This folder contains a full Cadurso RBAC1 implementation set in the Brazil
universe, with several actors (e.g., Sam Lowry, Tuttle) attempting to execute actions on resources (e.g., Paperwork, Ducts).
These actions are modulated based on their roles (e.g., CITIZEN, BUREAUCRAT) and the system's rules.
The conftest.py file contains the whole system's definition. Start here to see the system's definition.
We also present a single mixed RBAC+ABAC rule example here, where a Character can only perform city plumbing repairs if they are an Engineer and also carrying Form "27B/6" in their pocket.
Then, just read the tests to see the authorization system in action.
Footnotes
-
Role-based Access Control (RBAC) is an authorization model that defines access control based on roles assigned to actors. [NIST RBAC] [Wikipedia] ↩