# casbin/casbin **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/casbin-casbin).** 19,848 stars · 1,722 forks · Go · apache-2.0 ## Links - GitHub: https://github.com/casbin/casbin - Homepage: https://casbin.org - awesome-repositories: https://awesome-repositories.com/repository/casbin-casbin.md ## Topics `abac` `access-control` `acl` `auth` `authentication` `authn` `authorization` `authz` `cas` `casbin` `cloudos` `cloudsecurity` `iam` `oauth` `oidc` `permission` `rbac` `saml` `sso` ## Description Casbin is an authorization library that provides a model-based engine for enforcing access control across diverse application environments. It decouples authorization logic from application code by using a configuration-driven approach, allowing developers to define access rules and evaluation logic independently. The system supports a wide range of access control models, including role-based, attribute-based, and relationship-based patterns, which are evaluated at runtime to determine if a subject is permitted to perform an action on a resource. The project distinguishes itself through a highly modular architecture that includes adapter-based storage abstraction, enabling the engine to connect to various persistent backends for policy management. It supports complex, context-aware policy execution by allowing developers to inject custom functions for domain-specific matching and validation. Furthermore, the engine handles hierarchical role resolution and provides mechanisms for aggregating multiple policy outcomes, such as allow-override or deny-override, to resolve conflicting permissions. The platform covers a broad capability surface, including middleware integration for web frameworks, API gateways, and service mesh architectures. It offers extensive tooling for policy administration, observability, and performance optimization, such as result caching and asynchronous execution. The system also supports multi-tenancy through domain-aware authorization and provides programmatic interfaces for automating policy updates and lifecycle management. The library is designed for integration into existing stacks, offering middleware components and support for distributed deployments to ensure consistent authorization state across multiple service instances. ## Tags ### Security & Cryptography - [Attribute-Based Access Control](https://awesome-repositories.com/f/security-cryptography/attribute-based-access-control.md) — Provides a flexible authorization engine that enforces role-based, attribute-based, and relationship-based access control models. ([source](https://casbin.org/docs/abac)) - [Authorization Middleware](https://awesome-repositories.com/f/security-cryptography/authorization-middleware.md) — Integrates with web frameworks and API gateways to intercept requests and validate security policies before processing. ([source](https://casbin.org/docs/envoy)) - [Access Control Models](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/access-control-models.md) — Configures custom request parameters, policy structures, and evaluation logic to enforce specific authorization requirements across diverse application environments. ([source](https://casbin.org/docs/category/access-control-models)) - [Policy Enforcement Engines](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/policy-enforcement-engines.md) — Provides a framework for evaluating complex security rules against subjects, resources, and actions to determine access permissions in real-time. - [Action Resolution Policies](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/policy-enforcement-engines/action-resolution-policies.md) — Evaluates requests against defined models and rules to determine if a subject is permitted to perform an action on a resource. ([source](https://casbin.org/docs/enforcers)) - [Policy-Based Access Control](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control.md) — Decouples authorization logic from application code using a configuration-driven engine that interprets access rules at runtime. ([source](https://casbin.org/docs/how-it-works)) - [Role-Based Access Control](https://awesome-repositories.com/f/security-cryptography/role-based-access-control.md) — Evaluates access requests by checking if a subject possesses the required role, including transitive and hierarchical relationships. ([source](https://casbin.org/docs/rbac)) - [Conditional Access Evaluators](https://awesome-repositories.com/f/security-cryptography/attribute-based-access-control/conditional-access-evaluators.md) — Evaluates dynamic logic alongside role assignments to restrict or permit actions based on runtime context or specific attributes. ([source](https://casbin.org/docs/rbac-overview)) - [Authorization Policies](https://awesome-repositories.com/f/security-cryptography/authorization-policies.md) — Stores access control rules in external files or databases and loads, saves, adds, or removes policies dynamically. ([source](https://casbin.org/docs/adapters)) - [Attribute-based Access