mhausenblas / Rbac.dev
Licence: apache-2.0
A collection of good practices and tools for Kubernetes RBAC
Stars: ✭ 115
Projects that are alternatives of or similar to Rbac.dev
Think Authz
An authorization library that supports access control models like ACL, RBAC, ABAC in ThinkPHP 6.0 .
Stars: ✭ 155 (+34.78%)
Mutual labels: authorization, rbac, permissions, access-control
Accesscontrol
Role and Attribute based Access Control for Node.js
Stars: ✭ 1,723 (+1398.26%)
Mutual labels: authorization, rbac, permissions, access-control
Casbin4D
An authorization library that supports access control models like ACL, RBAC, ABAC in Delphi
Stars: ✭ 25 (-78.26%)
Mutual labels: permissions, authorization, rbac, access-control
rbac-tool
Rapid7 | insightCloudSec | Kubernetes RBAC Power Toys - Visualize, Analyze, Generate & Query
Stars: ✭ 546 (+374.78%)
Mutual labels: permissions, authorization, rbac, access-control
sequelize-adapter
Sequelize adapter for Casbin
Stars: ✭ 51 (-55.65%)
Mutual labels: authorization, rbac, access-control
Openstack Policy Editor
A Casbin Policy Editor for OpenStack
Stars: ✭ 28 (-75.65%)
Mutual labels: authorization, rbac, access-control
Casbin Rs
An authorization library that supports access control models like ACL, RBAC, ABAC in Rust.
Stars: ✭ 375 (+226.09%)
Mutual labels: authorization, rbac, access-control
Php Casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in PHP .
Stars: ✭ 865 (+652.17%)
Mutual labels: authorization, rbac, access-control
speedle-plus
Speedle+ is an open source project for access management. It is based on Speedle open source project and maintained by previous Speedle maintainers.
Stars: ✭ 45 (-60.87%)
Mutual labels: authorization, rbac, access-control
Casbin.net
An authorization library that supports access control models like ACL, RBAC, ABAC in .NET (C#)
Stars: ✭ 535 (+365.22%)
Mutual labels: authorization, rbac, access-control
Casbin Cpp
An authorization library that supports access control models like ACL, RBAC, ABAC in C/C++
Stars: ✭ 113 (-1.74%)
Mutual labels: authorization, rbac, access-control
Authr
🔑 a flexible and expressive approach to access-control
Stars: ✭ 33 (-71.3%)
Mutual labels: authorization, permissions, access-control
react-abac
Attribute Based Access Control for React
Stars: ✭ 54 (-53.04%)
Mutual labels: permissions, rbac, access-control
Gorm Adapter
Gorm adapter for Casbin
Stars: ✭ 373 (+224.35%)
Mutual labels: authorization, rbac, access-control
Vakt
Attribute-based access control (ABAC) SDK for Python
Stars: ✭ 92 (-20%)
Mutual labels: authorization, permissions, access-control
Pycasbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Python
Stars: ✭ 625 (+443.48%)
Mutual labels: authorization, rbac, access-control
Ngx Permissions
Permission and roles based access control for your angular(angular 2,4,5,6,7,9+) applications(AOT, lazy modules compatible
Stars: ✭ 749 (+551.3%)
Mutual labels: rbac, permissions, access-control
Jcasbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Java
Stars: ✭ 1,335 (+1060.87%)
Mutual labels: authorization, rbac, access-control
Casbin
An authorization library that supports access control models like ACL, RBAC, ABAC in Golang
Stars: ✭ 10,872 (+9353.91%)
Mutual labels: authorization, rbac, access-control
objection-authorize
isomorphic, "magical" authorization integration with Objection.js 🎉
Stars: ✭ 71 (-38.26%)
Mutual labels: authorization, rbac, access-control
A site dedicated to good practices and tooling around Kubernetes RBAC. Both pull requests and issues are welcome.
For recipes, tips and tricks around RBAC see recipes.rbac.dev.
Official Kubernetes docs
- Authorization
- Using RBAC Authorization
- Controlling Access to the Kubernetes API
- Configure Service Accounts for Pods
Talks and articles
- Effective RBAC by Jordan Liggitt
- Configure RBAC In Your Kubernetes Cluster via Bitnami
- Using RBAC, Generally Available in Kubernetes v1.8 by Eric Chiang
- On defaults in Kubernetes RBAC by Michael Hausenblas
- Stop using admin credentials in kubectl by Balkrishna Pandey
- Testing Kubernetes RBAC by Tom Gallacher
- Demystifying RBAC in Kubernetes via CNCF and Bitnami (video)
- Configuring permissions in Kubernetes with RBAC via Containerum
- Kubernetes Authorization via Open Policy Agent by Stefan Büringer
- Configure RBAC in Kubernetes Like A Boss by Emre Savcı
- Securing Kubernetes Clusters by Eliminating Risky RBAC Permissions by Eviatar Gerzi
- Compromising Kubernetes Cluster by Exploiting RBAC Permissions by Eviatar Gerzi
- Permission manager : RBAC management for Kubernetes by Saiyam Pathak
- Inside Kubernetes RBAC by Dominik Tornow
Tooling
- cyberark/KubiScan: a tool by Eviatar Gerzi to scan Kubernetes cluster for risky RBAC permissions
- appvia/krane: a Kubernetes RBAC static analysis and visualisation tool
- alcideio/rbac-tool: Collection of Kubernetes RBAC power toys - Visualize, Generate & Query by Alcide
Generators and operators
- liggitt/audit2rbac: takes a Kubernetes audit log and username as input, and generates RBAC role and binding objects that cover all the API requests made by that user.
- fairwindsops/rbac-manager: operator that supports declarative configuration for RBAC with new custom resources.
Interactive queries
- corneliusweig/rakkess: show an access matrix for server resources.
- fairwindsops/rbac-lookup: allows you to easily find Kubernetes roles and cluster roles bound to any user, service account, or group name.
- sbueringer/kubernetes-rbacq: simplifies querying Subjects and Rights specified in Kubernetes through Roles/ClusterRoles and RoleBindings/ClusterRoleBindings.
- Ladicle/kubectl-bindrole: finding Kubernetes roles bound to a specified service account, group or user.
- aquasecurity/kubectl-who-can: show all the subjects who have permission to perform a given verb on specified resources, for example, find all the subjects who can create pods in a given namespace, or who can delete nodes in the cluster.
- mhausenblas/rbIAM: a unified AWS IAM & Kubernetes RBAC access control exploration tool.
Visualization
- jasonrichardsmith/rbac-view: visualizes RBAC permissions in tabular format in your browser.
-
team-soteria/rback: generates a graph representation (in Graphviz
dot
format) of a Kubernetes cluster's RBAC settings. - sighupio/permission-manager: super-easy and user-friendly RBAC management for Kubernetes. You can create users, assign namespaces/permissions, and distribute Kubeconfig YAML files via a nice and easy web UI.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].