Documentation
¶
Index ¶
- type BuiltinProvider
- func (b *BuiltinProvider) CheckPermission(_ context.Context, subject, resource, action string) (bool, error)
- func (b *BuiltinProvider) ListPermissions(_ context.Context, subject string) ([]auth.Permission, error)
- func (b *BuiltinProvider) Name() string
- func (b *BuiltinProvider) SyncRoles(_ context.Context, roles []auth.RoleDefinition) error
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type BuiltinProvider ¶
type BuiltinProvider struct {
// contains filtered or unexported fields
}
BuiltinProvider wraps the existing PolicyEngine to implement PermissionProvider.
func NewBuiltinProvider ¶
func NewBuiltinProvider(engine *coreRBAC.PolicyEngine) *BuiltinProvider
NewBuiltinProvider creates a BuiltinProvider backed by the given PolicyEngine.
func (*BuiltinProvider) CheckPermission ¶
func (b *BuiltinProvider) CheckPermission(_ context.Context, subject, resource, action string) (bool, error)
CheckPermission maps the PermissionProvider interface to PolicyEngine.Allowed. The subject is treated as a role name.
func (*BuiltinProvider) ListPermissions ¶
func (b *BuiltinProvider) ListPermissions(_ context.Context, subject string) ([]auth.Permission, error)
ListPermissions returns all permissions for the given role.
func (*BuiltinProvider) Name ¶
func (b *BuiltinProvider) Name() string
Name returns the provider identifier.
func (*BuiltinProvider) SyncRoles ¶
func (b *BuiltinProvider) SyncRoles(_ context.Context, roles []auth.RoleDefinition) error
SyncRoles registers role definitions in the underlying PolicyEngine. This allows dynamic role creation beyond the 4 built-in roles.
Source Files
Click to show internal directories.
Click to hide internal directories.