Open Source, Google Zanzibar-inspired database for scalably storing and querying fine-grained authorization data

An open-source authorization as a service inspired by Google Zanzibar, designed to build and manage fine-grained and scalable authorization systems for any application.

A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar

Warrant is a highly scalable, centralized authorization service based on Google Zanzibar. Use it to define, enforce, query, and audit application authorization and access control.

Cloud-native authorization for modern applications and APIs

Keycloak integration with OpenFGA (based on Zanzibar) for Fine-Grained Authorization at Scale (ReBAC)

🔐 Lightning fast, global scale authorization service without the overhead of a yet another DSL.

Google's Zanzibar paper annotated for folks outside of Google

🔏 Authorization framework for implementing Relation-based Access Control (ReBAC) with the Resolver (Inspired by GraphQL)

EACL: Enterprise Access ControL is a SpiceDB-compatible ReBAC Authorization system built in Clojure and backed by Datomic

Secure access to the Kubernetes API using SpiceDB

Permissions for Killer Apps

A simple ReBAC / Zanzibar gem for Rails apps

Stop writing authorization logic. Start asking questions. OpenFGA high performance relationship-based access control for PHP.

VS Code extension adding SpiceDB syntax highlighting, linting, and more

A curated list of awesome providers, services and resources for Zanzibar, the global authorization system.

command line interface for Permify

⚔️ A modern, attribute-aware access control engine written in Rust. Supports RBAC, ABAC, ReBAC, PBAC, and fine-grained multi-tenant policies. Built to rival Keycloak's authorization module.

EACL: Enterprise Access ControL is a SpiceDB-compatible ReBAC authorization library built in Clojure and backed by Datomic

A secure chat app built with React, Firebase, and Permit.io, featuring real-time ReBAC for role-based permissions in chat rooms.