Controls](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/access-control-models/attribute-based-access-controls.md) — Evaluates authorization requests against diverse security patterns including role-based, attribute-based, and lattice-based models. ([source](https://casbin.org/docs/supported-models)) - [Multi-Tenant Identity Management](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/identity-role-management/multi-tenant-identity-management.md) — Isolates authorization rules by domain or tenant to ensure secure, scoped permission management in distributed architectures. - [Access Control and Authorization](https://awesome-repositories.com/f/security-cryptography/identity-access-management/authentication-strategies/authorization-and-user-administration/access-control-authorization.md) — Checks whether a subject is authorized to perform a specific action on a resource by matching requests against defined models and rules. ([source](https://casbin.org/docs/command-line-tools)) - [Middleware](https://awesome-repositories.com/f/security-cryptography/security/policies/access-control/middleware.md) — Hooks authorization logic into web frameworks and API gateways to intercept requests. ([source](https://casbin.org/docs/middlewares)) - [Domain-Based Access Controls](https://awesome-repositories.com/f/security-cryptography/domain-based-access-controls.md) — Configures access control to evaluate permissions within specific organizational scopes or tenants, supporting wildcard assignments across domains. ([source](https://casbin.org/docs/rbac-with-pattern)) - [Domain-Scoped Permissions](https://awesome-repositories.com/f/security-cryptography/domain-based-access-controls/domain-scoped-permissions.md) — Enables domain-scoped permission management to control access across multi-tenant environments. ([source](https://casbin.org/docs/rbac-with-domains-api)) - [Access Control Policies](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/access-control-models/permission-based-security/access-control-policies.md) — Persists authorization rules in external storage backends to maintain consistent access control across application restarts. ([source](https://casbin.org/docs/category/storage)) - [Relationship-Based Access Controls](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/data-resource-permissions/relationship-based-access-controls.md) — Evaluates authorization requests by traversing relationships between users, resources, and types to determine access. ([source](https://casbin.org/docs/rebac)) - [Organizational Structure Management](https://awesome-repositories.com/f/security-cryptography/identity-access-management/identity-management/user-management/organizational-structure-management.md) — Restricts access based on organizational structures and roles to ensure permissions align with hierarchical business units. ([source](https://casbin.org/docs/category/access-control-models)) - [Identity Provider Connections](https://awesome-repositories.com/f/security-cryptography/identity-provider-connections.md) — Verifies user identities by mapping external authentication platform data to internal authorization rules. ([source](https://casbin.org/docs/middlewares)) - [Multi-Tenant Security](https://awesome-repositories.com/f/security-cryptography/multi-tenant-security.md) — Isolates access policies by domain or tenant to ensure secure, scoped permission management. ([source](https://casbin.org/docs/rbac-overview)) - [Policy Outcome Aggregators](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/policy-outcome-aggregators.md) — Combines multiple policy outcomes into a single allow or deny result based on defined logic like allow-override or deny-override. ([source](https://casbin.org/docs/effector)) - [Policy Enforcement Engines](https://awesome-repositories.com/f/security-cryptography/policy-enforcement-engines.md) — Intercepts cluster resource requests and evaluates them against declarative access control rules without custom webhook code. ([source](https://casbin.org/docs/k8s-gatekeeper)) - [Conditional Access Rules](https://awesome-repositories.com/f/security-cryptography/role-based-access-control/conditional-access-rules.md) — Applies logical conditions and matching functions to role assignments to determine permissions based on dynamic attributes. ([source](https://casbin.org/docs/category/api)) - [Pattern-Based Role Matching](https://awesome-repositories.com/f/security-cryptography/role-based-access-control/conditional-role-assignment/pattern-based-role-matching.md) — Assign permissions using flexible pattern matching to simplify the management of large or dynamic sets of roles and users. ([source](https://casbin.org/docs/rbac-overview)) - [Tab Access Restrictions](https://awesome-repositories.com/f/security-cryptography/role-based-access-control/tab-access-restrictions.md) — Synchronizes authorization rules to client-side applications to restrict user interface elements based on defined permissions. ([source](https://casbin.org/docs/category/management)) - [Role-Based Access