search

Permissions

circle-info

Understanding and properly configuring permissions is crucial for secure operation of Sand Framework.

hashtag
Role-Based Access Control

  • Admin: Full system access

  • Developer: Code analysis and AI features

  • Analyst: Analytics and monitoring

  • Reader: Read-only access

hashtag
API Permissions

from fastapi import Security
from sand.security import require_permissions

@router.post("/analyze")
@require_permissions(["contract:analyze"])
async def analyze_contract(
    contract: Contract,
    user: User = Security(get_current_user)
):
    pass

hashtag
File System Permissions

hashtag
Database Permissions

hashtag
Environment Security

circle-exclamation

Protect sensitive environment variables:

  • API keys

  • Database credentials

  • Private keys

  • Service tokens

hashtag
Contact for Access

For permission-related inquiries or access requests, contact:

hashtag
Audit Logging

hashtag
Best Practices

  1. Follow principle of least privilege

  2. Regularly audit permissions

  3. Remove unused accounts

  4. Monitor access patterns

  5. Document all role changes

circle-check

Regular security audits help maintain proper permission configuration.

PreviousSecurity Best PracticesNextAcknowledgements

Last updated