grpc

package
v0.8.13 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Sep 19, 2022 License: MIT Imports: 4 Imported by: 1

Documentation

Overview

Package grpc is used to create an AuthorizerClient that communicates with the authorizer using gRPC.

AuthorizerClient is the low-level interface that exposes the raw authorization API.

Example 
ctx := context.Background()

// Create new authorizer client.
authorizer, err := grpc.New(
	ctx,
	client.WithAPIKeyAuth("<Aserto authorizer API key"),
	client.WithTenantID("<Aserto tenant ID>"),
)
if err != nil {
	log.Fatal("Failed to create authorizer:", err)
}

// Make an authorization call.
result, err := authorizer.Is(
	ctx,
	&authz.IsRequest{
		PolicyContext: &api.PolicyContext{
			Id:        "<Aserto Policy ID>",
			Path:      "<Policy path (e.g. 'peoplefinder.GET.users')",
			Decisions: []string{"<authorization decisions (e.g. 'allowed')>"},
		},
		IdentityContext: &api.IdentityContext{
			Type:     api.IdentityType_IDENTITY_TYPE_SUB,
			Identity: "<user id>",
		},
	},
)
if err != nil {
	log.Fatal("Failed to make authorization call:", err)
}

// Check the authorizer's decision.
for _, decision := range result.Decisions {
	if decision.Decision == "allowed" { // "allowed" is just an example. Your policy may have different rules.
		if decision.Is {
			fmt.Println("Access granted")
		} else {
			fmt.Println("Access denied")
		}
	}
}

Index

Examples

Constants

This section is empty.

Variables

This section is empty.

Functions

func New 

func New(ctx context.Context, opts ...client.ConnectionOption) (authz.AuthorizerClient, error)

New returns a new gRPC AuthorizerClient with the specified options.

Types

This section is empty.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.