Ketoz is a microservice that extends Ory Keto to provide fine-grained, hierarchical role-based access control (HRBAC) for modern applications. It enables flexible permission management and scalable authorization policies.
- Hierarchical roles and permissions
- Fine-grained access control
- RESTful APIs
- Pull the Docker image:
docker pull kimnguyenlong/ketoz:latest
- Run the service:
docker run -d \ --name ketoz \ --env-file /path/to/.env \ -p 8000:8000 \ kimnguyenlong/ketoz:latest
To enable Ketoz to function correctly, you must apply the OPL from the keto/namespaces.ts file to your Keto instance. This ensures that the required namespaces and permission structures are available for the service.
Ketoz loads its configuration from environment variables at startup.
# Service
SERVICE_HOST=0.0.0.0
SERVICE_PORT=8000
SERVICE_LOG_LEVEL=DEBUG
# Keto
KETO_HOST=keto
KETO_READ_PORT=4466
KETO_WRITE_PORT=4467Ketoz exposes a RESTful API for managing roles, permissions, and access policies. See the API documentation for detailed endpoints and request/response formats.
This project is licensed under the MIT License. See the LICENSE file for details.