619 repository-uri
Systems for managing user permissions and defining access levels based on assigned roles.
Distinguishing note: Focuses on the administrative assignment of roles and permissions, distinct from authentication protocols.
Explore 619 awesome GitHub repositories matching security & cryptography · Role-Based Access Control. Refine with filters or upvote what's useful.
Developer Roadmap este o platformă condusă de comunitate care oferă căi de învățare structurate, bazate pe grafuri, pentru ingineria software. Servește drept repository cuprinzător de cunoștințe unde domeniile tehnice sunt organizate în secvențe vizuale pentru a ghida dobândirea competențelor profesionale și creșterea în carieră. Proiectul se distinge printr-un ecosistem colaborativ care permite utilizatorilor să contribuie cu roadmap-uri, să cureție cele mai bune practici din industrie și să mențină profiluri profesionale. Acesta integrează framework-uri de evaluare diagnostică pentru a evalua competența tehnică, ajutând dezvoltatorii să identifice lacunele de cunoștințe și să se pregătească pentru interviurile profesionale prin secvențe de învățare țintite. Dincolo de capabilitățile sale de bază de mapare, platforma oferă idei practice de proiecte și tutorat interactiv pentru a consolida conceptele de inginerie. Oferă un spațiu centralizat pentru ca comunitatea să partajeze resurse, să urmărească dezvoltarea progresivă a competențelor și să navigheze prin peisaje tehnice complexe.
Enforces security rules at the URL or method level to control user access based on assigned roles.
vue-element-admin is a Vue.js admin dashboard template and frontend project boilerplate designed for building administrative interfaces. It functions as a single page application that integrates the Element UI component framework to provide a structured starting point for web portals. The project provides scaffolding for enterprise web applications, specifically focusing on admin dashboard development. It includes built-in support for role-based access control to manage user permissions and restrict access to specific application views. The system covers broad capabilities in frontend build
Implements user permissions and restricted page access based on assigned roles.
Stirling-PDF is a self-hosted document processing suite designed for secure, private file management. It functions as a comprehensive transformation engine that executes complex operations—such as merging, splitting, converting, and redacting documents—directly on the host machine. The platform provides both a browser-based interface for interactive editing and a programmatic, API-first architecture that allows for the automation of document workflows through standard HTTP requests. The project distinguishes itself through its focus on private, infrastructure-agnostic deployment and granular
Enforces granular security policies by validating user identity and permissions against defined roles before granting access to sensitive operations.
Netdata is a real-time infrastructure monitoring tool and multi-node observability platform. It functions as a high-resolution monitoring agent, log and metric aggregator, and time-series database designed to provide full-stack visibility into server health. The system is distinguished by its per-second metric sampling and zero-configuration auto-discovery, which allows for immediate infrastructure tracking upon installation. It utilizes edge-based machine learning and unsupervised models to detect system anomalies and abnormal metric patterns locally on each node. For distributed environment
Manages user permissions and access levels for monitoring dashboards based on assigned roles.
Superset is a web-based business intelligence platform designed for data exploration, visualization, and interactive dashboarding. It functions as a query-driven analytics engine that connects to various SQL databases, allowing users to perform ad-hoc analysis, define virtual metrics, and build complex data visualizations through a centralized interface. The platform distinguishes itself through a robust semantic layer that transforms raw database schemas into calculated columns and virtual metrics, enabling consistent business logic across an organization. It features a plugin-based visualiz
Enforces data security by mapping user identities to granular permissions and row-level filters applied to database queries.
This project is a business intelligence suite and SQL data visualization platform used for data analysis, reporting, and monitoring. It provides a web application for exploring datasets and building interactive dashboards, complemented by a web-based SQL query editor for analyzing raw data from connected stores. The platform features a semantic data layer to define standardized metrics and dimensions, ensuring consistent data interpretation across reports. It includes a security framework with role-based access control to manage user permissions and authentication across shared dashboards. T
Manages user permissions and data visibility through a structured system of roles and security markers.
Daytona is a cloud-native development environment platform designed to orchestrate ephemeral, containerized workspaces. It provides a centralized system for managing reproducible coding environments as code, ensuring consistency across distributed teams by abstracting the underlying infrastructure. By utilizing declarative configuration, the platform automates the entire lifecycle of development sandboxes, from initial provisioning to resource governance. The platform distinguishes itself through its infrastructure-agnostic runner layer, which allows development environments to be deployed ac
Manages user permissions and access levels through administrative role-based access control.
Odysseus is a self-hosted AI workspace and autonomous agent framework designed for deploying and managing large language models. It serves as a centralized platform for orchestrating agentic tasks, utilizing a model context protocol server to connect AI models to external system utilities, browser automation, and local hardware. The system distinguishes itself through a combination of retrieval-augmented generation and a RAG knowledge base, using vector stores and local embeddings to provide persistent semantic memory. It further integrates AI-driven communication management to triage email i
Restricts high-risk operations like shell access to administrator roles to ensure system security.
Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party servi
Restricts resource visibility by assigning granular administrative roles to team members.
Twenty is a headless customer relationship management framework that enables developers to build, version, and deploy custom business applications using code. By utilizing a declarative approach to data modeling, the platform allows for the definition of custom objects, fields, and complex relationships directly within the source code. This schema-driven architecture automatically generates corresponding REST and GraphQL APIs, ensuring that data structures and interface components remain synchronized across development and production environments. The platform distinguishes itself through a m
Assign roles to workspace members, API keys, and AI agents to control their access, and configure a default role for new members.
This project is an AI model API gateway and proxy server designed to provide a unified interface for interacting with diverse artificial intelligence service providers. It functions as a centralized middleware platform that routes, load balances, and translates API requests across multiple models, enabling developers to access text, image, audio, and video generation capabilities through a single, standardized integration. The gateway distinguishes itself through comprehensive administrative and financial controls, including event-driven usage accounting, real-time token consumption tracking,
Enforces hierarchical access control by assigning users to specific privilege levels.
Ant Design Pro is a comprehensive starter kit and administrative framework for building enterprise-level admin dashboards and professional user interfaces. It provides a structured project foundation and a set of React admin templates, including pre-defined layout blocks and routing configurations. The framework distinguishes itself by providing a built-in frontend mocking environment and mock-service middleware to simulate backend API responses during development. It also features integrated conversational AI components and assistant pages for embedding intelligent interactions directly into
Gates route visibility and user actions by validating credentials and permissions during application startup.
This project is an enterprise application framework designed to accelerate the construction of complex business software. It functions as a full-stack code generator that automatically produces backend logic, database operations, and frontend interface components from defined data schemas. By providing a standardized foundation for security, authentication, and administrative management, it enables developers to rapidly deploy functional, production-ready software environments. The platform distinguishes itself through its native support for multi-tenant architectures, allowing for secure dat
Enforces granular security policies by mapping user identities to specific functional permissions.
Portainer is a unified infrastructure management platform that provides a centralized control plane for deploying, monitoring, and managing containerized applications. It functions as an orchestration-abstraction layer, translating user actions into platform-specific API calls to maintain consistency across diverse container runtimes and cluster technologies. By organizing users, teams, and resources into a single interface, it enables granular role-based access control and lifecycle management for containerized services and stacks. The platform distinguishes itself through its support for di
Enforces granular user permissions and team-based policies across all managed environments.
Dokploy is a self-hosted platform-as-a-service designed to simplify the deployment and management of containerized applications and databases. It provides a centralized control plane that decouples administrative management from application workloads, allowing users to oversee infrastructure across multiple server nodes through a unified web interface or a command-line tool. The platform distinguishes itself through an extensive library of pre-configured application templates, enabling the rapid deployment of databases, identity providers, and various productivity or development tools. It sup
Allows creation of custom roles with granular permissions across system resources.
This project is a comprehensive reference collection of practical implementation examples and patterns for building applications with Spring Boot. It serves as a Java web application template and a showcase for developing functional web services featuring REST endpoints, template engines, and global exception handling. The repository distinguishes itself by providing detailed demonstrations of enterprise-grade features, including distributed locking, task scheduling, and asynchronous message exchange using brokers like RabbitMQ. It also includes reference implementations for automated API doc
Implements a role-based access control model to restrict resource access based on user permissions.
vue-vben-admin is a Vue 3 admin dashboard template and frontend development boilerplate designed for building enterprise administrative interfaces. It is structured as a TypeScript monorepo frontend, providing a pre-configured starting point for bootstrapping professional back-office applications. The project integrates a role-based access control system for dynamic routing and permission management. It utilizes the Shadcn UI component library and Tailwind CSS to provide a customizable, themed user interface. The framework includes support for internationalized web applications through multi
Controls user access to interface elements and navigation routes based on assigned roles.
This project is a comprehensive administrative dashboard framework built for the Vue ecosystem. It serves as a modular starter kit designed to accelerate the development of large-scale, enterprise-grade web applications by providing a pre-configured foundation of reusable components and standardized layout patterns. The framework distinguishes itself through a configuration-driven approach to interface development, allowing developers to generate complex forms and tables from schema definitions rather than manual coding. It integrates dynamic route generation and role-based access control, en
Enforces security by dynamically restricting navigation and functionality based on assigned user roles.
Filament is a full-stack framework for building administrative panels and management interfaces within the Laravel ecosystem. It provides a declarative, component-based architecture that allows developers to construct complex, data-driven applications using server-side configuration objects rather than manual HTML. By inspecting database model structures and relationships, the framework automates the generation of CRUD interfaces, forms, and data tables, significantly reducing boilerplate code. The project distinguishes itself through a highly modular and extensible design that supports custo
Secures administrative panels and data operations by enforcing granular authorization policies and user permissions across all interface elements.
Danswer is an LLM application framework and RAG engine that provides a self-hosted interface for connecting large language models to private data. It serves as an enterprise AI chat interface and agent orchestrator, enabling the creation of specialized assistants with custom instructions and knowledge bases. The platform differentiates itself through an observability dashboard for tracking query history and token consumption, as well as a white-labeled interface for customized branding. It includes a multi-step research workflow for producing long-form reports and a sandboxed environment for
Implements role-based access controls to secure sensitive agents and restrict actions based on user levels.