node_acl - Access control lists for node applications

  •        33

This module provides a minimalistic ACL implementation inspired by Zend_ACL.When you develop a web site or application you will soon notice that sessions are not enough to protect all the available resources. Avoiding that malicious users access other users content proves a much more complicated task than anticipated. ACL can solve this problem in a flexible and elegant way.

https://github.com/optimalbits/node_acl

Dependencies:

async : ^2.1.4
bluebird : ^3.0.2
lodash : ^4.17.3
mongodb : ^2.0.47
redis : ^2.2.5

Tags
Implementation
License
Platform

   




Related Projects

defender - Roles & Permissions for Laravel 5

  •    PHP

Defender is an Access Control List (ACL) Solution for Laravel 5.* (single auth). (Not compatible with multi-auth) With security and usability in mind, this project aims to provide you a safe way to control your application access without losing the fun of coding. Defender is looking for maintainers and contributors.

slim-auth - Authorization and authentication for the Slim Framework using ZF2 Authentication and Acl components

  •    PHP

Slim Auth is an authorization and authentication library for the Slim Framework. Authentication is provided by the Zend Framework Zend\Authentication component, and authorization by the Zend Framework Zend\Permissions\Acl component. If you're familiar with Zend\Authentication and Zend\Permissions\Acl, you'll be able to implement the library without any trouble. Otherwise, you might want to wait for the docs to be completed (no ETA) or open a GitHub issue with any questions or problems you encounter.

Kong - The Microservice API Gateway

  •    Lua

Kong is a cloud-native, fast, scalable, and distributed Microservice Abstraction Layer (also known as an API Gateway, API Middleware or in some cases Service Mesh). Backed by the battle-tested NGINX with a focus on high performance, Kong was made available as an open-source platform in 2015. Under active development, Kong is used in production at thousands of organizations from startups, Global 5000 and Government organizations.

CVS Access Control List Extension

  •    C

CVSACL is a patch for CVS. It adds two new subcommands (acl amp; racl) to cvs for access control list management. It provides advanced ACL definitions per modules, directories, and files on branch/tag for all cvs subcommands.


casbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Golang

  •    Go

Casbin is a powerful and efficient open-source access control library for Golang projects. It provides support for enforcing authorization based on various access control models. In Casbin, an access control model is abstracted into a CONF file based on the PERM metamodel (Policy, Effect, Request, Matchers). So switching or upgrading the authorization mechanism for a project is just as simple as modifying a configuration. You can customize your own access control model by combining the available models. For example, you can get RBAC roles and ABAC attributes together inside one model and share one set of policy rules.

Linux Trustees (ACL) project

  •    C

Trustees is a recursive ACL scheme for the Linux 2.6 kernel's Linux Security Module(LSM) framework. If you have ever used netware, you will be familiar with the speed and convenience of the trustees' approach to ACLs.

Automatic ACL Blocking List

  •    Shell

A simple repository for moust needed acl block lists for Squid.

NFSv4 ACL Editor

  •    C

This project provides a user-level command to edit NFSv4 Access Control Lists (ACLs). The command allows users to display and change NFSv4 ACLs from clients that do not have complete NFSv4 ACL support.

protector - Comfortable (seriously) white-list security restrictions for models on a field level

  •    Ruby

Protector is a Ruby ORM extension for managing security restrictions on a field level. The gem favors white-listing over black-listing (everything is disallowed by default), convention over configuration and is duck-type compatible with most of existing code. DSL of Protector is a Ruby block (or several) describing ACL separated into contexts (authorized user is a very typical example of a context). Each time the context of model changes, DSL blocks reevaluate internally to get an actual ACL that is then utilized internally to cut restricted actions.

osync - A robust two way (bidirectional) file sync script based on rsync with fault tolerance, ACL support and time control

  •    Shell

A two way filesync script running on bash Linux, BSD, Android, MacOSX, Cygwin, MSYS2, Win10 bash and virtually any system supporting bash). File synchronization is bidirectional, and can be run manually, as scheduled task, or triggered on file changes in daemon mode. It is a command line tool rsync wrapper with a lot of additional features baked in. This is a quickstart guide, you can find the full documentation on the author's site.

vue-acl - Access Control List plugin for VueJS 2.0

  •    Javascript

E.g: if isAdmin is not true the button 'Set admin permisson' is displayed.

pointer-generator - Code for the ACL 2017 paper "Get To The Point: Summarization with Pointer-Generator Networks"

  •    Python

Note: this code is no longer actively maintained. However, feel free to use the Issues section to discuss the code with other users. Some users have updated this code for newer versions of Tensorflow and Python - see information below and Issues section. This repository contains code for the ACL 2017 paper Get To The Point: Summarization with Pointer-Generator Networks. For an intuitive overview of the paper, read the blog post.

LatticeLSTM - Chinese NER using Lattice LSTM. Code for ACL 2018 paper.

  •    Python

Lattice LSTM for Chinese NER. Character based LSTM with Lattice embeddings as input. Models and results can be found at our ACL 2018 paper Chinese NER Using Lattice LSTM. It achieves 93.18% F1-value on MSRA dataset, which is the state-of-the-art result on Chinese NER task.

nuster - A web caching proxy server based on HAProxy

  •    C

Nuster is a simple yet powerful web caching proxy server based on HAProxy. It is 100% compatible with HAProxy, and takes full advantage of the ACL functionality of HAProxy to provide fine-grained caching policy based on the content of request, response or server status. Nuster is very fast, some test shows nuster is almost three times faster than nginx when both using single core, and nearly two times faster than nginx and three times faster than varnish when using all cores.

aws-waf-sample - This repository contains example scripts and sets of rules for the AWS WAF service

  •    Python

Examples of sets of rules for the AWS WAF service and scripts to automate the management and configuration of AWS WAF rule sets. These examples include SDK usage, AWS CloudFormation templates and automations using AWS Lambda functions.This example AWS CloudFormation template contains an AWS WAF web access control list (ACL) and condition types and rules that illustrate various mitigations against application flaws described in the OWASP Top 10. However, note that this template is designed only as a starting point and may not provide sufficient protection to every workload. You should customize the template’s rules for each workload. For more information, please review the Use AWS WAF to Mitigate OWASP's Top 10 Web Application Vulnerabilities whitepaper.

aws-waf-sample - This repository contains example scripts and sets of rules for the AWS WAF service

  •    Python

Examples of sets of rules for the AWS WAF service and scripts to automate the management and configuration of AWS WAF rule sets. These examples include SDK usage, AWS CloudFormation templates and automations using AWS Lambda functions. This example AWS CloudFormation template contains an AWS WAF web access control list (ACL) and condition types and rules that illustrate various mitigations against application flaws described in the OWASP Top 10. However, note that this template is designed only as a starting point and may not provide sufficient protection to every workload. You should customize the template’s rules for each workload. For more information, please review the Use AWS WAF to Mitigate OWASP's Top 10 Web Application Vulnerabilities whitepaper.

chastity

  •    PHP

chastity intends to make a maintained ACL-list for squid for use in public schools and others. The projects is divided into a web-based adminstration tool, datastorage and client-tools.

Strelin CMS - A Joomla fork

  •    PHP

Strelin is a fork of the great Joomla! 1.5 content management system. Joomla! 1.5 is so widely used content management system. As Joomla! is moving towards 1.6 with big core changes, Strelin has been started for those who want new features but don't want to get into possible extra migration work.

connect - Connect is a middleware layer for Node.js

  •    Javascript

Connect is an extensible HTTP server framework for node using "plugins" known as middleware. Connect is a simple framework to glue together various "middleware" to handle requests.