Difference between revisions of "OWASP PHPRBAC Project"

From OWASP
Jump to: navigation, search
m (Licensing: Fixed link)
(Added links to contributors list, misc edits)
Line 14: Line 14:
  
 
Welcome to PHP-RBAC OWASP page. PHP-RBAC is an attempt to make computer software more secure by making role based access control practice much easier and safer. You can visit the official website of PHP-RBAC where tutorials and documentations are available at http://phprbac.net
 
Welcome to PHP-RBAC OWASP page. PHP-RBAC is an attempt to make computer software more secure by making role based access control practice much easier and safer. You can visit the official website of PHP-RBAC where tutorials and documentations are available at http://phprbac.net
 
  
  
Line 43: Line 42:
  
 
Demo: [http://phprbac.net/demo/index.php How RBAC Works]
 
Demo: [http://phprbac.net/demo/index.php How RBAC Works]
 
 
  
  
 
== Project Leader ==
 
== Project Leader ==
  
Abbas Naderi
+
[[User:Abbas_Naderi|Abbas Naderi]]
  
  
Line 56: Line 53:
 
* [[OWASP_PHP_Security_Project|OWASP PHP Security Project]]  
 
* [[OWASP_PHP_Security_Project|OWASP PHP Security Project]]  
 
* [[WebGoatPHP|WebGoatPHP]]  
 
* [[WebGoatPHP|WebGoatPHP]]  
 
  
  
Line 64: Line 60:
  
 
* [https://sourceforge.net/projects/phprbac/files/latest/download Latest Release]
 
* [https://sourceforge.net/projects/phprbac/files/latest/download Latest Release]
 
  
  
Line 94: Line 89:
 
; Where is development and collaboration taking place?
 
; Where is development and collaboration taking place?
 
: Visit PHP-RBAC's Github Project Page: https://github.com/OWASP/rbac
 
: Visit PHP-RBAC's Github Project Page: https://github.com/OWASP/rbac
 +
  
 
= Acknowledgements =
 
= Acknowledgements =
Line 99: Line 95:
 
PHP-RBAC is developed by a worldwide team of volunteers. The primary contributors to date have been:
 
PHP-RBAC is developed by a worldwide team of volunteers. The primary contributors to date have been:
  
* Abbas Naderi, aka AbiusX
+
* [[User:Abbas_Naderi|Abbas Naderi]], aka [http://abiusx.com/ AbiusX]
 
* A team of volunteer [https://etebaran.com/ Etebaran Informatics] developers
 
* A team of volunteer [https://etebaran.com/ Etebaran Informatics] developers
* Jesse Burns, aka Burnsy, aka jburns131
+
* [[User:Jesse_Burns|Jesse Burns]], aka [http://www.jbwebware.com Burnsy], aka [https://github.com/jburns131 jburns131]
 +
 
  
 
==Others==
 
==Others==
* Aleksander, aka bblue
+
* Aleksander, aka [https://github.com/bblue bblue]
* Jeffrey N. Carre, aka bleuscyther
+
* Jeffrey N. Carre, aka [https://github.com/bleuscyther bleuscyther]
 +
 
  
 
= Road Map and Getting Involved =
 
= Road Map and Getting Involved =
As of PHP-RBAC v2-Beta, the priorities are:
+
As of PHP-RBAC v2.0-Beta, the priorities for a Stable PHP-RBAC v2.0 are:
 +
 
 
* Fix the remaining bugs on the [https://github.com/OWASP/rbac/issues?state=open Github Issue Tracker]
 
* Fix the remaining bugs on the [https://github.com/OWASP/rbac/issues?state=open Github Issue Tracker]
 
* Finish working on the v2.x Documentation
 
* Finish working on the v2.x Documentation
 +
  
 
Involvement in the development and promotion of PHP-RBAC is actively encouraged!
 
Involvement in the development and promotion of PHP-RBAC is actively encouraged!
 +
 
You do not have to be a security expert in order to contribute.
 
