Skip to content
/ Access-Control-Prototype Public

Access Control Prototype in Prompt for user authentication, authorization and password hashing

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bobbyngo/Access-Control-Prototype

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
sample_id
sample_id
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
access_control_mechanism.py
access_control_mechanism.py
 
 
access_control_test.py
access_control_test.py
 
 
authentication_check.py
authentication_check.py
 
 
passwd.txt
passwd.txt
 
 
password_service.py
password_service.py
 
 
password_service_test.py
password_service_test.py
 
 
requirements.txt
requirements.txt
 
 
user_authentication_ui.py
user_authentication_ui.py
 
 
user_register_ui.py
user_register_ui.py
 
 
weak_passwords.txt
weak_passwords.txt
 
 

Repository files navigation

Access Control Prototype

Description

A Python app that implement access control prototype using RBAC (Role-based access control) and Access Control Matrix. The passwd.txt is acting like a database

Password policy

  • Passwords must be least 8-12 characters in length
  • Password must include at least:
    • one upper-case letter;
    • one lower-case letter;
    • one numerical digit, and
    • one special character from the set: {!, @, #, $, %, ?, ∗}
  • Passwords found on a list of common weak passwords (e.g., Password1, Qwerty123, or Qaz123wsx) must be prohibited, which are stored in weak_passwords.txt – Special Note: The list should be flexible to allow for the addition of new exclusions over time.
  • Passwords matching the format of calendar dates, license plate numbers, telephone numbers, or other common numbers must be prohibited
  • Passwords matching the user ID must be prohibited

Access Control Policy

  • Clients can view their account balance, view their investments portfolio, and view the contact details of their Financial Advisor
  • Premium Clients can modify their investment portfolio and view the contact details of their Financial Planner and Investment Analyst
  • All Finvest Holdings employees (except for Technical Support) can view a client’s account balance and investment portfolio, but only Financial Advisors, Financial Planners, and Investment Analysts can modify a client’s investment portfolio.
  • Financial Planners can view money market instruments.
  • Financial Advisors and Financial Planners can view private consumer instruments.
  • Investment Analysts can view money market instruments, derivatives trading, interest instruments, and private consumer instruments.
  • Technical Support can view a client’s information and request client account access to troubleshoot client’s technical issues.
  • Tellers can only access the system during business hours from 9:00AM to 5:00PM.
  • Compliance Officers can validate modifications to investment portfolios

Registration

Navigate to user_register_ui.py and run the program to register. If the password doesn't match the policy, error will display
image
image

Authentication

Navigate to user_authentication_ui.py and run the program to authenticate. If authenticate successful, the user access rights will display
image
image

About

Access Control Prototype in Prompt for user authentication, authorization and password hashing

Topics

python hashing access-control rbac-authorization

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages