Scenarios

Step-by-step guides for common authorization patterns. Each scenario includes working code, policies, and a runnable demo.

Spring Security

Secure a Spring Boot application with attribute-based access control. Method-level enforcement with @PreEnforce and @PostEnforce, embedded PDP, reactive policies.

RAG Pipeline

Document-level access control in retrieval-augmented generation. Filter and redact retrieved content before it reaches the LLM.

MCP Tool Access

Per-tool authorization for Spring AI MCP servers. Control which tools agents can call and transform tool responses.

Human-in-the-Loop

Policy-driven approval workflows for sensitive AI operations. The policy decides when human confirmation is needed.

FastMCP (Python)

Authorize MCP tool calls, resources, and prompts inside a Python FastMCP server.

Policy Testing

Declarative policy tests with the SAPLTest DSL, coverage reporting, and CI/CD quality gates. Coming soon.

Data-Level Security

Row-level filtering with JPA, R2DBC, and MongoDB query rewriting. Transparent authorization at the data layer. Coming soon.

Multi-Language

Python (FastAPI, Django, Flask, Tornado), Node.js (NestJS, Express), and .NET integration patterns. Coming soon.

Integration Patterns

MQTT as real-time attribute source, OAuth2/JWT claims in policies, embedded vs remote PDP deployment. Coming soon.