# Role-Based Access Control Libraries > Search results for `role-based access control and permissions library` on awesome-repositories.com. 118 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/role-based-access-control-and-permissions-library **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/role-based-access-control-and-permissions-library).** ## Results - [spatie/laravel-permission](https://awesome-repositories.com/repository/spatie-laravel-permission.md) (12,911 ⭐) — This is a role-based access control system for Laravel applications that manages user permissions and roles within a database. It provides a database permissions manager to assign specific abilities to users and roles, utilizing authorization gates to restrict access to routes and interface elements. The project features a wildcard permission system that uses pattern matching to grant broad access across multiple related permissions. It also supports team-scoped access control, allowing users to maintain different roles and permission levels across separate organizational contexts or teams. - [the-control-group/voyager](https://awesome-repositories.com/repository/the-control-group-voyager.md) (11,819 ⭐) — Voyager is a Laravel administration panel and PHP database manager that provides a web-based dashboard for managing application data and administrative user privileges. It functions as a BREAD CRUD manager, allowing users to browse, read, edit, archive, and delete database records through a graphical interface. The system enables database content management without the need to write custom controller code or execute raw SQL. It includes tools for role-based access control to define and manage administrative permissions, restricting access to backend tools based on assigned user roles. - [requestly/requestly](https://awesome-repositories.com/repository/requestly-requestly.md) (6,341 ⭐) - [vintasoftware/django-role-permissions](https://awesome-repositories.com/repository/vintasoftware-django-role-permissions.md) (755 ⭐) — A django app for role based permissions. - [infisical/infisical](https://awesome-repositories.com/repository/infisical-infisical.md) (27,374 ⭐) — Infisical is a centralized secrets management platform designed to store, synchronize, and control access to sensitive credentials and configuration data across distributed development, staging, and production environments. It employs client-side encryption to ensure that secrets remain unreadable to the underlying storage infrastructure, while providing a hierarchical permission model to govern both user and machine access. The platform distinguishes itself through dynamic credential provisioning, which generates short-lived access tokens that are automatically revoked after use. It supports - [alexkhymenko/ngx-permissions](https://awesome-repositories.com/repository/alexkhymenko-ngx-permissions.md) (948 ⭐) — Permission and roles based access control for your angular(angular 2,4,5,6,7,9+) applications(AOT, lazy modules compatible - [abhinavxd/libredesk](https://awesome-repositories.com/repository/abhinavxd-libredesk.md) (2,571 ⭐) — Libredesk is an omnichannel support management system designed to unify live chat and email communications into a single dashboard. It provides a comprehensive environment for managing customer interactions, agent roles, and team assignments to organize support workloads. The project distinguishes itself through AI customer support automation, which includes generating automated responses and refining message tones. It also supports the development and integration of custom chat widgets using WebSockets and JavaScript APIs. The system covers a broad set of capabilities, including customer re - [cube-js/cube](https://awesome-repositories.com/repository/cube-js-cube.md) (20,251 ⭐) — Cube is a semantic data layer that provides a unified framework for defining business metrics, dimensions, and relationships across diverse data sources. By acting as a headless business intelligence engine, it transforms raw data into a governed model that can be queried via SQL, REST, and GraphQL interfaces. This architecture ensures consistent data definitions and logic across all downstream analytical applications and reporting tools. The platform distinguishes itself through its integrated conversational AI capabilities, which allow users to explore data using natural language. It orches - [romanbican/roles](https://awesome-repositories.com/repository/romanbican-roles.md) (1,147 ⭐) — Powerful package for handling roles and permissions in Laravel 5 (5.1 and also 5.0). - [bookstackapp/bookstack](https://awesome-repositories.com/repository/bookstackapp-bookstack.md) (18,305 ⭐) — BookStack is a self-hosted knowledge base platform designed for organizing, storing, and managing structured documentation. It utilizes a hierarchical content model that arranges information into nested trees of books, chapters, and pages, supported by a dedicated search index for rapid retrieval across the entire knowledge base. The platform distinguishes itself through deep integration with enterprise identity providers, allowing organizations to centralize authentication and access control via LDAP, SAML, or OIDC. It provides extensive administrative control over the content lifecycle, inc - [abpframework/abp](https://awesome-repositories.com/repository/abpframework-abp.md) (14,313 ⭐) — ABP is an opinionated architectural framework for building enterprise software solutions using .NET and ASP.NET Core. It serves as a structural toolkit for implementing domain-driven design and microservices patterns, providing a modular