Management](https://awesome-repositories.com/f/security-cryptography/role-based-access-management.md) — Maps users to roles and roles to other roles to manage complex permissions through inheritance and group-based access. ([source](https://casbin.org/docs/overview)) - [Administrative Privilege Management](https://awesome-repositories.com/f/security-cryptography/administrative-privilege-management.md) — Grants unrestricted access to specific subjects across all models to ensure administrative oversight of the entire system. ([source](https://casbin.org/docs/category/access-control-models)) - [Conflict Resolution Policies](https://awesome-repositories.com/f/security-cryptography/authorization-policies/authorization-policy-enforcement/conflict-resolution-policies.md) — Resolves competing authorization rules using priority ordering or override logic to ensure consistent enforcement. ([source](https://casbin.org/docs/supported-models)) - [Programmatic Administration Interfaces](https://awesome-repositories.com/f/security-cryptography/authorization-policies/programmatic-administration-interfaces.md) — Exposes programmatic interfaces for external systems to create, update, and delete authorization models and rules. ([source](https://casbin.org/docs/k8s-gatekeeper)) - [Custom Pattern Matchers](https://awesome-repositories.com/f/security-cryptography/custom-detection-rules/custom-pattern-matchers.md) — Registers custom logic to evaluate complex relationships between subjects, objects, or domains, allowing a single policy rule to cover multiple resource identifiers. ([source](https://casbin.org/docs/rbac-with-pattern)) - [Authorization Services](https://awesome-repositories.com/f/security-cryptography/encryption-as-a-service/authorization-services.md) — Exposes access control logic as a standalone network service to decouple policy enforcement from application code. ([source](https://casbin.org/docs/category/management)) - [Function Injection Tools](https://awesome-repositories.com/f/security-cryptography/function-injection-tools.md) — Extends authorization logic by injecting custom functions for domain-specific matching and validation. ([source](https://casbin.org/docs/function)) - [Authorization Interceptors](https://awesome-repositories.com/f/security-cryptography/graphql-security/authorization-interceptors.md) — Intercepts GraphQL requests before they reach resolvers to validate permissions against defined authorization policies. ([source](https://casbin.org/docs/graphql-middlewares)) - [Business Constraint Enforcement](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/business-constraint-enforcement.md) — Validates role-based invariants and separation of duties during policy updates to ensure security rules remain consistent with organizational requirements. ([source](https://casbin.org/docs/syntax-for-models)) - [Orchestration Admission Controllers](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/policy-enforcement-engines/resource-access-control-layers/orchestration-admission-controllers.md) — Integrates with container orchestration platforms to intercept and validate resource requests against defined authorization rules. ([source](https://casbin.org/docs/category/advanced-usage)) - [Runtime Permission Policies](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/policy-enforcement-engines/runtime-permission-policies.md) — Updates and retrieves authorization rules dynamically at runtime without requiring application restarts. ([source](https://casbin.org/docs/get-started)) - [Authorization Services](https://awesome-repositories.com/f/security-cryptography/identity-access-management/authentication-strategies/authorization-and-user-administration/access-control-authorization/authorization-services.md) — Provides a remote interface to evaluate access control policies without embedding the library directly. ([source](https://casbin.org/docs/service)) - [Model Persistence](https://awesome-repositories.com/f/security-cryptography/identity-access-management/authentication-strategies/authorization-and-user-administration/access-control-authorization/model-persistence.md) — Decouples authorization logic from application code by persisting model definitions in external storage. ([source](https://casbin.org/docs/category/storage)) - [Policy Propagation Systems](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/policy-propagation-systems.md) — Propagates policy changes across multiple service instances in a distributed deployment to maintain consistent authorization state. ([source](https://casbin.org/docs/enforcers)) - [Proxy Authorization Integrations](https://awesome-repositories.com/f/security-cryptography/reverse-proxy-security/proxy-authorization-integrations.md) — Connects reverse proxies and service meshes to a centralized policy engine. ([source](https://casbin.org/docs/cloud-native)) - [Access Control Policies](https://awesome-repositories.com/f/security-cryptography/access-control-policies.md) — Applies built-in operators and custom logic to match request attributes against policy rules for flexible