Skip to content
/ kharon Public

Kharon is an GQL ACPM service, takes inspiration from my previous work

License

Apache-2.0, MIT licenses found

Licenses found

Apache-2.0
LICENSE-APACHE
MIT
LICENSE-MIT
5 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

simoneromano96/kharon

BranchesTags

Repository files navigation

kharon

Kharon is an GQL ACPM service, takes inspiration from my previous work.

This service is made for a Backend to Backend architecture, so it uses Basic Auth.

The passwords of the clients are not hashed.

Todos

  • Add REST interface

  • Add Paseto token support

Environment

  • APP_DATABASE_URI: the postgres database URI

  • APP_CASBIN_ACCESSMODELPATH: the access model path for Casbin, default supports RBAC/ABAC with domains

  • APP_SERVER_PORT: the port for the server to listen at

Example usage

Basic RBAC usage with domains:

# `admin` (role) can `read` `products` in the `shop1` domain
mutation addPolicy{
  addPolicy(input: {subject: "admin", action: "read", object: "products" domain: "shop1"})
}

# `user1` (user) is an `admin` in the `shop1` domain
mutation addRoleForUser{
  addRoleForUser(input: {subject: "user1", role: "admin", domain: "shop1"})
}

# Can `user1` `read` `products` of `shop1`?
query hasPermission{
  hasPermission(input: {subject: "user1", action: "read", object: "products", domain: "shop1"})
}

About

Kharon is an GQL ACPM service, takes inspiration from my previous work

Resources

Readme

License

Apache-2.0, MIT licenses found

Licenses found

Apache-2.0
LICENSE-APACHE
MIT
LICENSE-MIT
Activity

Stars

5 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

9 tags

Packages

 
 
 

Languages