

    Authorization extension for poem to validate user permissions

    Project mention: authz crates for rocket and poem | reddit.com/r/rust | 2022-02-23

    Beta versions of rocket-grants and poem-grants have been released 🎉 🦀🔐 These are complete analogues of actix-web-grants

  • SonarQube

    Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.

  • rocket-grants

    Authorization extension for Rocket to validate user permissions

    Project mention: authz crates for rocket and poem | reddit.com/r/rust | 2022-02-23

    Beta versions of rocket-grants and poem-grants have been released 🎉 🦀🔐 These are complete analogues of actix-web-grants

  • tower-biscuit-auth

    Integrating Biscuit authentication with the Tower ecosystem.

    Project mention: Survey of bad error messages emitted by the "misuse" of trait heavy crates | reddit.com/r/rust | 2022-07-08

    git clone https://github.com/vlmutolo/tower-biscuit-auth git checkout dccb812c825ad1969169199f1b1fd7508da15b0c cargo check --examples --features http

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-11-19.

Rust Authorization related posts

Index

What are some of the best open-source Authorization projects in Rust? This list will help you:

Project Stars
1 oso 2,791
2 casbin-rs 608
3 yup-oauth2 167
4 biscuit-rust 146
5 actix-web-grants 110
6 rust-spa-auth 42
7 poem-grants 13
8 rocket-grants 7
9 tower-biscuit-auth 2
Workflow assistant built for devs & their teams
Automate the mundane part of your day, with live actionable messages for your GitHub & Jira tasks.
www.zigi.ai