OWASP PHPRBAC Project
PHP-RBAC is the de-facto authorization library for PHP. It provides developers with NIST Level 2 Standard Role Based Access Control and more, in the fastest implementation yet.
Welcome to PHP-RBAC OWASP page. PHP-RBAC is an attempt to make computer software more secure by making role based access control practice much easier and safer. You can visit the official website of PHP-RBAC where tutorials and documentations are available at http://phprbac.net
PHP-RBAC is a standard NIST Level 2 Hierarchical Role Based Access Control library implemented as a library for PHP. It allows perfectly maintainable function-level access control for enterprise and small applications or even frameworks.
Since implementation of NIST Level 2 Hierarchical RBAC is quite complicated, there are very few similar libraries and most of them do not adhere to standards. PHP-RBAC is one of the fastest implementations (relying on a SQLite or MySQL backend) and has been tested in industry for more than three years.
OWASP PHP-RBAC is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.
What is PHP-RBAC?
OWASP PHP-RBAC provides:
Demo: How RBAC Works
News and Events
- Q1 - Where can I find out more about PHP-RBAC?
- A1 - Visit PHP-RBAC's website: http://phprbac.net
- Q2 - Where is development and collaboration taking place?
- A2 - Visit PHP-RBAC's Github Project Page: https://github.com/OWASP/rbac
PHP-RBAC is developed by a worldwide team of volunteers. The primary contributors to date have been:
- Abbas Naderi, aka AbiusX
- A team of volunteer Etebaran Informatics developers
- Jesse Burns, aka Burnsy, aka jburns131
- Aleksander, aka bblue
- Jeffrey N. Carre, aka bleuscyther
As of PHP-RBAC v2-Beta, the priorities are:
- Fix the remaining bugs on the Github Issue Tracker
- Finish working on the v2.x Documentation
Involvement in the development and promotion of PHP-RBAC is actively encouraged! You do not have to be a security expert in order to contribute. Some of the ways you can help:
- Reporting Bugs
- Asking Questions
- Writing Tutorials and Articles
- Tweating and Facebooking about PHP-RBAC
- Talking about PHP-RBAC
| PROJECT INFO
What does this OWASP project offer you?
| RELEASE(S) INFO|
What releases are available for this project?