diff options
Diffstat (limited to 'bin')
| -rwxr-xr-x | bin/api | 15 | ||||
| -rwxr-xr-x | bin/rpc | 1 |
2 files changed, 15 insertions, 1 deletions
@@ -6,13 +6,21 @@ gemfile do source 'https://rubygems.org' gem "erb", "~> 4.0" + gem "grpc", "~> 1.0" gem "json", "~> 2.0" + gem "logger", "~> 1.0" gem "rack", "~> 3.0" gem "rackup", "~> 2.0" gem "securerandom", "~> 0.1" gem "webrick", "~> 1.0" end +lib_path = Pathname.new(__FILE__).parent.parent.join('lib').realpath.to_s +$LOAD_PATH.unshift(lib_path) unless $LOAD_PATH.include?(lib_path) + +require 'ability_services_pb' + +GRPC.logger = Logger.new($stderr, level: :debug) $scheme = ENV.fetch("SCHEME", "http") $port = ENV.fetch("PORT", 8284).to_i $host = ENV.fetch("HOST", "localhost:#{$port}") @@ -71,7 +79,12 @@ class API def authorized?(request, permission) # TODO:: Check the JWT for the appropriate claim # Connect to the Authz RPC endpoint Ability.allowed?(subject, permission, resource) - true + client = ::Ability::Stub.new('localhost:50051', :this_channel_is_insecure) # TODO:: memorize client + reply = client.allowed(AllowRequest.new(subject: "", permission: permission, resource: "")) + puts "***" * 10 + puts reply.inspect + puts "***" * 10 + reply&.result end def json_not_found @@ -19,6 +19,7 @@ class AbilityHandler < ::Ability::Service def allowed(request, _call) puts [request, _call].inspect # TODO:: entrypoint to declarative policies + GRPC.logger.info([request, _call].inspect) AllowReply.new(result: true) end end |