enterprise architecture where functionality is organized into independent, pluggable modules. The platform is specifically designed to support multi-tenant SaaS architectures, isolating data and configurations for multiple independent customers within a single application instance. It provides enterprise boilerplate infrastructure and pre-configured templates - [fingerprintjs/fingerprintjs](https://awesome-repositories.com/repository/fingerprintjs-fingerprintjs.md) (27,334 ⭐) — Fingerprint is a visitor identification and fraud detection platform that generates persistent, unique identifiers by analyzing browser and device attributes. By extracting technical signals from the client environment, it enables reliable user tracking across sessions without relying on traditional cookies. The platform distinguishes itself through its focus on high-accuracy identification and security-first architecture. It employs edge-side proxying to bypass ad-blockers and privacy restrictions, ensuring consistent data collection. To maintain data integrity, it uses cryptographic payload - [seerr-team/seerr](https://awesome-repositories.com/repository/seerr-team-seerr.md) (11,663 ⭐) — Seerr is a self-hosted media request system and automation orchestrator. It provides a web interface for users to search for and request movies and television shows for a home media server, acting as a coordinator between users, media servers, and automation tools to trigger the download and organization of approved content. The system distinguishes itself through a comprehensive request management layer that includes granular, role-based permissions and custom override rules to filter and modify incoming requests. It also features a dedicated notification engine that dispatches real-time sta - [iroshanrathnayake/ngx-role-accessor](https://awesome-repositories.com/repository/iroshanrathnayake-ngx-role-accessor.md) (2 ⭐) — Enterprise-grade Angular library for scalable, maintainable role-based access control (RBAC) with powerful services and structural directives. - [semaphoreui/semaphore](https://awesome-repositories.com/repository/semaphoreui-semaphore.md) (13,233 ⭐) — Semaphore is a centralized web-based platform designed for the orchestration and execution of Ansible automation. It provides a unified control plane to manage infrastructure operations, allowing teams to organize inventories, environment variables, and playbooks into reusable templates. The platform supports multi-tenant governance by isolating resources into projects, ensuring clear separation between different teams and infrastructure segments. The system distinguishes itself through a distributed task runner architecture that offloads automation workloads to independent nodes, enabling sc - [florinpop17/app-ideas](https://awesome-repositories.com/repository/florinpop17-app-ideas.md) (95,036 ⭐) — App-ideas is a development platform that integrates autonomous AI agents into local environments to orchestrate code review, automated fix application, and workflow management. It functions as a command-line interface that connects external AI assistants to your codebase, enabling iterative development cycles through plugin-based integration and natural language triggers. The platform distinguishes itself through a robust static analysis engine that traverses syntax trees to enforce structural coding standards and identify violations. Users can define custom review rules, architectural prefer - [levart/ngx-signal-permissions](https://awesome-repositories.com/repository/levart-ngx-signal-permissions.md) (4 ⭐) — A modern, signal-based Angular library for managing permissions and roles with full TypeScript support. - [semi-technologies/weaviate](https://awesome-repositories.com/repository/semi-technologies-weaviate.md) (16,337 ⭐) — Weaviate is a cloud-native vector database and distributed vector store designed to save high-dimensional vectors alongside structured data. It functions as a hybrid search engine that combines vector similarity, keyword matching, and structured metadata filtering within a single query. The system is optimized for retrieval-augmented generation, integrating vector search with generative AI and reranking to power question-and-answer workflows. It distinguishes itself through the ability to merge semantic search with traditional keyword queries and structured metadata filters to improve result - [frappe/erpnext](https://awesome-repositories.com/repository/frappe-erpnext.md) (35,726 ⭐) — ERPNext is a comprehensive enterprise resource planning suite designed to integrate core organizational functions, including accounting, inventory, human resources, and project management, into a single unified platform. It operates as a metadata-driven business application, where data structures and application logic are defined through configuration rather than hard-coded programming to facilitate rapid customization. The system distinguishes itself through a robust security and governance framework that enforces granular, role-based access control across all document operations. It feature - [shopizer-ecommerce/shopizer](https://awesome-repositories.com/repository/shopizer-ecommerce-shopizer.md) (3,880 ⭐) — Shopizer is a Java-based e-commerce platform designed for managing digital storefronts. It provides a centralized headless backend that coordinates product catalogs, shopping carts, and order processing workflows. The system is built as a containerized application ready for deployment and scaling within Kubernetes clusters on cloud infrastructure. It utilizes a headless architecture to decouple business