Skip to content
/ cavlang Public

cavlang is a small library for parsing and evaluating Macaroon-style caveats

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kelbyludwig/cavlang

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
caveats.py
caveats.py
 
 
requirements-dev.txt
requirements-dev.txt
 
 
requirements.txt
requirements.txt
 
 
test_caveats.py
test_caveats.py
 
 

Repository files navigation

cavlang

cavlang is a small library for parsing and evaluating Macaroon-style caveats. Some caveats you can express in cavlang:

username = alice

object_id = 17

current_time <= 1555187389

operation in [read, write]

example usage

import time
from caveats import evaluate

# create a caveat requiring a username to be alice
username_caveat = 'username = alice'
# create a caveat requiring a token is used before a certain time
expiry_caveat = 'time < %d' % (int(time.time()) + 10)
# create a caveat requiring a read or write action
action_caveat = 'action in [read write]'

# a sample context generated as a result of some action
context = {
    'time': int(time.time()),
    'username': 'alice',
    'action': 'read',
}

# evaluate each caveat in the context. all should be true!
assert(evaluate(context, username_caveat))
assert(evaluate(context, expiry_caveat))
assert(evaluate(context, action_caveat))
print('done!')

About

cavlang is a small library for parsing and evaluating Macaroon-style caveats

Topics

credentials authorization macaroons

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages