Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more β
Top 16 Go access-control Projects
-
casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
-
Ory Oathkeeper
A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
cerbos
Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.
-
permify
Open source authorization service inspired by Google Zanzibar to build fine-grained and scalable authorization systems.
-
caddy-security
π Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. π Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. π Authorization with JWT/PASETO tokens. π
-
warrant
Warrant is a highly scalable, centralized authorization service based on Google Zanzibar, used for defining, querying, and auditing application authorization models and access control rules.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
rbac-tool
Rapid7 | insightCloudSec | Kubernetes RBAC Power Toys - Visualize, Analyze, Generate & Query
-
access-controller
A highly scalable open-source implementation of an access-control engine inspired by Google Zanzibar-"Googleβs Consistent, Global Authorization System"
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
https://casbin.org/ (multiple approaches, multiple languages, provider) Open source authZ library that has support for many access control models (ACL, RBAC, ABAC, β¦) and many languages (Go, Java, Node.js, JS, Rust, β¦). While somewhat complex, it is also powerful and flexible. They also have their Casdoor platform, which is authN and authZ provider.
Here, Cerbos comes into the picture.
Project mention: Caddy-Security: Security App and Plugin for Caddy | news.ycombinator.com | 2024-03-17
Project mention: A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev | dev.to | 2024-02-05Warrant β Hosted enterprise-grade authorization and access control service for your apps. The free tier includes 1 million monthly API requests and 1,000 authz rules.
OPA is a great tool for implementing a policy-as-code system. But if you're trying to use it for application authorization (e.g. fine-grained authz for B2B SaaS or a set of internal applications), you may find that its policy story is strong, but it doesn't really have a "data plane": you either store data in a data.json file and rebuild the policy any time that data changes, or make an http.send call out of the policy to fetch dynamic data.
Check out Topaz [0], which uses OPA as its decision engine, but adds a data plane that is based on the ReBAC ideas explored in the Google Zanzibar [1] paper.
Disclaimer: I work on the team [2] that builds and maintains the Topaz project.
[0] https://www.topaz.sh
[1] https://research.google/pubs/zanzibar-googles-consistent-glo...
[2] https://www.aserto.com
It actually does but it's very much in alpha/active development (under the umbrella of OpenSSF with the intent of being integrated into mainline git eventually).
https://github.com/gittuf/gittuf
Functionality wise, looks similar to https://github.com/Permify/permify and https://github.com/casbin/casbin. Nice addition to the authz list !!
Go access-control related posts
-
Implementing Role Based Access Control in SvelteKit
-
Policy-Based Access Control (PBAC): A Comprehensive Overview
-
Show HN: AI assistant powered by Groq to generate authorization models
-
Relationship Based Access Control (ReBAC): When To Use It
-
How Open ID Connect Works
-
Authentication vs Authorization: Exploring The Difference
-
Permify: Open-Source Authorization Service For Building Fine Grained Authorization Systems At Scale!
-
A note from our sponsor - InfluxDB
www.influxdata.com | 1 Jun 2024
Index
What are some of the best open-source access-control projects in Go? This list will help you:
Project | Stars | |
---|---|---|
1 | casbin | 17,020 |
2 | Ory Oathkeeper | 3,180 |
3 | cerbos | 2,565 |
4 | permify | 2,552 |
5 | caddy-security | 1,282 |
6 | warrant | 1,035 |
7 | topaz | 992 |
8 | rbac-tool | 884 |
9 | gittuf | 408 |
10 | casbin-server | 298 |
11 | go-role | 194 |
12 | heimdall | 100 |
13 | access-controller | 71 |
14 | edge-agent | 20 |
15 | json-adapter | 16 |
16 | PermissionPanther | 10 |
Sponsored