Contributing to RBAC Algorithm
Thank you for your interest in contributing! This guide will help you get started.
Ways to Contribute
- 🐛 Report bugs - Help us identify and fix issues
- 💡 Suggest features - Share ideas for improvements
- 📝 Improve documentation - Fix typos, add examples, clarify concepts
- 💻 Submit code - Bug fixes, features, tests
- 🌐 Add language adapters - Implement protocol in new languages
Getting Started
1. Fork & Clone
# Fork the repository on GitHub
# Then clone your fork
git clone https://github.com/YOUR_USERNAME/rbac-algorithm.git
cd rbac-algorithm
2. Set Up Development Environment
# Create virtual environment (Python)
python -m venv venv
source venv/bin/activate # On Windows: venv\Scripts\activate
# Install development dependencies
pip install -e ".[dev]"
# Install pre-commit hooks
pre-commit install
3. Create a Branch
git checkout -b feature/your-feature-name
# or
git checkout -b fix/your-bug-fix
Development Guidelines
Code Style
We follow industry-standard code styles:
Python:
- PEP 8 compliant
- Type hints for all functions
- Docstrings (Google style)
- Black formatter
- isort for imports
def check_permission(
self,
user_id: str,
action: str,
resource_id: str,
*,
domain: Optional[str] = None
) -> AuthorizationResult:
"""Check if user has permission to perform action.
Args:
user_id: Unique identifier of the user
action: Action to perform (read, write, delete, etc.)
resource_id: Unique identifier of the resource
domain: Optional domain for multi-tenancy
Returns:
AuthorizationResult with allowed status and details
Raises:
UserNotFoundError: If user doesn't exist
ResourceNotFoundError: If resource doesn't exist
"""
pass
JavaScript:
- ESLint + Prettier
- JSDoc comments
- ES6+ features
Testing
All code must include tests:
# Run tests
pytest
# With coverage
pytest --cov=rbac --cov-report=html
# Run specific test
pytest tests/test_rbac.py::TestRBAC::test_check_permission
Test Requirements:
- Unit tests for new functions
- Integration tests for workflows
- Edge cases covered
- Minimum 80% coverage
Documentation
Update documentation when you:
- Add new features
- Change APIs
- Fix bugs that affect usage
# Build docs locally
cd docs
npm install
npm start
Pull Request Process
1. Before Submitting
- ✅ Tests pass locally
- ✅ Code formatted (black, isort)
- ✅ Documentation updated
- ✅ Commit messages clear
- ✅ No merge conflicts
2. Create Pull Request
Title Format:
feat: Add role hierarchy visualizationfix: Resolve circular dependency detection bugdocs: Update ABAC examplestest: Add integration tests for multi-tenancy
Description Template:
## Description
Brief description of changes
## Motivation
Why is this change needed?
## Changes
- Change 1
- Change 2
## Testing
How was this tested?
## Checklist
- [ ] Tests pass
- [ ] Documentation updated
- [ ] CHANGELOG.md updated
3. Code Review
- Address reviewer feedback
- Keep discussion constructive
- Update based on suggestions
- Don't take it personally - we're all learning!
4. Merge
Once approved, maintainers will merge your PR.
Development Workflow
Adding a New Feature
- Discuss first - Open an issue to discuss
- Design - Write design doc for large features
- Implement - Write code + tests
- Document - Update docs
- Submit - Create PR
Fixing a Bug
- Reproduce - Write failing test
- Fix - Make test pass
- Verify - Ensure no regressions
- Document - Update if needed
- Submit - Create PR
Adding Language Adapter
- Protocol compliance - Implement all protocols
- Idiomatic - Follow language conventions
- Tests - Comprehensive test suite
- Docs - Language-specific guide
- Examples - Working code samples
Project Structure
rbac-algorithm/
├── src/rbac/ # Python implementation
│ ├── core/ # Core models and protocols
│ ├── storage/ # Storage implementations
│ ├── engine/ # Authorization engine
│ └── rbac.py # Main API
├── tests/ # Test suite
├── docs/ # Documentation site
├── examples/ # Example applications
├── ARCHITECTURE.md # Architecture documentation
├── PROTOCOL.md # Protocol specifications
└── README.md # Project overview
Coding Conventions
Python
# Good
def get_user_permissions(user_id: str) -> List[Permission]:
"""Get all permissions for a user."""
pass
# Bad
def get_perms(uid):
pass
Naming
- Functions:
verb_noun()-check_permission(),get_user_roles() - Classes:
PascalCase-AuthorizationEngine,MemoryStorage - Constants:
UPPER_SNAKE_CASE-DEFAULT_TIMEOUT,MAX_RETRIES - Private:
_prefix-_validate_user(),_cache
Error Handling
# Good - Specific exceptions
raise UserNotFoundError(f"User {user_id} does not exist")
# Bad - Generic exceptions
raise Exception("User not found")
Type Hints
# Always use type hints
def check_permission(
self,
user_id: str,
action: str,
resource_id: str
) -> AuthorizationResult:
pass
Communication
GitHub Issues
- Search existing issues first
- Use issue templates
- Provide reproduction steps for bugs
- Include version information
Pull Request Reviews
- Be respectful and constructive
- Explain reasoning behind suggestions
- Accept that there are multiple solutions
- Focus on the code, not the person
Discussions
- Use GitHub Discussions for questions
- Help others when you can
- Share use cases and patterns
Recognition
Contributors are recognized in:
- CONTRIBUTORS.md file
- Release notes
- Documentation credits
License
By contributing, you agree that your contributions will be licensed under the same license as the project.
Questions?
- 💬 GitHub Discussions
- 📧 Email: contribute@rbac-algorithm.com
Thank you for contributing! 🎉
