Top 23 Rbac Open-Source Projects

• casbin

  38 16,865 7.2 Go

  An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN

  

Project mention: A guide to Auth & Access Control in web apps 🔐 | dev.to | 2023-11-07

https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, …) and many languages (Go, Java, Node.js, JS, Rust, …). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.

• Gravitational Teleport

  61 16,543 10.0 Go

  The easiest, and most secure way to access and protect all of your infrastructure.

  

Project mention: Apache Guacamole: a clientless remote desktop gateway | news.ycombinator.com | 2024-03-29

https://github.com/gravitational/teleport/blob/master/rfd/00...

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• spicedb

  38 4,518 9.7 Go

  Open Source, Google Zanzibar-inspired permissions database to enable fine-grained access control for customer applications

  

Project mention: How do you manage transactions in Go? Do we really need to use one transaction for each request? | /r/golang | 2023-06-02

Have you taken a look at SpiceDB? The Authzed blog has a few posts that are useful to improving your understanding -- I can think of two: New Enemies and Writing relationships to SpiceDB.

• Flask-AppBuilder

  5 4,510 8.4 Python

  Simple and rapid application development framework, built on top of Flask. includes detailed security, auto CRUD generation for your models, google charts and much more. Demo (login with guest/welcome) - http://flaskappbuilder.pythonanywhere.com/

Project mention: Pretty simple question, could be rewarding if enough people answer. | /r/flask | 2023-06-06

This one might be interesting as well: https://github.com/dpgaspar/Flask-AppBuilder

• oso

  16 3,403 6.7 Rust

  Oso is a batteries-included framework for building authorization in your application.

  

Project mention: Who's hiring developer advocates? (October 2023) | dev.to | 2023-10-02

Link to GitHub -->

• node-casbin

  6 2,480 5.6 TypeScript

  An authorization library that supports access control models like ACL, RBAC, ABAC in Node.js and Browser

  

• permify

  39 2,458 9.8 Go

  Permify is an open-source authorization service inspired by Google Zanzibar.

  

Project mention: Policy-Based Access Control (PBAC): A Comprehensive Overview | dev.to | 2024-04-16

However, in this piece we're focusing on the PBAC model also known as Policy-Based Access Control and how it differentiates itself these from traditional access control models in terms of scalability, flexibility and security.

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• jCasbin

  2 2,323 7.4 Java

  An authorization library that supports access control models like ACL, RBAC, ABAC in Java

  

• OPAL

  33 2,281 8.9 Python

  Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...) (by permitio)

  

Project mention: Top 5 Access Control Features You Should Implement in 2024 | dev.to | 2023-12-27

Another tool that can help you deploy a Policy as Code-based solution in 2024 is OPAL, the Open Policy Administration Layer. OPAL is an open-source project that provides a comprehensive policy-based service for applications. With one click, you can deploy a full architecture of a Git-based centralized policy store with decentralized policy engines running as a sidecar with your applications. OPAL also provides a unified architecture to sync all the data you need with the policy engines.

• laratrust

  2 2,151 6.6 PHP

  Handle roles and permissions in your Laravel application

• accesscontrol

  9 2,118 0.0 TypeScript

  Role and Attribute based Access Control for Node.js

• gorbac

  2 1,555 0.0 Go

  goRBAC provides a lightweight role-based access control (RBAC) implementation in Golang.

• rbac-manager

  4 1,408 5.5 Go

  A Kubernetes operator that simplifies the management of Role Bindings and Service Accounts.

  

• KubiScan

  10 1,277 5.9 Python

  A tool to scan Kubernetes cluster for risky permissions

  

• pycasbin

  4 1,276 8.0 Python

  An authorization library that supports access control models like ACL, RBAC, ABAC in Python

  

• rakkess

  3 1,257 0.0 Go

  Review Access - kubectl plugin to show an access matrix for k8s server resources

• permission-manager

  3 1,233 4.0 TypeScript

  Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW

  

• Casbin.NET

  3 1,100 6.9 C#

  An authorization library that supports access control models like ACL, RBAC, ABAC in .NET (C#)

  

• audit2rbac

  2 1,038 0.0 Go

  Autogenerate RBAC policies based on Kubernetes audit logs

• warrant

  39 979 8.9 Go

  Warrant is a highly scalable, centralized authorization service based on Google Zanzibar, used for defining, querying, and auditing application authorization models and access control rules.

  

Project mention: A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev | dev.to | 2024-02-05

Warrant — Hosted enterprise-grade authorization and access control service for your apps. The free tier includes 1 million monthly API requests and 1,000 authz rules.

• rbac

  1 977 0.0 JavaScript

  Hierarchical Role Based Access Control for NodeJS (by seeden)

• topaz

  9 971 9.5 Go

  Cloud-native authorization for modern applications and APIs (by aserto-dev)

  

Project mention: Open Policy Agent | news.ycombinator.com | 2024-03-12

OPA is a great tool for implementing a policy-as-code system. But if you're trying to use it for application authorization (e.g. fine-grained authz for B2B SaaS or a set of internal applications), you may find that its policy story is strong, but it doesn't really have a "data plane": you either store data in a data.json file and rebuild the policy any time that data changes, or make an http.send call out of the policy to fetch dynamic data.

Check out Topaz [0], which uses OPA as its decision engine, but adds a data plane that is based on the ReBAC ideas explored in the Google Zanzibar [1] paper.

Disclaimer: I work on the team [2] that builds and maintains the Topaz project.

[0] https://www.topaz.sh

[1] https://research.google/pubs/zanzibar-googles-consistent-glo...

[2] https://www.aserto.com

• ngx-permissions

  4 920 4.9 TypeScript

  Permission and roles based access control for your angular(angular 2,4,5,6,7,9+) applications(AOT, lazy modules compatible

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Rbac related posts

• Policy-Based Access Control (PBAC): A Comprehensive Overview
  1 project | dev.to | 16 Apr 2024
• Show HN: AI assistant powered by Groq to generate authorization models
  1 project | news.ycombinator.com | 11 Apr 2024
• Relationship Based Access Control (ReBAC): When To Use It
  1 project | dev.to | 18 Jan 2024
• How Open ID Connect Works
  1 project | news.ycombinator.com | 4 Jan 2024
• Yates – Use Postgres RLS with Prisma ORM
  1 project | news.ycombinator.com | 13 Dec 2023
• Authentication vs Authorization: Exploring The Difference
  1 project | dev.to | 12 Dec 2023
• Permify: Open-Source Authorization Service For Building Fine Grained Authorization Systems At Scale!
  1 project | /r/selfhosted | 6 Dec 2023
• A note from our sponsor - SaaSHub
  www.saashub.com | 26 Apr 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com