Skip to main content
  • Log in
  • Manage Cookies
projects.eclipse.org
Download
  • Projects
  • Working Groups
  • Members
  • Community
    • Marketplace
    • Events
    • Planet Eclipse
    • Newsletter
    • Videos
    • Blogs
  • Participate
    • Report a Bug
    • Forums
    • Mailing Lists
    • Wiki
    • IRC
    • Research
  • Eclipse IDE
    • Download
    • Learn More
    • Documentation
    • Getting Started / Support
    • How to Contribute
    • IDE and Tools
    • Newcomer Forum
  • More
      • Community

      • Marketplace
      • Events
      • Planet Eclipse
      • Newsletter
      • Videos
      • Blogs
      • Participate

      • Report a Bug
      • Forums
      • Mailing Lists
      • Wiki
      • IRC
      • Research
      • Eclipse IDE

      • Download
      • Learn More
      • Documentation
      • Getting Started / Support
      • How to Contribute
      • IDE and Tools
      • Newcomer Forum
  1. Home
  2. Projects
  3. Eclipse IoT
  4. Eclipse Keti

Eclipse Keti

Primary tabs

  • Overview(active tab)
  • Downloads
  • Who's Involved
  • Developer Resources
  • Governance
  • Contact Us

Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC).

The solution itself is implemented as a cloud-native RESTful API that adheres to the guiding principles of the twelve factor app. Key characteristics of the service include:

  • Central management of policies and privileges
  • The ability to manage hierarchical privileges (e.g. sub-groups) and scoped privileges (e.g. assigning elevated privileges based on the resource accessed)
  • A policy format tailored for developers who build RESTful APIs
  • An access control decision engine

Spring Boot is the primary framework that Keti is built on. Additionally Keti uses the following open source libraries:

  • JanusGraph, an implementation of Apache TinkerPop, for it's graph data structure
  • Jedis as a Redis client for caching
  • Spring Security to protect it's API
  • Spring Data JPA for persistence to RDBMS

An operator deploys Keti in the same datacenter where the web services it protects are deployed. Either a common gateway, or the web service itself, sends requests for authorized access to Keti and enforces the decision received in the response. When deployed, Keti typically has the following service dependencies.

  • UAA as an OAuth server
  • Redis (optional) for decision caching
  • Cassandra through JanusGraph for graph persistence
  • PostgreSQL, or H2 as a RDBMS

Below is a basic diagram of how Keti fits in the interaction between web application and web service.

Licenses: 
Apache License, Version 2.0
Eclipse Distribution License 1.0 (BSD)
Latest Releases: 

From May 15th, 2019 to May 15th, 2019

NameDateReview
5.0.62019-05-15
Contribution Activity: 
Commits on this project (last 12 months).
Incubating - Eclipse Keti

Project Links

  • Getting Started
  • Documentation

Related Projects

Project Hierarchy:

  • Eclipse IoT
  • Eclipse Keti

Tags

Technology Types
  • Internet of Things
  • Runtime
Build Technologies
  • Jenkins

Eclipse Foundation

  • About Us
  • Contact Us
  • Donate
  • Members
  • Governance
  • Code of Conduct
  • Logo and Artwork
  • Board of Directors

Legal

  • Privacy Policy
  • Terms of Use
  • Copyright Agent
  • Eclipse Public License
  • Legal Resources

Useful Links

  • Report a Bug
  • Documentation
  • How to Contribute
  • Mailing Lists
  • Forums
  • Marketplace

Other

  • IDE and Tools
  • Projects
  • Working Groups
  • Research@Eclipse
  • Report a Vulnerability
  • Service Status

Copyright © Eclipse Foundation. All Rights Reserved.

Back to the top