logic from the presentation layer via a RESTful interface. The platform covers commerce management through inventory tracking, merchant account coordination, and order fulfillment workflows. - [calcom/cal.com](https://awesome-repositories.com/repository/calcom-cal-com.md) (45,760 ⭐) — Cal.com is a comprehensive scheduling infrastructure platform designed to manage availability, booking workflows, and calendar synchronization across multiple users and external services. It provides a backend service for automated appointment scheduling, enabling the creation, confirmation, and management of booking lifecycles through a centralized state machine. The platform also offers embeddable user interface components that allow developers to integrate interactive booking experiences directly into third-party websites. What distinguishes the platform is its extensible app ecosystem and - [rami-sheikha-dev/ngx-smart-permissions](https://awesome-repositories.com/repository/rami-sheikha-dev-ngx-smart-permissions.md) (6 ⭐) — ngx-smart-permissions is a lightweight and smart Angular library for managing role-based and permission-based access control in Angular applications. Supports both standalone components and NgModules. Built for Angular 17+ & 18+. - [crewaiinc/crewai](https://awesome-repositories.com/repository/crewaiinc-crewai.md) (53,687 ⭐) — CrewAI is a multi-agent orchestration framework designed for building autonomous systems that execute complex, multi-step workflows. It provides a development platform where specialized agents are defined with specific roles, goals, and tool sets to perform tasks collaboratively. By leveraging a declarative workflow engine, the system manages task dependencies, state transitions, and execution logic, allowing for the creation of structured, stateful sequences of operations. The framework distinguishes itself through its hierarchical management capabilities, which utilize manager agents to coo - [xyproto/permissions](https://awesome-repositories.com/repository/xyproto-permissions.md) (12 ⭐) — :closed_lock_with_key: Middleware for keeping track of users, login states and permissions - [shuzheng/zheng](https://awesome-repositories.com/repository/shuzheng-zheng.md) (16,672 ⭐) — Zheng is a Spring Boot microservices framework and enterprise J2EE development platform. It functions as a distributed service gateway and identity provider, providing a foundation for building complex business applications and microservices infrastructure. The project includes a comprehensive enterprise content management system and an OAuth2 identity provider for managing single sign-on and third-party social login integrations. It also features a MyBatis ORM code generator that automatically creates database models and boilerplate functions from existing tables. The platform covers a broa - [directus/directus](https://awesome-repositories.com/repository/directus-directus.md) (36,030 ⭐) — Directus is a headless content platform that functions as a backend service, automatically generating REST and GraphQL APIs by performing introspection on existing SQL database schemas. It serves as a unified data orchestration layer, decoupling content management from frontend delivery while providing a secure, stateless gateway for database transactions. The platform distinguishes itself through a granular role-based access control engine that enforces security policies at the field level across all API endpoints. It includes a visual, low-code administrative dashboard that allows non-techn - [delba/permission](https://awesome-repositories.com/repository/delba-permission.md) (2,892 ⭐) — A unified API to ask for permissions on iOS - [siderolabs/talos](https://awesome-repositories.com/repository/siderolabs-talos.md) (10,659 ⭐) — Talos is a minimal, immutable Linux distribution designed specifically for deploying and managing Kubernetes clusters. It functions as an API-driven infrastructure manager that replaces traditional shell access with a declarative gRPC interface to control operating system state and configuration. The system is distinguished by its use of a read-only root filesystem and a security-hardened kernel, which removes standard GNU utilities to reduce the attack surface. It ensures environment consistency by distributing the operating system as versioned, signed images and utilizes TPM-backed verified - [accelerationnet/access](https://awesome-repositories.com/repository/accelerationnet-access.md) (91 ⭐) — A common lisp library to unify access to common dictionary-like data-structures - [etcd-io/etcd](https://awesome-repositories.com/repository/etcd-io-etcd.md) (51,838 ⭐) — etcd is a distributed, strongly consistent key-value store designed to provide reliable storage for critical system metadata and coordination primitives. It functions as a distributed consensus engine, utilizing a replicated log and leader-based state machine to ensure that all nodes in a cluster maintain a synchronized view of data. By providing atomic operations and linearizable reads and writes, it serves as a foundational component for distributed systems requiring high availability and fault tolerance. The system distinguishes itself through its multi-version concurrency control, which e - [snapshot-labs/snapshot-v1](https://awesome-repositories.com/repository/snapshot-labs-snapshot-v1.md) (9,109 ⭐) — Snapshot is a decentralized governance platform that enables DAOs and organizations to create and manage onchain voting systems. It supports both offchain signing and onchain execution, allowing votes to be submitted as signed messages to reduce gas costs while maintaining