🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. 💎 Authorization with JWT/PASETO tokens. 🔐

Stars: ✭ 696 (+4871.43%)

Mutual labels: authorization, access-control

jdbc-adapter

JDBC adapter for Casbin

Stars: ✭ 26 (+85.71%)

Mutual labels: authorization, access-control

lua-casbin

An authorization library that supports access control models like ACL, RBAC, ABAC in Lua (OpenResty)

Stars: ✭ 43 (+207.14%)

Mutual labels: authorization, access-control

lastkeypair

A serverless SSH certificate authority to control access to machines using IAM and Lambda

Stars: ✭ 39 (+178.57%)

Mutual labels: authorization, access-control

role-based-access-control

Role-based authorization || Role-based access-control in React.js

Stars: ✭ 111 (+692.86%)

Mutual labels: authorization, access-control

access-controller

A highly scalable open-source implementation of an access-control engine inspired by Google Zanzibar-"Google’s Consistent, Global Authorization System"

Stars: ✭ 61 (+335.71%)

Mutual labels: authorization, access-control

speedle-plus

Speedle+ is an open source project for access management. It is based on Speedle open source project and maintained by previous Speedle maintainers.

Stars: ✭ 45 (+221.43%)

Mutual labels: authorization, access-control

rbac-tool

Rapid7 | insightCloudSec | Kubernetes RBAC Power Toys - Visualize, Analyze, Generate & Query

Stars: ✭ 546 (+3800%)

Mutual labels: authorization, access-control

Casbin4D

An authorization library that supports access control models like ACL, RBAC, ABAC in Delphi

Stars: ✭ 25 (+78.57%)

Mutual labels: authorization, access-control

nova-permissions

Add Permissions based authorization for your Nova installation via User-based Roles and Permissions. Roles are defined in the database whereas Permissions are defined in the code base.

Stars: ✭ 115 (+721.43%)

Mutual labels: authorization, access-control

dart-casbin

An authorization library that supports access control models like ACL, RBAC, ABAC in Dart/Flutter

Stars: ✭ 30 (+114.29%)

Mutual labels: authorization, access-control

ficam-playbooks

The Federal Identity Credentials and Access Management program publishes guides and playbooks to help U.S. federal executive agencies implement, maintain, and modernize identity management systems.

Stars: ✭ 30 (+114.29%)

Mutual labels: authorization, access-control

server

AuthzForce Server (Community Edition)

Stars: ✭ 48 (+242.86%)

Mutual labels: authorization, access-control

Caddy Authz

Caddy-authz is a middleware for Caddy that blocks or allows requests based on access control policies.

Stars: ✭ 221 (+1478.57%)

Mutual labels: authorization, access-control

Chi Authz

chi-authz is an authorization middleware for Chi

Stars: ✭ 248 (+1671.43%)

Mutual labels: authorization, access-control

opa-java-spring-client

Simple Spring client for working with the Open Policy Agent

Stars: ✭ 19 (+35.71%)

Mutual labels: authorization, springframework

actix-web-grants

Authorization extension for actix-web to validate user permissions

Stars: ✭ 85 (+507.14%)

Mutual labels: authorization, access-control

View All Similar Projects ➔

authcheck

Analysis for access-control vulnerabilities in Java Spring Security applications.

contributors

Tobias Petrasch
Goran Piskachev
Abdul Rehman Tareen
Johannes Späth
Eric Bodden

Contact: Goran Piskachev ([email protected])

using authcheck in MacOS or Linux

First, compile the AuthCheck's source, use the following Maven command for that in the context of ./SootAnalysis directory.
$ mvn package

Then, compile demo/example application by using the following Maven command in the context of ./Spring_Examples/demo directory.
$ mvn package

There are two ready-made configuration files configuration.json and input.json in ./SootAnalysis directory, which are used for demo analysis of the example application existing in the source. The former file contains various settings for the analysis and the latter contains the input model needed for the analysis.

Before running the authcheck on MacOS or Linux, the configuration.json file needs to be modified according to your settings; the attributes jceJarPath and rtJarPath must include your Java Home path.

After that, in the contex of ./SootAnalysis directory, the following command can be used to execute authcheck:
$ java -cp target/Soot-Analysis-1.0-SNAPSHOT-jar-with-dependencies.jar de.fraunhofer.iem.authchecker.Checker configuration.json

After the successful execution of the above command, the analysis will create the report.html in the ./report directory, which will contain results and suggestions about the analysis.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

secure-software-engineering / authcheck

Programming Languages

Labels

Projects that are alternatives of or similar to authcheck

authcheck

contributors

using authcheck in MacOS or Linux