This project provides an implementation of the PEP/PDP/PIP/PAP access control pattern. The implementation is in Java. For the moment it implements an XACML PDP. It provides a web based user interface to manage users, roles, actions, assign actions to roles, and assign users to roles.
Clone or download
Pull request Compare This branch is 4 commits behind cetic:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
doc
rbac-man.core
rbac-man.datasource
rbac-man.filter
rbac-man.frontend
rbac-man.services
rbac-man.webapp
.gitignore
LICENSE
README.md
pom.xml

README.md

rbac-man

This project provides an implementation of the PEP/PDP/PIP/PAP access control pattern. The implementation is in Java. For the moment it implements an XACML PDP. It provides a web based user interface to manage users, roles, actions, assign actions to roles, and assign users to roles.

Architecture

rbac-man architecture

Interface

rbac-man offers a management interface with CRUD operations on its entities (user, rule, actions, ...), rule testing and logs.

rbac-man test interface

Sequence diagram

rbac-man sequence diagram

Secure Logger

rbac-man secure logger

Log ontology

rbac-man log ontology

Notes

Draw.io sources can be found in doc/ folder