verifiability through onchain proposal execution on Ethereum and Starknet. The platform provides a modular strategy plugin system for voting power calculation and proposal validation, along with hierarchical space and role management for multi-tier governance structures. Snapshot distinguishes itself through several advance - [azure-samples/azure-search-openai-demo](https://awesome-repositories.com/repository/azure-samples-azure-search-openai-demo.md) (7,697 ⭐) — This project is a reference implementation and application template for Retrieval-Augmented Generation (RAG). It integrates Azure OpenAI with Azure AI Search to enable conversational chat interfaces that provide grounded responses based on private enterprise data. The system is distinguished by its multimodal AI interface, allowing it to process and reason over combined text, image, and PDF content. It employs a hybrid search architecture that combines vector and keyword retrieval with semantic reranking to prioritize the most relevant documents for prompt augmentation. The project covers a - [snipe/snipe-it](https://awesome-repositories.com/repository/snipe-snipe-it.md) (13,942 ⭐) — Snipe-IT is an IT asset management system and inventory manager designed to track hardware, equipment, and software licenses. It provides a central platform for monitoring ownership, location, and status of assets across an organization. The system includes a dedicated manager for software licenses to track entitlements and expiration dates for legal compliance. It also functions as an inventory manager for consumable supplies, featuring stock level monitoring and automated alerts when supplies fall below defined thresholds. The platform exposes a REST API for reading and writing inventory d - [kishanjvaghela/ask-permission](https://awesome-repositories.com/repository/kishanjvaghela-ask-permission.md) (78 ⭐) — Ask Permission - Simple RunTime permission manager - [liquidgalaxylab/lg-gesture-and-voice-control](https://awesome-repositories.com/repository/liquidgalaxylab-lg-gesture-and-voice-control.md) (0 ⭐) — LG Gesture and Voice Control An App To Provide Gesture and Voice Control for Liquid Galaxy . - [snyk/cli](https://awesome-repositories.com/repository/snyk-cli.md) (5,428 ⭐) — The Snyk CLI is a command-line security scanner that detects known vulnerabilities across open-source dependencies, proprietary application code, container images, and infrastructure-as-code configuration files. It also serves as a platform management tool, allowing users to configure organizations, users, SSO, and reporting from the terminal rather than the web dashboard. The CLI integrates directly into development workflows, enabling scanning within IDEs, build pipelines, and version control systems. It implements static analysis with interfile data flow analysis to find complex security f - [dubinc/dub](https://awesome-repositories.com/repository/dubinc-dub.md) (23,722 ⭐) — This project is a comprehensive link management and marketing attribution platform designed for creating, tracking, and analyzing shortened URLs. It functions as a centralized hub for marketing analytics, providing tools to monitor link performance, visualize conversion funnels, and manage affiliate programs through a unified dashboard. The platform distinguishes itself by integrating advanced attribution modeling and partner management directly into the link infrastructure. It supports complex marketing workflows, including automated commission calculations, fraud detection, and payout distr - [agno-agi/agno](https://awesome-repositories.com/repository/agno-agi-agno.md) (40,717 ⭐) — Agno is an agent operating system designed to manage the lifecycle, tool execution, and persistent state of autonomous agents across distributed infrastructure. It provides a unified runtime environment that wraps diverse agent frameworks into a consistent, interoperable protocol, allowing developers to build and deploy complex multi-agent systems that coordinate tasks and delegate sub-processes. The platform distinguishes itself through a robust governance and orchestration layer that includes human-in-the-loop approval gates, role-based access control, and a centralized API gateway. It feat - [chaps-io/access-granted](https://awesome-repositories.com/repository/chaps-io-access-granted.md) (779 ⭐) — Multi-role and whitelist based authorization gem for Rails (and not only Rails!) - [solidtime-io/solidtime](https://awesome-repositories.com/repository/solidtime-io-solidtime.md) (8,158 ⭐) — Solidtime is time tracking software designed for freelancers and agencies to record work durations, manage billable hours, and monitor labor allocation. It serves as a professional services automation tool that organizes work into clients and projects while managing team member assignments. The system features a billable rate manager that defines hourly costs at the organizational, member, and project levels using hierarchical overrides to calculate total billing. It includes a project management tool for organizing clients and tasks into hierarchies with role-based access permissions. The p - [lambdalisue/django-permission](https://awesome-repositories.com/repository/lambdalisue-django-permission.md) (303 ⭐) — django-permission .. image:: https://img.shields.io/travis/lambdalisue/django-permission/master.svg?style=flat-square :target: http://travis-ci.org/lambdalisue/django-permission :alt: Build status .. image::… - [googlechrome/lighthouse](https://awesome-repositories.com/repository/googlechrome-lighthouse.md) (30,355 ⭐) — Lighthouse is an automated diagnostic tool that evaluates