Guides

Step-by-step guides for common authorization patterns. Each guide includes working code, policies, and a runnable demo.

Spring Security

Secure a Spring Boot application with attribute-based access control. Method-level enforcement with @PreEnforce and @PostEnforce, embedded PDP, reactive policies.

RAG Pipeline

Document-level access control in retrieval-augmented generation. Filter and redact retrieved content before it reaches the LLM.

AI Tool Authorization

Per-tool authorization for Spring AI applications. Control which tools agents can call and transform tool responses.

Human-in-the-Loop

Policy-driven approval workflows for sensitive AI operations. The policy decides when human confirmation is needed.

MCP Server Authorization

Authorize MCP tool calls, resources, and prompts inside MCP servers.

Policy Operations

Ship policies like you ship code. Git versioning, automated testing with coverage gates, Ed25519 bundle signing, remote polling, Prometheus metrics, structured logging.

Multi-Framework

Same policies, same behavior, any stack. Spring, Flask, FastAPI, Django, Tornado, NestJS, and .NET all pass the same 28-endpoint test suite.