Skip to content
nest.js with casbin auth Nest.js RBAC ABAC 权限管理
Branch: master
Clone or download
Latest commit cc55002 May 20, 2019
Type Name Latest commit message Commit time
Failed to load latest commit information.
src chore(*): add authorization middleware Feb 19, 2019
.gitignore Initial commit Feb 18, 2019
.snyk fix: .snyk & package.json to reduce vulnerabilities May 6, 2019
LICENSE Initial commit Feb 18, 2019 Update Feb 21, 2019
nodemon-debug.json Initial commit Feb 19, 2019
nodemon.json Initial commit Feb 19, 2019
package.json Update nest monorepo to v6.2.2 May 19, 2019
renovate.json Add renovate.json May 11, 2019 Initial commit Feb 19, 2019
yarn.lock Update nest monorepo to v6.2.2 May 19, 2019

Supported models

  1. ACL (Access Control List)
  2. ACL with superuser
  3. ACL without users: especially useful for systems that don't have authentication or user log-ins.
  4. ACL without resources: some scenarios may target for a type of resources instead of an individual resource by using permissions like write-article, read-log. It doesn't control the access to a specific article or log.
  5. RBAC (Role-Based Access Control)
  6. RBAC with resource roles: both users and resources can have roles (or groups) at the same time.
  7. RBAC with domains/tenants: users can have different role sets for different domains/tenants.
  8. ABAC (Attribute-Based Access Control): syntax sugar like resource.Owner can be used to get the attribute for a resource.
  9. Graphql support .
  10. Deny-override: both allow and deny authorizations are supported, deny overrides the allow.
  11. Priority: the policy rules can be prioritized like firewall rules.

Get started

  1. npm install
  2. npm start
You can’t perform that action at this time.