web pages against industry standards for performance, accessibility, and search engine optimization. It functions as a programmatic analysis engine and a command-line utility, allowing developers to integrate comprehensive web quality checks directly into continuous integration pipelines and local development workflows. The project distinguishes itself through a modular architecture that utilizes artifact-based data collection to ensure consistent analysis across different environments. It supports a headless execution mode for automat - [soybeanjs/soybean-admin](https://awesome-repositories.com/repository/soybeanjs-soybean-admin.md) (14,503 ⭐) — Soybean Admin is a type-safe frontend management boilerplate and dashboard template built with Vue 3, Vite, and TypeScript. It provides a pre-configured foundation for creating enterprise administrative interfaces, utilizing the NaiveUI component framework and UnoCSS for utility-first styling. The project distinguishes itself through automated workflow tools, including file-system-based route generation and a command-line interface for automating git commits and project deployments. It implements a comprehensive security model featuring both static and dynamic role-based access control to res - [space-wizards/space-station-14](https://awesome-repositories.com/repository/space-wizards-space-station-14.md) (3,523 ⭐) — Space Station 14 is a C# multiplayer game and roleplay simulation framework. It is built upon an Entity-Component-System (ECS) game engine that separates logic into systems and data into components to manage complex entity interactions. The project functions as a grid-based physics simulator with a YAML data-driven prototype system for defining game objects. The project features a specialized 2D sprite rendering engine that maps server-side appearance data to client-side shaders. It implements a networking model with client-side prediction and dirty-flagged state synchronization to reduce inp - [apache/gravitino](https://awesome-repositories.com/repository/apache-gravitino.md) (2,866 ⭐) — Gravitino is a federated metadata lake and unified data catalog designed to manage tables, files, and AI models across diverse data sources and cloud storage. It serves as a centralized interface for governing schemas, access controls, and tagging across relational databases, messaging queues, and object stores. The project distinguishes itself by unifying the management of AI assets, such as machine learning models and their version lineages, alongside traditional tabular data. It also implements the Iceberg REST specification to provide a standardized metadata server and proxy for lakehouse - [ehmicky/unix-permissions](https://awesome-repositories.com/repository/ehmicky-unix-permissions.md) (143 ⭐) — Swiss Army knife for Unix permissions - [gofr-dev/gofr](https://awesome-repositories.com/repository/gofr-dev-gofr.md) (21,321 ⭐) — Gofr is a comprehensive framework for building production-ready microservices in Go. It provides a unified toolkit for developing RESTful APIs and gRPC services, offering built-in support for observability, database management, and distributed system communication. The framework distinguishes itself through its focus on developer productivity and system resilience. It automates common backend tasks such as CRUD handler generation, schema-driven code creation, and database migration orchestration, while preventing race conditions in clustered environments. To maintain stability, it includes in - [spree/spree](https://awesome-repositories.com/repository/spree-spree.md) (15,230 ⭐) — This project is a modular e-commerce platform built on Ruby on Rails, designed to serve as a comprehensive engine for managing online retail operations. It provides the foundational infrastructure to handle complex product catalogs, customer order lifecycles, and global payment processing within a unified system. The platform distinguishes itself through a headless, API-first architecture that decouples backend commerce logic from custom frontend storefronts. It supports multi-tenant environments, allowing for the management of multiple independent retail storefronts or marketplaces from a si - [permissions-dispatcher/permissionsdispatcher](https://awesome-repositories.com/repository/permissions-dispatcher-permissionsdispatcher.md) (11,177 ⭐) — PermissionsDispatcher is a declarative Android API and runtime permission manager. It provides a structured system for requesting and verifying system permissions while separating authorization logic from general business code. The project focuses on managing the permission request workflow, which includes justifying requests with custom explanations and handling user responses to system prompts. It also functions as a system settings guide, directing users to the manual Android settings menu for special permissions that require approval outside of the application. - [appsmithorg/appsmith](https://awesome-repositories.com/repository/appsmithorg-appsmith.md) (40,051 ⭐) — Appsmith is a low-code platform designed for building internal business tools, such as operational dashboards and administrative panels. It enables developers to construct dynamic user interfaces by dragging and dropping modular widgets onto a canvas and binding them directly to backend data sources. The platform utilizes a reactive framework that automatically updates interface elements and triggers functions whenever underlying data or widget properties change, eliminating the need for manual event handling. The platform distinguishes itself through a server-side proxy architecture that exe