resource protection. ([source](https://casbin.org/docs/overview)) - [Interface Element Visibility](https://awesome-repositories.com/f/security-cryptography/access-control/panel-access-controls/interface-element-visibility.md) — Hides or displays UI elements like menus and buttons based on a user's permissions to prevent unauthorized navigation or interaction. ([source](https://casbin.org/docs/category/use-cases)) - [Dynamic Policy Refreshers](https://awesome-repositories.com/f/security-cryptography/authorization-policies/dynamic-policy-refreshers.md) — Refreshes authorization rules in memory automatically without requiring manual restarts or redeployments. ([source](https://casbin.org/docs/adapters)) - [Policy Management Interfaces](https://awesome-repositories.com/f/security-cryptography/authorization-policies/policy-management-interfaces.md) — Provides a web-based interface to draft, test, and validate access control models and policy rules without requiring a local development environment. ([source](https://casbin.org/docs/category/editors--tools)) - [Custom Matcher Functions](https://awesome-repositories.com/f/security-cryptography/function-injection-tools/custom-matcher-functions.md) — Extends the evaluation engine by allowing developers to register domain-specific logic for complex attribute matching. - [Implicit Permission Resolvers](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/access-control-models/permission-based-security/implicit-permission-resolvers.md) — Calculates effective access rights by resolving all direct and inherited permissions for a subject. ([source](https://casbin.org/docs/rbac)) - [Network Traffic Interceptors](https://awesome-repositories.com/f/security-cryptography/infrastructure-policy-enforcement/network-traffic-interceptors.md) — Intercepts network traffic at the infrastructure level to validate access requests against defined security policies. ([source](https://casbin.org/docs/cloud-native)) - [Mandatory Access Control](https://awesome-repositories.com/f/security-cryptography/mandatory-access-control.md) — Restricts user actions based on security labels and system-wide policies to ensure data confidentiality and integrity. ([source](https://casbin.org/docs/mac-overview)) - [Path-Based Access Rules](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/network-security/network-routing-access-control/network-access-controls/path-based-access-rules.md) — Validates access based on IP addresses, CIDR ranges, or RESTful URL patterns. ([source](https://casbin.org/docs/supported-models)) - [Custom Matching Functions](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/custom-matching-functions.md) — Registers custom functions to be used within authorization matchers for evaluating complex access conditions. ([source](https://casbin.org/docs/management-api)) - [Dynamic Policy Evaluators](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/dynamic-policy-evaluators.md) — Executes complex logic expressions embedded directly within policy definitions at runtime. ([source](https://casbin.org/docs/abac)) - [Policy Resolution Strategies](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/policy-resolution-strategies.md) — Aggregates multiple matching rules using built-in logic like allow-override or deny-override to resolve conflicting permissions. ([source](https://casbin.org/docs/syntax-for-models)) - [Conditional Role Access](https://awesome-repositories.com/f/security-cryptography/role-based-access-control/conditional-role-access.md) — Validates role access by executing custom logic to ensure subjects only inherit roles when specific criteria are met. ([source](https://casbin.org/docs/rbac-with-conditions)) - [Conditional Role Assignment](https://awesome-repositories.com/f/security-cryptography/role-based-access-control/conditional-role-assignment.md) — Restricts user-to-role assignments by validating them against custom runtime criteria. ([source](https://casbin.org/docs/rbac-with-conditions-api)) - [Domain-Scoped Assignment Validators](https://awesome-repositories.com/f/security-cryptography/role-based-access-control/domain-scoped-assignment-validators.md) — Validates user-to-role assignments within specific domains against custom logic to ensure active membership conditions are met. ([source](https://casbin.org/docs/rbac-with-conditions-api)) - [Conditional Domain Role Restrictions](https://awesome-repositories.com/f/security-cryptography/role-based-access-controls/conditional-domain-role-restrictions.md) — Applies conditional logic to role assignments within multi-tenant environments to enforce domain-specific access. ([source](https://casbin.org/docs/rbac-with-conditions)) - [Access Control](https://awesome-repositories.com/f/security-cryptography/security/policies/access-control.md) — Validates access permissions and system conditions throughout an entire session rather than only at the initial point of entry. ([source](https://casbin.org/docs/ucon)) - [Administrative Overrides](https://awesome-repositories.com/f/security-cryptography/administrative-controls/administrative-overrides.md) — Permits