Project Cardamom - Open Source Security Project

Welcome to Project Cardamom.

Access Control or Authorization is the least understood paradigm in software security. Project Cardamom is a collection of Java libraries that aims to make it simple for projects to incorporate access control.

If you find access control to be very complicated, then you are not alone. It has a lot of permutations and combinations that make applying rules to your security decisions very difficult.

An inspiration to this project has been Cloud Entitlements as described in Context Driven Entitlements

Philosophy

The philosophy behind Project Cardamom is to externalize the access control engine from your business logic. Now your projects can include Cardamom and use its API to make access control decisions.

License

Apache License v2 (ASLv2)

How does it work?

Project Cardamom provides a very simple API to make the access control decisions. Bring in your own rules frameworks such as Drools.

Project Cardamom has the following 3 target areas:

Big Data Security
Mobile Application Security
Cloud Authorization

Mailing List

cardamom-dev AT googlegroups.com

Google Summer Of Code 2015 (GSOC)

GSOC Page

Authors and Contributors

Anil Saldhana (@anilsaldhana)