awesome-repositories.com
博客
awesome-repositories.com

通过 AI 驱动的搜索,发现最优秀的开源仓库。

探索精选搜索开源替代品自托管软件博客网站地图
项目关于排名机制媒体报道MCP 服务器
法律隐私政策服务条款
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

5 个仓库

Awesome GitHub RepositoriesAuthorization Testing

Automated verification of access control logic and permission enforcement.

Distinguishing note: Focuses on testing automation for authorization, distinct from general access control.

Explore 5 awesome GitHub repositories matching security & cryptography · Authorization Testing. Refine with filters or upvote what's useful.

Awesome Authorization Testing GitHub Repositories

用 AI 发现最棒的仓库。我们将通过 AI 为您搜索最匹配的仓库。
  • owasp/cheatsheetseriesOWASP 的头像

    OWASP/CheatSheetSeries

    32,298在 GitHub 上查看↗

    The OWASP Cheat Sheet Series is a comprehensive, community-driven repository of concise security best practices and defensive coding patterns. It serves as a centralized knowledge base for developers and security professionals, providing actionable guidance to secure applications across the entire software development lifecycle. The project covers a vast array of security domains, ranging from fundamental web application hardening and authentication protocols to specialized controls for modern infrastructure and artificial intelligence systems. What distinguishes this project is its decentral

    Provides automated verification of access control logic to ensure permissions remain correctly enforced.

    Pythonapplication-securityappsecbest-practices
    在 GitHub 上查看↗32,298
  • ory/kratosory 的头像

    ory/kratos

    13,455在 GitHub 上查看↗

    Kratos is a centralized identity and access management server designed to handle user registration, authentication, and profile management. It functions as an identity flow orchestrator, managing the state and security of authentication processes across web, mobile, and command-line interfaces. The system provides a standards-compliant authorization server that issues tokens and manages delegated access for third-party applications and internal services, supporting multi-factor authentication and custom identity schemas to secure user accounts. The project distinguishes itself through a headl

    Validates access control logic through manual API checks and automated test suites.

    Gohacktoberfestidentityidentity-management
    在 GitHub 上查看↗13,455
  • elabs/punditelabs 的头像

    elabs/pundit

    8,509在 GitHub 上查看↗

    Pundit is a Ruby authorization framework that implements policy-based access control. It maps domain models to dedicated logic classes that determine whether a user is permitted to perform specific actions on data objects. The framework utilizes plain Ruby objects to decouple authorization logic from the model. It includes mechanisms for data query scoping to filter record collections based on user permissions, as well as attribute-level permission control to restrict which specific model fields a user can modify. The system provides tools for authorization coverage verification to ensure se

    Provides a descriptive testing suite to verify that authorization policies correctly permit or forbid user actions.

    Ruby
    在 GitHub 上查看↗8,509
  • openfga/openfgaopenfga 的头像

    openfga/openfga

    4,793在 GitHub 上查看↗

    OpenFGA is a fine-grained authorization server and policy decision point that implements relationship-based access control. It serves as a centralized authorization service for evaluating access requests and managing relationship tuples across distributed microservices and multi-tenant environments. The engine combines relationship graphs with attribute-based access control, using the Common Expression Language to evaluate dynamic runtime attributes and conditional access rules. It handles complex hierarchies and nested permissions by traversing chains of associations and parent-child links t

    Imports authorization models and relationship tuples from a single test configuration file.

    Goabacauthorizationentitlements
    在 GitHub 上查看↗4,793
  • cerbos/cerboscerbos 的头像

    cerbos/cerbos

    4,460在 GitHub 上查看↗

    Cerbos is an open-source authorization service that provides a centralized, language-agnostic engine for managing access control. It functions as a policy-as-code platform, allowing teams to define, test, and distribute authorization rules using declarative YAML or JSON configurations. By decoupling access logic from application code, it enables consistent permission enforcement across diverse service stacks. The project distinguishes itself through its ability to translate high-level authorization policies into native database query filters. This capability allows applications to enforce sec

    Provides automated verification of access control logic and permission enforcement before deployment.

    Goaccess-controlauthorizationgo
    在 GitHub 上查看↗4,460
  1. Home
  2. Security & Cryptography
  3. Authorization Testing

探索子标签

  • Store BootstrappingImporting initial models and data to set up an authorization store for testing or deployment. **Distinct from Authorization Testing:** Specifically about initializing the authorization store data, not general testing automation.