specific subjects to bypass all defined access control policies. ([source](https://casbin.org/docs/superadmin)) - [Authorization Decision Explainers](https://awesome-repositories.com/f/security-cryptography/authorization-decision-explainers.md) — Returns the specific policy rule that granted or denied an access request to provide transparency. ([source](https://casbin.org/docs/api-overview)) - [Throughput Scaling](https://awesome-repositories.com/f/security-cryptography/authorization-policies/throughput-scaling.md) — Provides mechanisms to distribute authorization checks across multiple threads or server nodes for high-traffic environments. ([source](https://casbin.org/docs/performance)) - [Batch Authorization Evaluators](https://awesome-repositories.com/f/security-cryptography/batch-authorization-evaluators.md) — Processes a collection of authorization checks in a single operation to efficiently validate large sets of data. ([source](https://casbin.org/docs/data-permissions)) - [Integrity Enforcement Policies](https://awesome-repositories.com/f/security-cryptography/field-level-access-controls/integrity-enforcement-policies.md) — Restricts read and write operations based on assigned integrity levels to prevent data corruption. ([source](https://casbin.org/docs/biba)) - [Role Hierarchy Priority Rules](https://awesome-repositories.com/f/security-cryptography/governance-policy-frameworks/compliance-governance/audit-and-compliance/policy-enforcement-frameworks/strategy-assignment-priority-hierarchies/role-hierarchy-priority-rules.md) — Determines rule precedence based on the depth of subjects within a role tree. ([source](https://casbin.org/docs/priority-model)) - [Row Level Security](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/data-resource-permissions/row-level-security.md) — Restricts access based on security levels by preventing subjects from reading higher-level data or writing to lower-level data. ([source](https://casbin.org/docs/blp)) - [Enforcement Bypasses](https://awesome-repositories.com/f/security-cryptography/identity-access-management/access-control/policy-enforcement-engines/enforcement-bypasses.md) — Toggles the authorization engine to permit all requests regardless of defined policies, facilitating system maintenance or testing scenarios. ([source](https://casbin.org/docs/log-error)) - [User Role Management](https://awesome-repositories.com/f/security-cryptography/identity-access-management/identity-management/user-management/user-role-management.md) — Retrieves and audits role assignments to verify user permissions within the system. ([source](https://casbin.org/docs/rolemanager-api)) - [Filtered Policy Appenders](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/filtered-policy-appenders.md) — Adds a specific subset of access rules to the existing in-memory policy set without replacing previously loaded data. ([source](https://casbin.org/docs/policy-subset-loading)) - [Lattice-Based Access Models](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/lattice-based-access-models.md) — Evaluates subject and object security levels against confidentiality and integrity policies within a multi-dimensional framework. ([source](https://casbin.org/docs/lbac)) - [Policy Set Optimizers](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/policy-set-optimizers.md) — Provides mechanisms to optimize large-scale authorization policy sets for improved performance and memory efficiency. ([source](https://casbin.org/docs/performance)) - [Sequential Policy Evaluators](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/sequential-policy-evaluators.md) — Evaluates access rules based on their sequence in the policy list to resolve conflicting permissions. ([source](https://casbin.org/docs/priority-model)) - [Weighted Policy Evaluators](https://awesome-repositories.com/f/security-cryptography/policy-based-access-control/weighted-policy-evaluators.md) — Assigns numeric weights to access rules to control which policies override others during evaluation. ([source](https://casbin.org/docs/priority-model)) ### Software Engineering & Architecture - [Request Interception Middleware](https://awesome-repositories.com/f/software-engineering-architecture/request-interception-middleware.md) — Intercepts incoming requests at the application or infrastructure layer to validate access rights before executing protected operations. - [Context-Aware Policy Engines](https://awesome-repositories.com/f/software-engineering-architecture/architectural-design-patterns/state-management/state-logic-and-utilities/context-aware-state-engines/context-aware-policy-engines.md) — Supports dynamic access decisions by passing runtime environment data into the evaluation engine. - [Data Access Filters](https://awesome-repositories.com/f/software-engineering-architecture/naming-conventions/reserved-names/access-restrictions/data-access-filters.md) — Filters access to specific records or fields based on user attributes and defined authorization