Documentation - SAPL

SAPLStreaming Attribute Policy Language

Home Get Started Docs

Guides

Performance

Engine Comparison SAPL vs Cedar, OPA, OpenFGA, Cerbos Benchmarks Throughput, latency, and scaling to 10,000 policies

AI Security

RAG Pipeline Document-level access control for retrieval-augmented generation AI Tool Authorization Per-tool authorization for Spring AI applications Human-in-the-Loop Policy-driven approval workflows for sensitive operations MCP Server Authorization Authorize tools, resources, and prompts in MCP servers

Spring Security

Spring Boot ABAC Method-level enforcement with @PreEnforce and @PostEnforce

Streaming Authorization

Streaming Decisions Real-time authorization with PIPs, dynamic obligations, enforcement modes

Policy Testing

SAPLTest DSL Decision-based testing, coverage reports, CI/CD quality gates

Policy Operations

Ship Policies Like Code Git, CI, signing, remote bundles, Prometheus, structured logging

Data-Level Security

Data-Level Security Argument transformation, content filtering, database query rewriting

Multi-Framework

Spring, Python, Node.js, .NET Same policies, same test suite, 7 frameworks View all guides

Media Playground Support GitHub Discord

Release 4.1.1

Release 4.1.0

Release 4.0.0

Release 3.0.0

Release 2.0.1

Imprint · Privacy Policy