Skip to content

README.md

Latest commit

 

History

History
47 lines (40 loc) · 2.73 KB

README.md

File metadata and controls

47 lines (40 loc) · 2.73 KB

Access Control Prototype

Description

A Python app that implement access control prototype using RBAC (Role-based access control) and Access Control Matrix. The passwd.txt is acting like a database

Password policy

  • Passwords must be least 8-12 characters in length
  • Password must include at least:
    • one upper-case letter;
    • one lower-case letter;
    • one numerical digit, and
    • one special character from the set: {!, @, #, $, %, ?, ∗}
  • Passwords found on a list of common weak passwords (e.g., Password1, Qwerty123, or Qaz123wsx) must be prohibited, which are stored in weak_passwords.txt – Special Note: The list should be flexible to allow for the addition of new exclusions over time.
  • Passwords matching the format of calendar dates, license plate numbers, telephone numbers, or other common numbers must be prohibited
  • Passwords matching the user ID must be prohibited

Access Control Policy

  • Clients can view their account balance, view their investments portfolio, and view the contact details of their Financial Advisor
  • Premium Clients can modify their investment portfolio and view the contact details of their Financial Planner and Investment Analyst
  • All Finvest Holdings employees (except for Technical Support) can view a client’s account balance and investment portfolio, but only Financial Advisors, Financial Planners, and Investment Analysts can modify a client’s investment portfolio.
  • Financial Planners can view money market instruments.
  • Financial Advisors and Financial Planners can view private consumer instruments.
  • Investment Analysts can view money market instruments, derivatives trading, interest instruments, and private consumer instruments.
  • Technical Support can view a client’s information and request client account access to troubleshoot client’s technical issues.
  • Tellers can only access the system during business hours from 9:00AM to 5:00PM.
  • Compliance Officers can validate modifications to investment portfolios

Registration

Navigate to user_register_ui.py and run the program to register. If the password doesn't match the policy, error will display
image
image

Authentication

Navigate to user_authentication_ui.py and run the program to authenticate. If authenticate successful, the user access rights will display
image
image