You do not have to be a security expert in order to contribute.
 +
 
Some of the ways you can help:
 
Some of the ways you can help:
 +
 
* Reporting Bugs
 
* Reporting Bugs
 
* Asking Questions
 
* Asking Questions
Line 120: Line 123:
 
* Tweating and Facebooking about PHP-RBAC
 
* Tweating and Facebooking about PHP-RBAC
 
* Talking about PHP-RBAC
 
* Talking about PHP-RBAC
 
  
  

Revision as of 23:09, 30 January 2014

[edit]

OWASP Project Header.jpg

OWASP PHP-RBAC

PHP-RBAC is the de-facto authorization library for PHP. It provides developers with NIST Level 2 Standard Role Based Access Control and more, in the fastest implementation yet.


Introduction

Welcome to PHP-RBAC OWASP page. PHP-RBAC is an attempt to make computer software more secure by making role based access control practice much easier and safer. You can visit the official website of PHP-RBAC where tutorials and documentations are available at http://phprbac.net


Description

PHP-RBAC is a standard NIST Level 2 Hierarchical Role Based Access Control library implemented as a library for PHP. It allows perfectly maintainable function-level access control for enterprise and small applications or even frameworks.

Since implementation of NIST Level 2 Hierarchical RBAC is quite complicated, there are very few similar libraries and most of them do not adhere to standards. PHP-RBAC is one of the fastest implementations (relying on a SQLite or MySQL backend) and has been tested in industry for more than three years.


Licensing

OWASP PHP-RBAC is free to use. It is licensed under the Creative Commons Attribution-ShareAlike 3.0 license, so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


What is PHP-RBAC?

OWASP PHP-RBAC provides:

  • NIST Level 2 Hierarchical Role Based Access Control
  • Ease Of Use
  • Speed
  • Reliability


Presentation

Demo: How RBAC Works


Project Leader

Abbas Naderi


Related Projects


Quick Download


News and Events

  • 08-31-13 - v2.0-Beta Released


Classifications

Owasp-labs-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files CODE.jpg

Where can I find out more about PHP-RBAC?
Visit PHP-RBAC's website: http://phprbac.net
Where is development and collaboration taking place?
Visit PHP-RBAC's Github Project Page: https://github.com/OWASP/rbac


Volunteers

PHP-RBAC is developed by a worldwide team of volunteers. The primary contributors to date have been:


Others


As of PHP-RBAC v2.0-Beta, the priorities for a Stable PHP-RBAC v2.0 are:


Involvement in the development and promotion of PHP-RBAC is actively encouraged!

You do not have to be a security expert in order to contribute.

Some of the ways you can help:

  • Reporting Bugs
  • Asking Questions
  • Writing Tutorials and Articles
  • Tweating and Facebooking about PHP-RBAC
  • Talking about PHP-RBAC


PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP PHPRBAC Project (home page)
Purpose: PHPRBAC is a standard NIST Level 2 Hierarchical Role Based Access Control library implemented as a library for PHP. It allows perfectly maintainable function-level access control for enterprise and small applications or even frameworks.

Since implementation of NIST Level 2 Hierarchical RBAC is quite complicated, there are very few similar libraries and most of them do not adhere to standards. PHP RBAC is one of the fastest implementations (relying on a SQLite or MySQL backend) and has been tested in industry for more than three years.

License: Creative Commons Attribution ShareAlike 3.0 License
who is working on this project?
Project Leader(s):
  • Abbas Naderi @
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: View
Key Contacts
  • Contact Abbas Naderi @ to contribute to this project
  • Contact Abbas Naderi @ to review or sponsor this project
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
PHP-RBAC v2.0-Stable - 05 March 2014 - (download)
Release description: Initial v2.x release with PSR compliant wrapper (PSR-0, PSR-1, PSR2) and automated unit tests.
Rating: Projects/OWASP PHPRBAC Project/GPC/Assessment/PHP-RBAC v2.0-Stable
last reviewed release
Not Yet Reviewed


other releases