KeyRunes is a lightweight, self-hostable, high-performance authorization engine built in Rust. Designed for applications of all sizes with ultra-low latency.
Flexible authorization models to fit any application requirement
Role-Based Access Control with inheritance for domain and client-level control. Define roles and assign permissions efficiently.
Attribute-Based Access Control using attributes like time, location, department, or device for granular permissions.
Relationship-Based Access Control for complex permissions based on ownership, teams, groups, and hierarchies.
Designed with developers in mind for seamless integration
Write policies in YAML or Rego. Version control with Git and deploy with your existing CI/CD pipelines.
Preview policy results before applying to production. SDKs available for all major programming languages.
Comprehensive testing tools to ensure your policies work as expected before deployment.
Help us build a secure, open-source access control engine for everyone
Logo placement, sponsor badge & early access to new features.
Top visibility, strategic roadmap access, full badge pack.
Find answers to common questions about KeyRunes
The MVP is currently being designed and built. We're actively developing the core functionality and welcome community input.
KeyRunes is open-source on GitHub. We'll provide Docker images: a minimal one for small apps and a full-featured version for enterprise use.
You can submit ideas and feature requests on GitHub. We'll soon be accepting PRs for code contributions. Financial sponsorship also helps accelerate development.
Yes! Join us on Discord to connect with other developers, contribute ideas, and help shape the future of KeyRunes.
Join our growing community of developers building secure applications with KeyRunes