test: add missing public asset tests

author: mo khan <mo@mokhan.ca> 2025-07-04 18:47:33 -0600
committer: mo khan <mo@mokhan.ca> 2025-07-04 18:47:33 -0600
commit: a45c159dac5893c7214e18a59c8a6d5115472e44 (patch)
tree: dc7b08cd9eea62c5918ee18fbfa66ce8d1c27fa5 /etc
parent: 6c6f1a7225022ae285bd6603aa0a2a81afc8baf3 (diff)
1 files changed, 19 insertions, 2 deletions
diff --git a/etc/authzd/policy0.cedar b/etc/authzd/policy0.cedar
index 56457622..75cf8178 100644
--- a/etc/authzd/policy0.cedar
+++ b/etc/authzd/policy0.cedar
@@ -22,11 +22,28 @@ when {
 permit(principal, action, resource)
 when {
   context has host && context has method && context has path && (
-    context.host == "sparkle.staging.runway.gitlab.net" &&
+    context.host == "sparkle.staging.runway.gitlab.net" && (
       context.method == "GET" && (
         context.path == "/" ||
-        context.path == "/app.js" ||
+        context.path == "/callback" ||
+        context.path == "/dashboard/nav" ||
+        context.path == "/health" ||
+        context.path == "/signout" ||
+        context.path == "/sparkles" ||
+        context.path like "*.bmp" ||
+        context.path like "*.css" ||
+        context.path like "*.gif" ||
+        context.path like "*.html" ||
+        context.path like "*.ico" ||
+        context.path like "*.jpeg" ||
+        context.path like "*.jpg" ||
+        context.path like "*.js" ||
+        context.path like "*.png" ||
         context.path == "/callback"
       )
+    ) || (
+      context.method == "POST" && (
+        context.path == "/sparkles/restore"
+    )
   )
 };
author	mo khan <mo@mokhan.ca>	2025-07-04 18:47:33 -0600
committer	mo khan <mo@mokhan.ca>	2025-07-04 18:47:33 -0600
commit	a45c159dac5893c7214e18a59c8a6d5115472e44 (patch)
tree	dc7b08cd9eea62c5918ee18fbfa66ce8d1c27fa5 /etc
parent	6c6f1a7225022ae285bd6603aa0a2a81afc8baf3 (diff)