Athenz is a role-based authorization (RBAC) system for provisioning and configuration (centralized authorization) use cases as well as serving/runtime (decentralized authorization) use cases.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
assembly [maven-release-plugin] prepare for next development iteration Dec 10, 2018
aws-setup [maven-release-plugin] prepare for next development iteration Dec 10, 2018
clients [maven-release-plugin] prepare for next development iteration Dec 10, 2018
containers/jetty [maven-release-plugin] prepare for next development iteration Dec 10, 2018
core [maven-release-plugin] prepare for next development iteration Dec 10, 2018
docs prepare for github pages (#604) Dec 4, 2018
examples update packages to their latest releases (#576) Oct 12, 2018
libs [maven-release-plugin] prepare for next development iteration Dec 10, 2018
rdl/rdl-gen-athenz-server [maven-release-plugin] prepare for next development iteration Dec 10, 2018
servers [maven-release-plugin] prepare for next development iteration Dec 10, 2018
travis Travis deploy update Nov 7, 2018
ui [maven-release-plugin] prepare for next development iteration Dec 10, 2018
utils [maven-release-plugin] prepare for next development iteration Dec 10, 2018
.gitignore Tenancy (#605) Dec 5, 2018
.travis.yml build with go 1.11.x (#579) Oct 15, 2018
LICENSE Initial commit Dec 31, 2016
README.md update jetty and other deps to latest releases (#602) Dec 4, 2018
athenz-checkstyle.xml Remove LineLength from checkstyle - generated code has too many warnings Feb 1, 2017
go.mod build with go 1.11.x (#579) Oct 15, 2018
go.sum build with go 1.11.x (#579) Oct 15, 2018
mkdocs.yml prepare for github pages (#604) Dec 4, 2018
pom.xml [maven-release-plugin] prepare for next development iteration Dec 10, 2018

README.md

Build Status

Athenz is a set of services and libraries supporting role-based authorization (RBAC) for provisioning and configuration (centralized authorization) use cases as well as serving/runtime (decentralized authorization) use cases. Athenz authorization system utilizes two types of tokens: Principal Tokens (N-Tokens) and RoleTokens (Z-Tokens). The name "Athenz" is derived from "Auth" and the 'N' and 'Z' tokens.

Main features


Athenz provides both the functionality of a centralized system and a certificate and IP-based distributed system to handle on-box enforcement.

You get the following advantages using Athenz:

  • Service-based security profile: Security definitions that automatically trickle down to hosts within the service.
  • Dynamic provisioning: Scale fast or move workloads around without manual intervention (IP-less configuration).
  • Single source of truth: Consolidated service profile serving various downstream security implementations, including support for non-user entities.
  • Self-Service: Real-time configuration and enforcement of resource-based access control (dynamic manageability).

More importantly, we want engineers to use Athenz and not build their own role-based access control systems that have no central store and often rely on network ACLs and manual updating.

Documentation


Contact


License


Copyright 2016 Yahoo Inc.

Licensed under the Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0