Skip to content

shawnmckinney/py-fortress

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

py-fortress README

Fortress Role-Based Access Control py-fortress

Document Contents

  • Links to Install and Setup Docs
  • About py-fortress and Role-Based Access Control

Links to Install and Setup Docs

Located under the doc folder and include:

Link Description
1. README-BUILDING To build the package from source
2. README-QUICKSTART Beginners start here
3. README-LDAP-DOCKER Run LDAP in Docker
4. README-INSTALL Install with PyPI Package
5. README-TESTING Run the tests from source
6. README-API API Usage Guide
7. README-CLI CLI for RBAC Admin and Review
8. README-CLI-AUTH CLI for RBAC System Testing
9. README-UPGRADE-PYTHON python-ldap dependencies
10. TROUBLESHOOTING-GUIDE Common errors

About py-fortress and Role-Based Access Control

About py-fortress

  • Why PY-Fortress?
  • Security access control APIs for the Python3 platform.
  • Requires an LDAP server to store the policy data. Support for a File backend in the works.
  • Published to PyPI as py-fortress.
  • Compliant with ANSI INCITS 359 RBAC0, a.k.a "Core RBAC".
  • Sponsored by SYMAS
  • Released under Apache License 2.0.

Links to the API Modules

The following modules have inline code docs describing the API signatures, required attributes and usages.

Link Description
1. access create session, check access, add, drop active roles
2. admin add, update, delete, assign, deassign entities
3. review read and search entities and their relationships

Related Project

We're related to the Apache Fortress Java implementation and share:

The Apache Fortress Core has capabilities that py-fortress doesn't, like Hierarchical Roles (RBAC1), Static Separation of Duties (RBAC2) and Dynamic Separation of Duties (RBAC3).

About Role-Based Access Control

RBAC Core

  • Many-to-many relationship between Users, Roles and Permissions. Selective Role activation into Sessions. API to add, update, delete and search entity data; perform access control decisions during runtime.
  • Link to ANSI INCITS 359 Specification

More RBAC info