Abstract: To stay legal when publishing software with open-source components, the distributor is required to provide an accurate Software Bill of Materials (SBOM) and legal notices. While the requirement may sound simple, through the lack of affordable and simple tools, the process to generate those is generally tedious. SCA Tool’s goal is to mitigate those problems by providing an easy to use tool, automating most of the process. One important aspect the tool is currently lacking is sharing resources through the concept of organizations. Consequently, during the work of this thesis, organizations are integrated into SCA Tool. To limit the access different members of an
organization have on the organization’s resources, an access control system is introduced. A variation of Role-based Access Control (RBAC) is implemented through Permify, with an additional wrapping and translation-layer integrated into SCA Tool’s backend. Additionally, to allow system administrators to manage users and organizations a system management dashboard is added.
Keywords: SCA Tool, Role-based Access Control (RBAC)
PDF: Master Thesis
Reference: Philipp Hoffmeister. SCA Tool User, Organization, and System Management and Administration. Master Thesis. Friedrich-Alexander-Universität Erlangen-Nürnberg: 2025.
Discover more from Professorship for Open-Source Software
Subscribe to get the latest posts sent to your email.