http.authz Plugin
Caddy-authz is an authorization middleware for Caddy, it's based on https://github.com/casbin/casbin. Casbin is a powerful and efficient open-source access control library for Golang projects. It provides support for enforcing authorization based on various models like ACL, RBAC, ABAC.
Examples
Simple Example
package main
import (
"net/http"
"github.com/casbin/caddy-authz"
"github.com/casbin/casbin"
"github.com/mholt/caddy/caddyhttp/httpserver"
)
func main() {
// load the casbin model and policy from files, database is also supported.
e := casbin.NewEnforcer("authz_model.conf", "authz_policy.csv")
// define your handler, this is just an example to return HTTP 200 for any requests.
// the access that is denied by authz will return HTTP 403 error.
handler := authz.Authorizer{
Next: httpserver.HandlerFunc(func(w http.ResponseWriter, r *http.Request) (int, error) {
return http.StatusOK, nil
}),
Enforcer: e,
}
}
Use a simple model file and policy file to do the authorization for the HTTP requests.
Related Links
Documentation
Access the full documentation for this plugin off-site:
Docs
Plugin Help
Get help from the maintainers of the http.authz plugin:
Support
Plugin Website
Visit http.authz's website for more information:
Website
This plugin is independent of the Caddy project and is not endorsed or maintained by Caddy developers. Use at your own risk. Do not file issues for this plugin on Caddy's bug tracker.