policies. ([source](https://casbin.org/docs/category/use-cases)) - [Access Rule Management](https://awesome-repositories.com/f/software-engineering-architecture/access-rule-management.md) — Provides utilities for managing policy rules and role inheritance mappings to maintain access control state. ([source](https://casbin.org/docs/management-api)) - [Authorization Schemas](https://awesome-repositories.com/f/software-engineering-architecture/application-lifecycle-management/configuration-management/configuration-formats-and-schemas/authorization-schemas.md) — Maps custom field names and positions for subjects, objects, and domains to align the authorization engine with specific data structures. ([source](https://casbin.org/docs/management-api)) - [Asynchronous Authorization Execution](https://awesome-repositories.com/f/software-engineering-architecture/architectural-design-patterns/asynchronous-execution/asynchronous-authorization-execution.md) — Performs authorization tasks without blocking the main execution thread to maintain application responsiveness. ([source](https://casbin.org/docs/enforcers)) - [Authorization Event Loggers](https://awesome-repositories.com/f/software-engineering-architecture/event-logging/authorization-event-loggers.md) — Records internal operations including model loading, policy changes, and enforcement decisions to provide visibility into access control activity. ([source](https://casbin.org/docs/log-error)) ### Data & Databases - [Data Storage Adapters](https://awesome-repositories.com/f/data-databases/data-storage-adapters.md) — Connects the authorization engine to diverse persistent backends through a standardized adapter interface. - [Authorization Result Caches](https://awesome-repositories.com/f/data-databases/data-engineering-infrastructure/caching-performance/caching-strategies/query-result-caching/method-result-caches/authorization-result-caches.md) — Stores authorization results in memory to speed up future access checks and minimize processing time. ([source](https://casbin.org/docs/enforcers)) - [Persistent Storage Management](https://awesome-repositories.com/f/data-databases/persistent-storage-management.md) — Connects to external databases, cloud services, or file systems to load and save authorization models and policy rules. ([source](https://casbin.org/docs/plugins-overview)) - [Custom Matching Logic](https://awesome-repositories.com/f/data-databases/search-indexing-technologies/search-indexing/search-information-retrieval/matching-ranking-logic/custom-matching-logic.md) — Defines specialized role or resource matching functions to handle complex authorization requirements. ([source](https://casbin.org/docs/online-editor)) - [Atomic Transactions](https://awesome-repositories.com/f/data-databases/database-management-systems/database-systems-management/connection-transaction-management/atomic-transactions.md) — Groups multiple policy changes into a single atomic operation to ensure data consistency across storage updates. ([source](https://casbin.org/docs/adapters)) ### Networking & Communication - [Service Meshes](https://awesome-repositories.com/f/networking-communication/service-meshes.md) — Intercepts network requests within a service mesh architecture to verify permissions before routing traffic between microservices. ([source](https://casbin.org/docs/category/advanced-usage)) ### Business & Productivity Software - [Organization-Based Access Management](https://awesome-repositories.com/f/business-productivity-software/organization-management/organization-based-access-management.md) — Evaluates access requests by mapping subjects, actions, and objects to roles and views within specific organizational contexts. ([source](https://casbin.org/docs/orbac)) ### Development Tools & Productivity - [File Pattern Matching](https://awesome-repositories.com/f/development-tools-productivity/file-pattern-matching.md) — Registers custom functions to enable wildcard or pattern-based evaluation for user and domain names during policy enforcement. ([source](https://casbin.org/docs/rolemanager-api)) ### System Administration & Monitoring - [Enforcement Performance Monitors](https://awesome-repositories.com/f/system-administration-monitoring/performance-monitoring/enforcement-performance-monitors.md) — Tracks authorization decision latency and memory usage across project commits to ensure consistent performance. ([source](https://casbin.org/docs/benchmark)) ### Web Development - [API Integration Services](https://awesome-repositories.com/f/web-development/api-integration-services.md) — Provides middleware to bridge authorization logic with web frameworks, API gateways, and cloud-native architectures. ([source](https://casbin.org/docs/plugins-overview)) - [Resource Pattern Matchers](https://awesome-repositories.com/f/web-development/routing-systems/pattern-matching-routers/resource-pattern-matchers.md) — Matches resource paths and IP addresses against defined patterns using wildcards, regex, or CIDR blocks. ([source](https://casbin.org/docs/function))