GitHub Repository

Production-ready Role-Based Access Control (RBAC) library for Python with role hierarchy, wildcard permissions, ABAC support, and interactive Streamlit UI. Battle-tested with 100% test coverage.

1 starsPython

RBAC Algorithm – Pure Python, hybrid RBAC+ABAC, pluggable storage

Name: RBAC Algorithm – Pure Python, hybrid RBAC+ABAC, pluggable storage
Availability: InStock
Author: maneeshthakur

by maneeshthakur·Feb 23, 2026·1 point·0 comments

Visit Project View on HN

AI Analysis

●Mid

RBAC library with 95% test coverage, but python-authz and Keycloak dominate.

Strengths

•Zero dependencies, role hierarchy + wildcard permissions + ABAC in one API; 121 passing tests with property-based testing and SonarQube A rating
•Interactive Streamlit UI and interactive docs with live playground for learning RBAC patterns

Weaknesses

•Authorization is a solved problem: python-authz, Keycloak, OPA, and enterprise platforms handle this; no clear technical or architectural advantage
•Benchmarks (10K checks/sec) are table stakes, not a differentiator; adoption hinges on Django/FastAPI ecosystem adoption

Post Description

I Built an Enterprise-Grade RBAC Library in Pure Python — Here's What It Can Do

Access control is one of those things every app needs but almost no one gets right the first time. Roles mushroom, permissions sprawl, and the next thing you know your "admin" check is a 200-line switch statement.

I spent the last few weeks building *RBAC Algorithm* — a clean, zero-dependency Python library that handles Role-Based and Attribute-Based Access Control in a single, composable API.