http.authz

Caddy-authz是Caddy的授权中间件,它基于Caddy-authz:https://github.com/casbin/casbin

Casbin是一个基于Golang实现的功能强大、高效的开源访问控制库。它提供了基于ACL、RBAC、ABAC等各种模型的强制授权支持。

完整文档

示例

简单示例

  1. package main
  3. import (
  4.     "net/http"
  6.     "github.com/casbin/caddy-authz"
  7.     "github.com/casbin/casbin"
  8.     "github.com/mholt/caddy/caddyhttp/httpserver"
  9. )
  11. func main() {
  12.     // load the casbin model and policy from files, database is also supported.
  13.     e := casbin.NewEnforcer("authz_model.conf", "authz_policy.csv")
  15.     // define your handler, this is just an example to return HTTP 200 for any requests.
  16.     // the access that is denied by authz will return HTTP 403 error.
  17.     handler := authz.Authorizer{
  18.         Next: httpserver.HandlerFunc(func(w http.ResponseWriter, r *http.Request) (int, error) {
  19.             return http.StatusOK, nil
  20.         }),
  21.         Enforcer: e,
  22.     }
  23. }

使用简单的模型文件和策略文件对HTTP请求进行授权。