Top 12 Rust Authorization Projects

• Ockam

  76 4,347 10.0 Rust

  Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.

  

Project mention: Tunnelmole, an ngrok alternative (open source) | news.ycombinator.com | 2024-03-21

disclosure: I work at Ockam.

The Portals for Mac app is an example of the type of thing you could build using the open source stack of protocols. The README (linked by parent) links out to all of the relevant parts of the protocol documentation to explain how these work together. The NAT Traversal (https://github.com/build-trust/ockam/blob/develop/examples/a...) part of the README is probably the best explanation of why the free relay you get via Ockam Orchestrator is a useful part of this demo.

As for why would anyone trust this: The protocols are designed so you absolutely don't have to trust the relay. Trust is pushed out to the edges that you control and so you're not susceptible to a MITM attack if something like a relay is compromised. The protocol design for all of this is open and documented, and was independently audited by (IMO) some of the best in the business, Trail of Bits: https://docs.ockam.io/reference/protocols.

• oso

  16 3,403 6.7 Rust

  Oso is a batteries-included framework for building authorization in your application.

  

Project mention: Who's hiring developer advocates? (October 2023) | dev.to | 2023-10-02

Link to GitHub -->

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• casbin-rs

  2 788 6.1 Rust

  An authorization library that supports access control models like ACL, RBAC, ABAC in Rust.

  

• inspektor

  8 278 0.0 Rust

  Inspektor is a protocol-aware proxy that is used to enforce access policies👮

  

• yup-oauth2

  2 204 5.8 Rust

  An oauth2 client implementation providing the Device, Installed, Service Account, and several more flows.

• biscuit-rust

  17 201 7.2 Rust

  Rust implementation of the Biscuit authorization token

  

Project mention: Authorization is still a nightmare for engineers | news.ycombinator.com | 2024-04-16

> We have a post on this coming soon! The short version is that Polar is a logic language based on Prolog/Datalog/miniKanren. And logic languages are a particularly good fit for representing the branching conditional logic you often see in authorization configurations.

Ha, I've been playing around with Biscuits (https://www.biscuitsec.org/) and was writing up a blog post on using them in a git forge. When I saw the Polar data units described as "facts" and read your end to end example (https://www.osohq.com/docs/tutorials/end-to-end-example) I thought "Oh this looks very similar". I will say - I do like how Polar seems to type stuff and provide some concepts that Biscuits force you to build out on your own, that's pretty neat.

What is the proof of identity in Polar? Is it something like a token in Biscuits? I'm curious if you can do things like add caveats to reduce what the token is capable of as it gets handed off to different systems. I consider that one of the "killer use cases" of biscuits.

• protect-endpoints

  4 169 8.2 Rust

  Authorization extension for popular web-frameworks to protect your endpoints

Project mention: Significant update within the `*-grants` ecosystem: crates to protect endpoints in widely used web frameworks. | /r/rust | 2023-12-01

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• rauthy

  2 165 9.9 Rust

  OpenID Connect Single Sign-On Identity & Access Management

Project mention: Rauthy OIDC v0.19 — Better support for Solid and Matrix | /r/SelfhostingHub | 2023-11-18

• auth-rs

  1 8 8.6 Rust

  Authentication and authorization service, written in Rust

  

Project mention: Feedback on authorization and authentication API using Actix web | /r/rust | 2023-08-18

• fga-rs

  1 4 8.2 Rust

  authorization/permission service, inspired by Google Zanzibar

Project mention: Google Zanzibar: Rust Implementation(wip) | news.ycombinator.com | 2024-03-27

• tower-biscuit-auth

  1 3 0.0 Rust

  Integrating Biscuit authentication with the Tower ecosystem.

• authzen

  1 2 4.6 Rust

  A framework for easily integrating authorization into backend services.

Rust Authorization related posts

• Authorization is still a nightmare for engineers
  6 projects | news.ycombinator.com | 16 Apr 2024
• Biscuit Authorization
  4 projects | news.ycombinator.com | 13 Dec 2023
• Biscuit – an authorization token with offline attenuation
  1 project | news.ycombinator.com | 30 Oct 2023
• Biscuit tokens 3.0 release! Decentralized authorization in Rust, wasm and a lot of other platforms
  2 projects | /r/rust | 4 Apr 2023
• Show HN: Biscuit Security Authorization
  1 project | news.ycombinator.com | 28 Mar 2023
• What's everyone working on this week (10/2023)?
  11 projects | /r/rust | 6 Mar 2023
• Any source for learning JWT with .net corr
  2 projects | /r/dotnet | 3 Mar 2023
• A note from our sponsor - SaaSHub
  www.saashub.com | 26 Apr 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Rust projects with our weekly report!