laratrust - Handle roles and permissions in your Laravel application

  •        1490

Laratrust is an easy and flexible way to add roles, permissions and teams authorization to Laravel 5 (>=5.2.32). For Laravel < 5.2.32 please use the 4.0 branch.

https://github.com/santigarcor/laratrust#readme

Tags
Implementation
License
Platform

   




Related Projects

defender - Roles & Permissions for Laravel 5

  •    PHP

Defender is an Access Control List (ACL) Solution for Laravel 5.* (single auth). (Not compatible with multi-auth) With security and usability in mind, this project aims to provide you a safe way to control your application access without losing the fun of coding. Defender is looking for maintainers and contributors.

casbin-rs - An authorization library that supports access control models like ACL, RBAC, ABAC in Rust

  •    Rust

Casbin-RS is a powerful and efficient open-source access control library for Rust projects. It provides support for enforcing authorization based on various access control models. In casbin-rs, an access control model is abstracted into a CONF file based on the PERM metamodel (Policy, Effect, Request, Matchers). So switching or upgrading the authorization mechanism for a project is just as simple as modifying a configuration. You can customize your own access control model by combining the available models. For example, you can get RBAC roles and ABAC attributes together inside one model and share one set of policy rules.

bouncer - Eloquent roles and abilities.

  •    PHP

Bouncer is an elegant, framework-agnostic approach to managing roles and abilities for any app using Eloquent models. Bouncer is an elegant, framework-agnostic approach to managing roles and abilities for any app using Eloquent models. With an expressive and fluent syntax, it stays out of your way as much as possible: use it when you want, ignore it when you don't.


declarative_authorization - An unmaintained authorization plugin for Rails

  •    Ruby

The declarative authorization plugin offers an authorization mechanism inspired by RBAC. The most notable distinction to other authorization plugins is the declarative approach. That is, authorization rules are not defined programmatically in between business logic but in an authorization configuration. With programmatic authorization rules, the developer needs to specify which roles are allowed to access a specific controller action or a part of a view, which is not DRY. With a growing application code base roles' permissions often change and new roles are introduced. Then, at several places of the source code the changes have to be implemented, possibly leading to omissions and thus hard to find errors. In these cases, a declarative approach as offered by decl_auth increases the development and maintenance efficiency.

Sentinel - A framework agnostic authentication & authorization system.

  •    PHP

Sentinel is a PHP 5.4+ fully-featured authentication & authorization system. It also provides additional features such as user roles and additional security features. Sentinel is a framework agnostic set of interfaces with default implementations, though you can substitute any implementations you see fit.

Casbin

  •    CSharp

Casbin.NET is a powerful and efficient open-source access control library for .NET (C#) projects. It provides support for enforcing authorization based on various access control models. In Casbin, an access control model is abstracted into a CONF file based on the PERM metamodel (Policy, Effect, Request, Matchers). So switching or upgrading the authorization mechanism for a project is just as simple as modifying a configuration. You can customize your own access control model by combining the available models. For example, you can get RBAC roles and ABAC attributes together inside one model and share one set of policy rules.

Casbin - An authorization library that supports access control models like ACL, RBAC, ABAC

  •    Go

Casbin is an authorization library that supports access control models like ACL, RBAC, ABAC. In Casbin, an access control model is abstracted into a CONF file based on the PERM metamodel (Policy, Effect, Request, Matchers). So switching or upgrading the authorization mechanism for a project is just as simple as modifying a configuration.

yosai - A Security Framework for Python applications featuring Authorization (rbac permissions and roles), Authentication (2fa totp), Session Management and an extensive Audit Trail

  •    Python

Yosai is a "security framework" that features authentication, authorization, and session management from a common, intuitive API. Yosai is based on Apache Shiro, written in Java and widely used today.

laravel-permission - Associate users with roles and permissions

  •    PHP

This package allows you to manage user permissions and roles in a database. If you're using multiple guards we've got you covered as well. Every guard will have its own set of permissions and roles that can be assigned to the guard's users. Read about it in the using multiple guards section of the readme.

gatekeeper - Gatekeeper: An Authentication & Authorization Library

  •    PHP

The Gatekeeper library is a simple drop-in library that can be used to manage users, permissions and groups for your application. The goal is to make securing your application as simple as possible while still providing a solid and secure foundation to base your user system around. Gatekeeper is best classified as a Role-Base Access Control (RBAC) system with users, groups and permissions. It is framework-agnostic and is set up to use its own database for the user handling.

slim-auth - Authorization and authentication for the Slim Framework using ZF2 Authentication and Acl components

  •    PHP

Slim Auth is an authorization and authentication library for the Slim Framework. Authentication is provided by the Zend Framework Zend\Authentication component, and authorization by the Zend Framework Zend\Permissions\Acl component. If you're familiar with Zend\Authentication and Zend\Permissions\Acl, you'll be able to implement the library without any trouble. Otherwise, you might want to wait for the docs to be completed (no ETA) or open a GitHub issue with any questions or problems you encounter.

mustbe - Authorization plumbing for NodeJS/ExpressJS/ConnectJS apps

  •    Javascript

MustBe is not a complete authorization framework, with roles and responsibilities and models and data access and everything that you need. Rather, it is the underlying plumbing that you need to secure your site. It allows you to fill in the necessary parts to manage data access, roles and users, and gives you the activity based plumbing to secure it all. MustBe is an authorization system - the part of a security system that decides whether or not you are allowed to do something. This is the second of authentication and authorization, where authentication simply determines who you are.

PermissionManager - Admin interface for managing users, roles, permissions, using Backpack CRUD

  •    PHP

This package is just a user interface for spatie/laravel-permission. It will install it, and let you use its API in code. Please refer to their README for more information on how to use in code. Please subscribe to the Backpack Newsletter so you can find out about any security updates, breaking changes or major features. We send an email every 1-2 months.

casl - CASL is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access

  •    Javascript

CASL (pronounced /ˈkæsəl/, like castle) is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access. All permissions are defined in a single location (the Ability class) and not duplicated across UI components, API services, and database queries. Heavily inspired by cancan.

laravel-authentication-acl - Laravel authentication and ACL admin panel package based on sentry

  •    PHP

Laravel Authentication ACL is a Laravel 5 package, based on sentry2. This package is made with the purpose of helping other developers to set-up a fully featured admin panel with an ACL using Laravel framework. There's something you like to see in this package? Contact me and i'll do my best to implement that in next releases.

meteor-roles - Authorization package for Meteor, compatible with built-in accounts packages

  •    Javascript

Authorization package for Meteor - compatible with built-in accounts package. This package lets you attach permissions to a user which you can then check against later when deciding whether to grant access to Meteor methods or publish data. The core concept is very simple, essentially you are attaching strings to a user object and then checking for the existence of those strings later. In some sense, it is very similar to tags on blog posts. This package provides helper methods to make the process of adding, removing, and verifying those permissions easier.

Statamic - Flat-first, Laravel + Git powered CMS designed for building beautiful, easy to manage websites

  •    PHP

Statamic is built as a highly extendable, standalone capable, Laravel package. If you’re already a Laravel developer, you’ll feel right at home extending core features with Models, Service Providers, and Middleware. You can even drop it into existing Laravel applications to add a full CMS in seconds.






We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.