DEV Community

ssglaser
ssglaser

Posted on

Implementing role-based access control (RBAC) in Flask

Many frameworks and libraries provide plug-ins for common authorization patterns like roles, but either don't provide enough of a model to be helpful or are so rigid that you need to migrate away from them down the line.

We just released a library that provides a configuration-based approach to adding role-based access control (RBAC) to your application. The new Oso Roles library, with support for Python + Flask, speeds up the time it takes to build fine-grained permissions using roles and related patterns. The library includes:

  • Role configuration
  • Data management
  • Enforcement
  • End-user configuration
  • Last-mile customizations

The library is in early access. Here are relevant links:

Documentation showing how to use the library to add roles to a Flask app with GitClub, our best practice example app: http://docs.osohq.com/python/guides/new-roles.html

GitClub source code: https://github.com/osohq/gitclub-sqlalchemy-flask-react

Top comments (0)