awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-Source-AlternativenSelf-hosted SoftwareBlogSitemap
ProjektÜber unsRanking-MethodikPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

5 Repos

Awesome GitHub RepositoriesAuthorization Decision Explainers

Tools that provide transparency into authorization decisions by returning the specific policy rule that granted or denied access.

Distinguishing note: No existing candidates fit the transparency/auditability of authorization decisions.

Explore 5 awesome GitHub repositories matching security & cryptography · Authorization Decision Explainers. Refine with filters or upvote what's useful.

Awesome Authorization Decision Explainers GitHub Repositories

Finde die besten Repos mit KI.Wir suchen mit KI nach den am besten passenden Repositories.
  • casbin/casbinAvatar von casbin

    casbin/casbin

    19,848Auf GitHub ansehen↗

    Casbin is an authorization library that provides a model-based engine for enforcing access control across diverse application environments. It decouples authorization logic from application code by using a configuration-driven approach, allowing developers to define access rules and evaluation logic independently. The system supports a wide range of access control models, including role-based, attribute-based, and relationship-based patterns, which are evaluated at runtime to determine if a subject is permitted to perform an action on a resource. The project distinguishes itself through a hig

    Returns the specific policy rule that granted or denied an access request to provide transparency.

    Goabacaccess-controlacl
    Auf GitHub ansehen↗19,848
  • othmanadi/planning-with-filesAvatar von OthmanAdi

    OthmanAdi/planning-with-files

    14,139Auf GitHub ansehen↗

    Planning with files is an enterprise knowledge graph platform designed to transform unstructured organizational data into a searchable, interconnected network. By utilizing a graph-based retrieval-augmented generation engine, the system grounds language model outputs in verified internal data, ensuring that responses are explainable, traceable, and free from hallucinations. The platform distinguishes itself through a focus on data sovereignty and secure, private infrastructure deployment. It enables organizations to maintain full control over sensitive information by processing data locally o

    Provides transparency into technical dependencies and access rights by translating complex relationships into plain language.

    Pythonadalagentagent-skills
    Auf GitHub ansehen↗14,139
  • crowdsecurity/crowdsecAvatar von crowdsecurity

    crowdsecurity/crowdsec

    12,574Auf GitHub ansehen↗

    CrowdSec is a collaborative, distributed security engine designed for threat detection and infrastructure protection. It functions as an intrusion detection system that parses logs and network traffic to identify malicious patterns, utilizing a bucket-based threshold detection model to aggregate events and trigger alerts. The platform is built on a modular architecture that includes a centralized local API server for managing security signals and a relational database for persistent storage of remediation decisions. What distinguishes the project is its decoupled enforcement model, which offl

    Maintains a persistent database backend to track active alerts, remediation decisions, and system state across distributed security instances.

    Goattacks-preventiondetectionids
    Auf GitHub ansehen↗12,574
  • ory/ketoAvatar von ory

    ory/keto

    5,270Auf GitHub ansehen↗

    Ory Keto is an open-source authorization server that implements Google Zanzibar’s relationship-based access control model. It stores every access relationship as a tuple in a SQL database and exposes a declarative TypeScript-like namespace language for defining object types, relations, and permissions. The service provides bidirectional permission resolution, configurable consistency levels for checks, and dual gRPC and REST APIs for broad integration. Keto extends the Zanzibar model with edge enforcement of access policies, structured compliance auditing of permission decisions, and infrastr

    Exposes a decisions endpoint that returns allow/deny responses for request authorization checks.

    Goabacaccess-controlacl
    Auf GitHub ansehen↗5,270
  • cerbos/cerbosAvatar von cerbos

    cerbos/cerbos

    4,460Auf GitHub ansehen↗

    Cerbos is an open-source authorization service that provides a centralized, language-agnostic engine for managing access control. It functions as a policy-as-code platform, allowing teams to define, test, and distribute authorization rules using declarative YAML or JSON configurations. By decoupling access logic from application code, it enables consistent permission enforcement across diverse service stacks. The project distinguishes itself through its ability to translate high-level authorization policies into native database query filters. This capability allows applications to enforce sec

    Evaluates authorization requests against defined policies to return real-time access decisions.

    Goaccess-controlauthorizationgo
    Auf GitHub ansehen↗4,460
  1. Home
  2. Security & Cryptography
  3. Authorization Decision Explainers

Unter-Tags erkunden

  • Access Decision EnforcersReal-time evaluation of authorization requests against defined policies within application code. **Distinct from Authorization Decision Explainers:** Focuses on the enforcement of decisions, whereas Authorization Decision Explainers focuses on transparency.
  • Authorization Decision AnalyzersTools for processing and returning authorization outcomes based on user identity and resource state. **Distinct from Authorization Decision Explainers:** Focuses on the evaluation and return of authorization decisions, distinct from simulation or audit trail logging.
  • Authorization Decision SimulatorsTests policies against specific principals and resources to verify access outcomes and visualize effective permissions. **Distinct from Authorization Decision Explainers:** Distinct from Authorization Decision Explainers: focuses on proactive simulation and testing rather than reactive explanation of past decisions.
  • Conflict Resolution LogicMechanisms for determining final access decisions when multiple authorization rules overlap or conflict. **Distinct from Authorization Decision Explainers:** Focuses on the resolution logic for authorization conflicts, whereas the parent focuses on transparency and explanation of decisions.
  • Metadata AttachmentsIncludes custom data in authorization responses to provide context or reasons for access decisions. **Distinct from Authorization Decision Explainers:** Focuses on attaching custom metadata to responses, whereas the parent focuses on the general transparency of decision rules.
  • Security Decision Lookups1 Sub-TagTools for retrieving active security decisions and enforcement actions for specific network identifiers. **Distinct from Authorization Decision Explainers:** Distinct from Authorization Decision Explainers: focuses on retrieving active enforcement decisions rather than explaining policy logic.