Displaying 1 to 19 from 19 results

casbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Golang

  •    Go

Casbin is a powerful and efficient open-source access control library for Golang projects. It provides support for enforcing authorization based on various access control models. In Casbin, an access control model is abstracted into a CONF file based on the PERM metamodel (Policy, Effect, Request, Matchers). So switching or upgrading the authorization mechanism for a project is just as simple as modifying a configuration. You can customize your own access control model by combining the available models. For example, you can get RBAC roles and ABAC attributes together inside one model and share one set of policy rules.

jwt - Koa middleware for validating JSON Web Tokens

  •    Javascript

This module lets you authenticate HTTP requests using JSON Web Tokens in your Koa (node.js) applications. See this article for a good introduction.





redis-adapter - Redis adapter for Casbin

  •    Go

Redis Adapter is the Redis adapter for Casbin. With this library, Casbin can load policy from Redis or save policy to it. This project is under Apache 2.0 License. See the LICENSE file for the full license text.

oauth2orize-jwt-bearer - This repository contains the source code for the JSON Web Token (JWT) bearer token exchange middleware for OAuth2orize

  •    Javascript

JSON Web Token (JWT) Bearer Token Exchange Middleware for OAuth2orize. This module exchanges a JWT for an access token after authenticated, as defined by the JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0 draft. This module is modeled off of Google's OAuth 2.0 Server to Server Applications. This module can be used with the passport-oauth2-jwt-bearer module to create a JWT OAuth 2.0 exchange scenario server.

passport-oauth2-jwt-bearer - JSON Web Token (JWT) Bearer Token Profiles for OAuth 2

  •    Javascript

JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0 client authentication strategy for Passport. This module lets you authenticate requests containing client credentials in a JWT sent in the request body's assertion field, as defined by the JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0 draft. These credentials are typically used to protect the token endpoint and used as an alternative to HTTP Basic authentication. This module is modeled off of Google's OAuth 2.0 Server to Server Applications. This module can be used with the oauth2orize-jwt-bearer module to create a JWT OAuth 2.0 exchange scenario server.

passport-http-2legged-oauth - Oauth 2-legged strategy for passport

  •    Javascript

This oauth strategy is used for a 2-legged scenario (even called 0-legged). Its a consumer to server authentication where each request is signed as defined in oauth but an empty access_token is used. No user data is exposed, as it is the consumer that has access to the protected resource. It works as https://github.com/jaredhanson/passport-http-oauth but skips the access_token verification step and accepts empty access_tokens.

passport-token-auth - HTTP Token authentication strategy for PassportJS

  •    Javascript

HTTP Token authentication strategy for Passport. This module lets you authenticate HTTP requests using bearer tokens, as specified by RFC 6750, in your Node.js applications. Bearer tokens are typically used protect API endpoints, and are often issued using OAuth 2.0.

node-casbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Node

  •    TypeScript

node-casbin is a powerful and efficient open-source access control library for Node.JS projects. It provides support for enforcing authorization based on various access control models. Note: you can also initialize an enforcer with policy in DB instead of file, see Persistence section for details.

pycasbin - An authorization library that supports access control models like ACL, RBAC, ABAC in Python

  •    Python

Casbin is a powerful and efficient open-source access control library for Golang projects. It provides support for enforcing authorization based on various access control models. In Casbin, an access control model is abstracted into a CONF file based on the PERM metamodel (Policy, Effect, Request, Matchers). So switching or upgrading the authorization mechanism for a project is just as simple as modifying a configuration. You can customize your own access control model by combining the available models. For example, you can get RBAC roles and ABAC attributes together inside one model and share one set of policy rules.

jwt-to-rbac - JWT-to-RBAC lets you automatically generate RBAC resources based on JWT tokens

  •    Go

JWT-to-RBAC lets you automatically generate RBAC resources based on JWT token. For authentication we use Dex with the LDAP connector. The user in LDAP has group memberships and Dex issues a JWT token containing these memberships. The JWT-to-RBAC project can create ServiceAccount, ClusterRoles and ClusterroleBindings based on JWT tokens. When we create a new ServiceAccount K8s automatically generates a service account token.