Metadata-Version: 2.1
Name: py-fortress
Version: 0.1.6
Summary: RBAC for Python 3
Home-page: https://github.com/shawnmckinney/py-fortress
Author: Symas Corporation
Author-email: smckinney@symas.com
License: Apache License 2.0
Keywords: authorization rbac security
Platform: UNKNOWN
Classifier: Development Status :: 4 - Beta
Classifier: Programming Language :: Python :: 3
Classifier: Intended Audience :: Developers
Classifier: License :: OSI Approved :: Apache Software License
Classifier: Topic :: Security
Classifier: Topic :: Software Development :: Libraries :: Application Frameworks
Classifier: Topic :: Software Development :: Libraries :: Python Modules
Requires-Python: >=3.6
Description-Content-Type: text/markdown
License-File: LICENSE

# py-fortress README

_**Fortress Role-Based Access Control**_ 
![py-fortress](images/Fortressicon.png "fortress rbac")

## Document Contents
 * Links to Install and Setup Docs
 * About py-fortress and Role-Based Access Control
________________________________
## Links to Install and Setup Docs
Located under the [doc](doc) folder and include:

|     | Link                                                                                                           | Description                      | 
|-----|:---------------------------------------------------------------------------------------------------------------|:---------------------------------| 
| 1.  | [README-BUILDING](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-BUILDING.md)             | To build the package from source |
| 2.  | [README-QUICKSTART](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-QUICKSTART.md)         | Beginners start here             | 
| 3.  | [README-LDAP-DOCKER](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-LDAP-DOCKER.md)       | Run LDAP in Docker               |
| 4.  | [README-INSTALL](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-INSTALL.md)               | Install with PyPI Package        | 
| 5.  | [README-TESTING](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-TESTING.md)               | Run the tests from source        | 
| 6.  | [README-API](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-API.md)                       | API Usage Guide                  |
| 7.  | [README-CLI](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-CLI.md)                       | CLI for RBAC Admin and Review    |  
| 8.  | [README-CLI-AUTH](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-CLI-AUTH.md)             | CLI for RBAC System Testing      | 
| 9.  | [README-UPGRADE-PYTHON](https://github.com/shawnmckinney/py-fortress/blob/master/doc/README-UPGRADE-PYTHON.md) | python-ldap dependencies         | 
_________________________________________________________________________________
## About py-fortress and Role-Based Access Control

### About py-fortress
 * Security access control APIs for the Python3 platform.
 * Requires an *LDAP* server to store the policy data. Support for a *File* backend in the works.
 * Published to PyPI as [py-fortress](https://pypi.org/project/py-fortress/).
 * Compliant with *ANSI INCITS 359* RBAC0, a.k.a "Core RBAC".    
 * Sponsored by [SYMAS](https://symas.com/)
 * Released under [Apache License 2.0](https://www.apache.org/licenses/LICENSE-2.0).

#### Links to the API Modules
The following modules have inline code docs describing the API signatures, required attributes and usages.

|   | Link                                                                              | Description                                          |  
|---|:----------------------------------------------------------------------------------|:-----------------------------------------------------|  
|1. | [access](https://github.com/shawnmckinney/py-fortress/blob/master/rbac/access.py) |create session, check access, add, drop active roles  |  
|2. | [admin](https://github.com/shawnmckinney/py-fortress/blob/master/rbac/admin.py)   |add, update, delete, assign, deassign entities        |  
|3. | [review](https://github.com/shawnmckinney/py-fortress/blob/master/rbac/review.py) |read and search entities and their relationships      |  
   
#### Related Project
We're related to the [Apache Fortress](http://directory.apache.org/fortress) Java implementation and share:
 * Data Format:
    * [Apache Fortress LDAP schema](https://github.com/apache/directory-fortress-core/blob/master/ldap/schema/fortress.schema)
 * Exception Ids:
    * [org.apache.directory.fortress.core.SecurityException](http://directory.apache.org/fortress/gen-docs/latest/apidocs/org/apache/directory/fortress/core/SecurityException.html)
 * Method names and signatures:
    * [Interface AccessMgr](http://directory.apache.org/fortress/gen-docs/latest/apidocs/org/apache/directory/fortress/core/AccessMgr.html)
    * [Interface AdminMgr](http://directory.apache.org/fortress/gen-docs/latest/apidocs/org/apache/directory/fortress/core/AdminMgr.html)
    * [Interface ReviewMgr](http://directory.apache.org/fortress/gen-docs/latest/apidocs/org/apache/directory/fortress/core/ReviewMgr.html)
 * Management interfaces. Entries created by one can be processed by the other, and can be managed using Apache Fortress' Web and Rest interfaces:
    * [Apache Fortress Web](https://github.com/apache/directory-fortress-commander)
    * [Apache Fortress Rest](https://github.com/apache/directory-fortress-enmasse)
     
The Apache Fortress Core has capabilities that py-fortress doesn't, like Hierarchical Roles (RBAC1), Static Separation of Duties (RBAC2) and Dynamic Separation of Duties (RBAC3).   
     
### About Role-Based Access Control
 ![RBAC Core](images/RbacCore.png "RBAC0 - The 'Core'")
 * Many-to-many relationship between Users, Roles and Permissions. Selective Role activation into Sessions. API to
 add, update, delete and search entity data; perform access control decisions during runtime.
 * Link to [ANSI INCITS 359 Specification](http://profsandhu.com/journals/tissec/ANSI+INCITS+359-2004.pdf) 

#### More RBAC info
 * [Intro to RBAC](http://directory.apache.org/fortress/user-guide/1-intro-rbac.html)
 * [The Seven Steps of Role Engineering](https://iamfortress.net/2015/03/05/the-seven-steps-of-role-engineering/)


