The authentication glue you need.

Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)

A generic, spec-compliant, thorough implementation of the OAuth request-signing logic

Awesome Django authorization, without the database

Python Client for Supabase. Query Postgres from Flask, Django, FastAPI. Python user authentication, security policies, edge functions, file storage, and realtime data streaming. Good first issue.

An authorization library that supports access control models like ACL, RBAC, ABAC in Python

A tool to scan Kubernetes cluster for risky permissions

Simple yet powerful authorization / authentication client library for Python web applications.

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

Python Social Auth - Core

Ready-to-use and customizable Authentications and Oauth2 management for FastAPI ✨

Passwordless Auth for Django REST Framework

FastAPI extension that provides JWT Auth support (secure, easy to use, and lightweight)

A Security Framework for Python applications featuring Authorization (rbac permissions and roles), Authentication (2fa totp), Session Management and an extensive Audit Trail

Create a centralized Authentication and Authorization token server. Easily secure FastAPI endpoints based on Users, Groups, Roles or Permissions with very little database usage.

Declarative access policies/permissions modeled after AWS' IAM policies.

Access, a centralized portal for employees to transparently discover, request, and manage their access for all internal systems needed to do their jobs

A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it significantly reduces the false positive rate and improves the efficiency of vulnerability detection.

drf-social-oauth2 makes it easy to integrate Django social authentication with major OAuth2 providers, i.e., Facebook, Twitter, Google, etc.