Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more β
Top 16 Go access-control Projects
-
casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
-
Ory Oathkeeper
A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
cerbos
Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.
-
permify
Open source authorization service inspired by Google Zanzibar to build fine-grained and scalable authorization systems.
-
caddy-security
π Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. π Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. π Authorization with JWT/PASETO tokens. π
-
warrant
Warrant is a highly scalable, centralized authorization service based on Google Zanzibar, used for defining, querying, and auditing application authorization models and access control rules.
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
rbac-tool
Rapid7 | insightCloudSec | Kubernetes RBAC Power Toys - Visualize, Analyze, Generate & Query
-
-
-
-
access-controller
A highly scalable open-source implementation of an access-control engine inspired by Google Zanzibar-"Googleβs Consistent, Global Authorization System"
-
-
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, β¦) and many languages (Go, Java, Node.js, JS, Rust, β¦). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.
Here, Cerbos comes into the picture.
Project mention: Caddy-Security: Security App and Plugin for Caddy | news.ycombinator.com | 2024-03-17
Project mention: A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev | dev.to | 2024-02-05Warrant β Hosted enterprise-grade authorization and access control service for your apps. The free tier includes 1 million monthly API requests and 1,000 authz rules.
OPA is a great tool for implementing a policy-as-code system. But if you're trying to use it for application authorization (e.g. fine-grained authz for B2B SaaS or a set of internal applications), you may find that its policy story is strong, but it doesn't really have a "data plane": you either store data in a data.json file and rebuild the policy any time that data changes, or make an http.send call out of the policy to fetch dynamic data.
Check out Topaz [0], which uses OPA as its decision engine, but adds a data plane that is based on the ReBAC ideas explored in the Google Zanzibar [1] paper.
Disclaimer: I work on the team [2] that builds and maintains the Topaz project.
[0] https://www.topaz.sh
[1] https://research.google/pubs/zanzibar-googles-consistent-glo...
[2] https://www.aserto.com
It actually does but it's very much in alpha/active development (under the umbrella of OpenSSF with the intent of being integrated into mainline git eventually).
https://github.com/gittuf/gittuf
Functionality wise, looks similar to https://github.com/Permify/permify and https://github.com/casbin/casbin. Nice addition to the authz list !!
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
Go access-control related posts
-
Implementing Role Based Access Control in SvelteKit
-
Policy-Based Access Control (PBAC): A Comprehensive Overview
-
Show HN: AI assistant powered by Groq to generate authorization models
-
Relationship Based Access Control (ReBAC): When To Use It
-
How Open ID Connect Works
-
Authentication vs Authorization: Exploring The Difference
-
Permify: Open-Source Authorization Service For Building Fine Grained Authorization Systems At Scale!
-
A note from our sponsor - InfluxDB
www.influxdata.com | 1 Jun 2024
Index
What are some of the best open-source access-control projects in Go? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | casbin | 17,020 |
| 2 | Ory Oathkeeper | 3,180 |
| 3 | cerbos | 2,565 |
| 4 | permify | 2,552 |
| 5 | caddy-security | 1,282 |
| 6 | warrant | 1,035 |
| 7 | topaz | 992 |
| 8 | rbac-tool | 884 |
| 9 | gittuf | 408 |
| 10 | casbin-server | 298 |
| 11 | go-role | 194 |
| 12 | heimdall | 100 |
| 13 | access-controller | 71 |
| 14 | edge-agent | 20 |
| 15 | json-adapter | 16 |
| 16 | PermissionPanther | 10 |
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com