Skip to content

man4ish/omnibioai-security-sdk

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
audit
audit
 
 
auth
auth
 
 
build
build
 
 
core
core
 
 
iam
iam
 
 
middleware
middleware
 
 
policy
policy
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
exceptions.py
exceptions.py
 
 
pyproject.toml
pyproject.toml
 
 
setup.py
setup.py
 
 

Repository files navigation

OmniBioAI Security SDK

A unified zero-trust security SDK for the OmniBioAI ecosystem.

It provides:

  • IAM token validation (with Redis caching)
  • Service-to-Service authentication (S2S)
  • Policy evaluation integration
  • Audit event streaming
  • FastAPI middleware stack

Architecture

Request → Auth Middleware → IAM → Policy Engine → Service → Audit Stream

Features

🔐 IAM Client

  • JWT validation
  • Redis caching for sub-ms auth

🧠 Policy Enforcement

  • RBAC / ABAC integration
  • Request-level authorization

🔄 Service-to-Service Auth

  • Signed service tokens
  • Audience-based access control

📡 Audit Integration

  • Redis Streams logging
  • full traceability

Installation

pip install omnibioai-security-sdk

Usage

FastAPI Setup

from fastapi import FastAPI from omnibioai_security_sdk.core.config import SecurityConfig from omnibioai_security_sdk.iam.client import IAMClient from omnibioai_security_sdk.policy.client import PolicyClient from omnibioai_security_sdk.middleware.auth import AuthMiddleware from omnibioai_security_sdk.middleware.policy import PolicyMiddleware

app = FastAPI()

iam = IAMClient(SecurityConfig.IAM_BASE_URL, SecurityConfig.REDIS_URL) policy = PolicyClient(SecurityConfig.POLICY_BASE_URL)

app.add_middleware(AuthMiddleware, iam=iam) app.add_middleware(PolicyMiddleware, policy=policy)

Zero Trust Guarantee

Every request is:

Authenticated Authorized Audited Traceable Designed For HPC workflows Distributed bioinformatics pipelines AI/ML compute orchestration

🧬 What you now have

This SDK is now:

✔ IAM abstraction
✔ policy enforcement layer
✔ S2S authentication
✔ audit integration
✔ reusable across all services

🚀 Next step (important)

If you want to complete the system properly, next missing piece is:

🔥 API Gateway (central enforcement point)

That will:

  • remove middleware duplication entirely
  • enforce security at network edge
  • act like AWS API Gateway + IAM combined

About

Unified zero-trust security SDK for the OmniBioAI ecosystem — provides IAM-based authentication, service-to-service (S2S) mutual auth, policy enforcement client, Redis-backed token caching, and structured audit log emission. Used by all OmniBioAI services to enforce consistent security posture without reimplementing auth logic.

Topics

python authentication hpc iam zero-trust security-sdk omnibioai

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages