From the authorization point of view, Kasai lets you:

- Manage your users, groups and entities (over which you can later on define authorizations).
- Define a fine-grained permission hierarchy and group them into roles (ie: administrators, power-users, users, etc.).
- Associate a user or group with an entity, by assigning the pair a role (thus giving the user/group a set of privileges over that entity).

From the authentication point of view, Kasai lets you:

- Authenticate your users with existing credential repositories.
- Use the provided authentication mechanisms (NT, Unix via PAM, DBMS) or develop your own through a very simple plugin architecture.

Additionally, Kasai includes a very powerful and performing auditing system that records all users activity on a relational database. This components can be re-used to build complete and solid auditing capabilities into your applications.

Kasai is provided as a Java library (JAR file) and can be used through a simple API. The next major release will include a web service version to access the authorization and authentication services through SOAP from disparate platforms. Kasai is licensed under the LGPL so you can use it both in commercial and open-source projects.

http://www.manentiasoftware.com/kasai/