Fortress Role-Based Access Control
- Links to Install and Setup Docs
- About py-fortress and Role-Based Access Control
Located under the doc folder and include:
| Link | Description | |
|---|---|---|
| 1. | README-BUILDING | To build the package from source |
| 2. | README-QUICKSTART | Beginners start here |
| 3. | README-LDAP-DOCKER | Run LDAP in Docker |
| 4. | README-INSTALL | Install with PyPI Package |
| 5. | README-TESTING | Run the tests from source |
| 6. | README-API | API Usage Guide |
| 7. | README-CLI | CLI for RBAC Admin and Review |
| 8. | README-CLI-AUTH | CLI for RBAC System Testing |
| 9. | README-UPGRADE-PYTHON | python-ldap dependencies |
| 10. | TROUBLESHOOTING-GUIDE | Common errors |
- Why PY-Fortress?
- Security access control APIs for the Python3 platform.
- Requires an LDAP server to store the policy data. Support for a File backend in the works.
- Published to PyPI as py-fortress.
- Compliant with ANSI INCITS 359 RBAC0, a.k.a "Core RBAC".
- Sponsored by SYMAS
- Released under Apache License 2.0.
The following modules have inline code docs describing the API signatures, required attributes and usages.
| Link | Description | |
|---|---|---|
| 1. | access | create session, check access, add, drop active roles |
| 2. | admin | add, update, delete, assign, deassign entities |
| 3. | review | read and search entities and their relationships |
We're related to the Apache Fortress Java implementation and share:
- Data Format:
- Exception Ids:
- Method names and signatures:
- Management interfaces. Entries created by one can be processed by the other, and can be managed using Apache Fortress' Web and Rest interfaces:
The Apache Fortress Core has capabilities that py-fortress doesn't, like Hierarchical Roles (RBAC1), Static Separation of Duties (RBAC2) and Dynamic Separation of Duties (RBAC3).
- Many-to-many relationship between Users, Roles and Permissions. Selective Role activation into Sessions. API to add, update, delete and search entity data; perform access control decisions during runtime.
- Link to ANSI INCITS 359 Specification