feat: migrate from Cedar to SpiceDB authorization system

This is a major architectural change that replaces the Cedar policy-based
authorization system with SpiceDB's relation-based authorization.

Key changes:

- Migrate from Rust to Go implementation
- Replace Cedar policies with SpiceDB schema and relationships
- Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks
- Update build system and dependencies for Go ecosystem
- Maintain Envoy integration for external authorization

This change enables more flexible permission modeling through SpiceDB's
Google Zanzibar inspired relation-based system, supporting complex
hierarchical permissions that were difficult to express in Cedar.

Breaking change: Existing Cedar policies and Rust-based configuration
will no longer work and need to be migrated to SpiceDB schema.

1 files changed, 0 insertions, 39 deletions

diff --git a/vendor/thiserror-impl/src/lib.rs b/vendor/thiserror-impl/src/lib.rs
deleted file mode 100644
index 7f3767ef..00000000
--- a/vendor/thiserror-impl/src/lib.rs
+++ /dev/null
@@ -1,39 +0,0 @@
-#![allow(
-    clippy::blocks_in_conditions,
-    clippy::cast_lossless,
-    clippy::cast_possible_truncation,
-    clippy::enum_glob_use,
-    clippy::manual_find,
-    clippy::manual_let_else,
-    clippy::manual_map,
-    clippy::map_unwrap_or,
-    clippy::module_name_repetitions,
-    clippy::needless_pass_by_value,
-    clippy::range_plus_one,
-    clippy::single_match_else,
-    clippy::struct_field_names,
-    clippy::too_many_lines,
-    clippy::wrong_self_convention
-)]
-
-extern crate proc_macro;
-
-mod ast;
-mod attr;
-mod expand;
-mod fallback;
-mod fmt;
-mod generics;
-mod prop;
-mod scan_expr;
-mod unraw;
-mod valid;
-
-use proc_macro::TokenStream;
-use syn::{parse_macro_input, DeriveInput};
-
-#[proc_macro_derive(Error, attributes(backtrace, error, from, source))]
-pub fn derive_error(input: TokenStream) -> TokenStream {
-    let input = parse_macro_input!(input as DeriveInput);
-    expand::derive(&input).into()
-}