PHPackages xillion/authorization - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Authentication & Authorization](/categories/authentication) 4. / 5. xillion/authorization ActiveLibrary[Authentication & Authorization](/categories/authentication) xillion/authorization ===================== Xillion Authorization Policy Framework for PHP v1.0.0(10y ago)313MITPHP Since Jan 29Pushed 10y ago2 watchersCompare [ Source](https://github.com/xillion-project/authorization)[ Packagist](https://packagist.org/packages/xillion/authorization)[ Docs](https://github.com/xillion-project/authorization)[ RSS](/packages/xillion-authorization/feed)WikiDiscussions master Synced 2mo ago READMEChangelog (1)Dependencies (2)Versions (2)Used By (0) Xillion Authorization Policy Framework ====================================== [](#xillion-authorization-policy-framework) [![](https://camo.githubusercontent.com/18e9bddeee18f867dc15295a58b931ade4fd84f78b6598def944a745ff744ab5/68747470733a2f2f732e79696d672e636f6d2f65612f696d672f2d2f3135303630342f63796e69635f31616d763869642d31616d76386a662e6a7067)](https://camo.githubusercontent.com/18e9bddeee18f867dc15295a58b931ade4fd84f78b6598def944a745ff744ab5/68747470733a2f2f732e79696d672e636f6d2f65612f696d672f2d2f3135303630342f63796e69635f31616d763869642d31616d76386a662e6a7067) What is Xillion Authorization? ------------------------------ [](#what-is-xillion-authorization) Xillion Authorization is an Authorization Policy Framework based on Amazon's IAM and Resource policies. It allows for decentralized, highly flexible security access control. This is work in progress. See `test/` for examples of usage. Example usage: -------------- [](#example-usage) ``` use Xillion\Core\Resource; use Xillion\Authorization\Action; use Xillion\Authorization\PolicySerializer\JsonPolicySerializer; use Xillion\Authorization\PolicyLoader\JsonPolicyLoader; // The authorization context keeps track of policies, and can perform authorization checks $context = new Context(); // What action is going to be performed? $action = new Action('s3', 'ListBucket'); // Who is going to perform the action? $identity = new Identity('AWS', 'xrn:aws:iam::AWS-account-ID:user/bob'); // What resource is the action going to be performed on? $resource = new Resource('xrn:aws:s3:eu-west-1:12345:some-bucket'); // Load policies from a file $loader = new JsonPolicyLoader(); $policy = $loader->load(__DIR__ . '/resource-policy1.json'); // Add the loaded policy to the context $context->addResourcePolicy($resource, $policy); // Check if the identity is allowed to perform the action on the resource if ($context->isAllowed($identity, $resource, $action))) { echo "Action is allowed on this resource by this identity"; } else { echo "Action is denied on this resource by this identity"; } ``` License ------- [](#license) MIT (see [LICENSE](LICENSE)) Brought to you by the LinkORB Engineering team ---------------------------------------------- [](#brought-to-you-by-the-linkorb-engineering-team) [![](https://camo.githubusercontent.com/62fb66b034de7ea7fca9fd9776424b5348daa76ef8622caf92c2f7622003e5ef/687474703a2f2f7777772e6c696e6b6f72622e636f6d2f642f6d6574612f74696572312f696d616765732f6c696e6b6f7262656e67696e656572696e672d6c6f676f2e706e67)](https://camo.githubusercontent.com/62fb66b034de7ea7fca9fd9776424b5348daa76ef8622caf92c2f7622003e5ef/687474703a2f2f7777772e6c696e6b6f72622e636f6d2f642f6d6574612f74696572312f696d616765732f6c696e6b6f7262656e67696e656572696e672d6c6f676f2e706e67) Check out our other projects at [linkorb.com/engineering](http://www.linkorb.com/engineering). Btw, we're hiring! ### Health Score 28 — LowBetter than 54% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity9 Limited adoption so far Community8 Small or concentrated contributor base Maturity63 Established project with proven stability Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Unknown Total 1 Last Release 3760d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/1db66b320db18b8036ea68211b7d8a39e7c6da97e6fd29f59a50380ebb69d0bb?d=identicon)[joostfaassen](/maintainers/joostfaassen) --- Top Contributors [![joostfaassen](https://avatars.githubusercontent.com/u/411113?v=4)](https://github.com/joostfaassen "joostfaassen (2 commits)") --- Tags securityauthorizationPolicyarnxrn ### Code Quality TestsPHPUnit ### Embed Badge ![Health badge](/badges/xillion-authorization/health.svg) ``` [![Health](https://phpackages.com/badges/xillion-authorization/health.svg)](https://phpackages.com/packages/xillion-authorization) ``` ### Alternatives [lusitanian/oauth PHP 7.2 oAuth 1/2 Library 1.1k23.2M121](/packages/lusitanian-oauth)[jms/security-extra-bundle Enhances the Symfony2 Security Component by adding several new features 2628.1M59](/packages/jms-security-extra-bundle)[efficiently/authority-controller AuthorityController is an PHP authorization library for Laravel 5 which restricts what resources a given user is allowed to access. 15533.2k](/packages/efficiently-authority-controller)[matricali/akamai-token-auth This library provides necessary logic to generate Akamai edge authorization token and signed URL. 111.2M](/packages/matricali-akamai-token-auth)[oryzone/oauth-user-data Extension library for Lusitanian/PHPoAuthLib to extract user profile data from various oAuth providers 4558.6k](/packages/oryzone-oauth-user-data)[and/oauth Simple and amazing OAuth library with many providers. Just try it out! 4645.2k2](/packages/and-oauth) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)