Documentation - SAPL

SAPLStreaming Attribute Policy Language

Home Get Started Docs

Guides

AI Security

RAG Pipeline Document-level access control for retrieval-augmented generation AI Tool Authorization Per-tool authorization for Spring AI applications Human-in-the-Loop Policy-driven approval workflows for sensitive operations MCP Server Authorization Authorize tools, resources, and prompts in MCP servers

Spring Security

Spring Boot ABAC Method-level enforcement with @PreEnforce and @PostEnforce

Streaming Authorization

Streaming Decisions Real-time authorization with PIPs, dynamic obligations, enforcement modes

Policy Testing

SAPLTest DSL Decision-based testing, coverage reports, CI/CD quality gates

Policy Operations

Ship Policies Like Code Git, CI, signing, remote bundles, Prometheus, structured logging

Data-Level Security

Data-Level Security Argument transformation, content filtering, database query rewriting

Multi-Framework

Spring, Python, Node.js, .NET Same policies, same test suite, 7 frameworks View all guides

Media Playground Support GitHub Discord

Development Snapshot 4.0.0-SNAPSHOT

Release 3.0.0

Release 2.0.1

Imprint · Privacy Policy