SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 Rbac Open-Source Projects
-
casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, …) and many languages (Go, Java, Node.js, JS, Rust, …). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.
-
Project mention: Parsing the Postgres protocol – logging executed statements | news.ycombinator.com | 2024-03-14
I ordinarily would have said you reinvented Teleport <https://github.com/gravitational/teleport/tree/v14.3.7#readm...> but now that they've gone AGPL with v15 I'm guessing there's a market for MIT licensed stuff, although for sure since Teleport has been around for so long it has encountered more edge cases and undergone more security reviews. I was surprised while digging up the link that Gravatational is still releasing v13 and v14 updates under Apache 2, so maybe even Teleport will continue to have legs for those who cannot deploy AGPL stuff
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
Flask-AppBuilder
Simple and rapid application development framework, built on top of Flask. includes detailed security, auto CRUD generation for your models, google charts and much more. Demo (login with guest/welcome) - http://flaskappbuilder.pythonanywhere.com/
Project mention: Pretty simple question, could be rewarding if enough people answer. | /r/flask | 2023-06-06This one might be interesting as well: https://github.com/dpgaspar/Flask-AppBuilder
-
spicedb
Open Source, Google Zanzibar-inspired permissions database to enable fine-grained access control for customer applications
Project mention: How do you manage transactions in Go? Do we really need to use one transaction for each request? | /r/golang | 2023-06-02Have you taken a look at SpiceDB? The Authzed blog has a few posts that are useful to improving your understanding -- I can think of two: New Enemies and Writing relationships to SpiceDB.
-
Link to GitHub -->
-
node-casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Node.js and Browser
-
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
-
OPAL
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...) (by permitio)
Another tool that can help you deploy a Policy as Code-based solution in 2024 is OPAL, the Open Policy Administration Layer. OPAL is an open-source project that provides a comprehensive policy-based service for applications. With one click, you can deploy a full architecture of a Git-based centralized policy store with decentralized policy engines running as a sidecar with your applications. OPAL also provides a unified architecture to sync all the data you need with the policy engines.
-
-
You can mitigate the pain by using libraries like accesscontrol, express-rbac, django-guardian, etc., to manage authorization more declaratively. But making sure nothing leaks is still a significant challenge.
-
-
rbac-manager
A Kubernetes operator that simplifies the management of Role Bindings and Service Accounts.
-
-
-
pycasbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Python
-
permission-manager
Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW
-
Casbin.NET
An authorization library that supports access control models like ACL, RBAC, ABAC in .NET (C#)
-
-
-
warrant
Warrant is a highly scalable, centralized authorization service based on Google Zanzibar, used for defining, querying, and auditing application authorization models and access control rules.
Project mention: A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev | dev.to | 2024-02-05Warrant — Hosted enterprise-grade authorization and access control service for your apps. The free tier includes 1 million monthly API requests and 1,000 authz rules.
-
OPA is a great tool for implementing a policy-as-code system. But if you're trying to use it for application authorization (e.g. fine-grained authz for B2B SaaS or a set of internal applications), you may find that its policy story is strong, but it doesn't really have a "data plane": you either store data in a data.json file and rebuild the policy any time that data changes, or make an http.send call out of the policy to fetch dynamic data.
Check out Topaz [0], which uses OPA as its decision engine, but adds a data plane that is based on the ReBAC ideas explored in the Google Zanzibar [1] paper.
Disclaimer: I work on the team [2] that builds and maintains the Topaz project.
[1] https://research.google/pubs/zanzibar-googles-consistent-glo...
-
ngx-permissions
Permission and roles based access control for your angular(angular 2,4,5,6,7,9+) applications(AOT, lazy modules compatible
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Rbac related posts
- Relationship Based Access Control (ReBAC): When To Use It
- How Open ID Connect Works
- Yates – Use Postgres RLS with Prisma ORM
- Authentication vs Authorization: Exploring The Difference
- Permify: Open-Source Authorization Service For Building Fine Grained Authorization Systems At Scale!
- Open-Source Authorization Service for Building Scalable Authorization Systems
- Show HN: Blending Go and WebAssembly to Build Authorization Playground
-
A note from our sponsor - SaaSHub
www.saashub.com | 29 Mar 2024
Index
What are some of the best open-source Rbac projects? This list will help you:
Project | Stars | |
---|---|---|
1 | casbin | 16,727 |
2 | Gravitational Teleport | 16,156 |
3 | Flask-AppBuilder | 4,483 |
4 | spicedb | 4,383 |
5 | oso | 3,370 |
6 | node-casbin | 2,458 |
7 | permify | 2,396 |
8 | jCasbin | 2,307 |
9 | OPAL | 2,252 |
10 | laratrust | 2,145 |
11 | accesscontrol | 2,118 |
12 | gorbac | 1,546 |
13 | rbac-manager | 1,396 |
14 | KubiScan | 1,258 |
15 | rakkess | 1,256 |
16 | pycasbin | 1,252 |
17 | permission-manager | 1,230 |
18 | Casbin.NET | 1,091 |
19 | audit2rbac | 1,038 |
20 | rbac | 970 |
21 | warrant | 965 |
22 | topaz | 956 |
23 | ngx-permissions | 917 |