evansims/openfga-php

Stop writing authorization logic. Start asking questions. OpenFGA high performance relationship-based access control for PHP.

Maintainers

Details

github.com/evansims/openfga-php

Homepage

Source

Issues

Documentation

Installs: 8

Dependents: 0

Suggesters: 0

Security: 0

Stars: 7

Watchers: 4

Forks: 0

Open Issues: 1

v1.5.0 2025-06-22 02:11 UTC

Requires

Requires (Dev)

Suggests

Apache-2.0 86dff78aab88650db8134f41000bef15aea4a828

authorizationsecurityAuthenticationpermissionsrbacaccess-controlabacobservabilityopentelemetryopenfgafine-grained-authorizationrelationship-based-access-controlzanzibarauth0-fgapolicy-engine

This package is auto-updated.

Last update: 2025-06-24 04:50:37 UTC

README

OpenFGA PHP SDK

codecov Psalm Type Coverage

Stop writing authorization logic. Start asking questions.

composer require evansims/openfga-php


Every app needs permissions. Most developers end up with authorization logic scattered across controllers, middleware, and business logic. Changes break things. New features require touching dozens of files.

OpenFGA solves this. Define your authorization rules once, query them anywhere. This SDK provides a modern PHP interface to OpenFGA and Auth0 FGA.


Installation

composer require evansims/openfga-php


Quickstart

use OpenFGA\Client;
use function OpenFGA\{allowed, tuple};

$client = new Client(url: 'http://localhost:8080');

// Instead of scattered if statements in your controllers:
if ($user->isAdmin() || $user->owns($document) || $user->team->canEdit($document)) {
    // ...
}

// Ask OpenFGA:
$canEdit = allowed(
    client: $client,
    store: 'my-store',
    model: 'my-model',
    tuple: tuple('user:alice', 'editor', 'document:readme')
);

// Zero business logic coupling. Pure authorization.

See the documentation to get started.


Contributing

Contributions are welcome—have a look at our contributing guidelines.