bankacl

Bankacl is an open-source authorization framework intended for banking and financial-technology software. It provides a policy-driven approach to access control across complex, multi-tenant banking environments, enabling consistent permissions for people, services, and APIs. Bankacl supports both role-based access control (RBAC) and attribute-based access control (ABAC), allowing administrators to express permissions in terms of roles, attributes, and contextual factors such as time, location, or transaction risk.

Its architecture centers on a policy decision point (PDP) and policy enforcement point (PEP) connected to an

Bankacl offers connectors for identity providers (LDAP/Active Directory, SSO), token-based authentication (OAuth2/JWT), and REST APIs. It

Development and governance: Bankacl is maintained by an open-source community of contributors and is distributed under