summaryrefslogtreecommitdiff
path: root/etc/authzd
diff options
context:
space:
mode:
Diffstat (limited to 'etc/authzd')
-rw-r--r--etc/authzd/policy0.cedar19
1 files changed, 19 insertions, 0 deletions
diff --git a/etc/authzd/policy0.cedar b/etc/authzd/policy0.cedar
new file mode 100644
index 00000000..e01182c5
--- /dev/null
+++ b/etc/authzd/policy0.cedar
@@ -0,0 +1,19 @@
+permit(principal, action == Action::"check", resource)
+when {
+ context has bearer_token &&
+ context.bearer_token == "valid-token"
+};
+
+permit(principal, action == Action::"check", resource)
+when {
+ context has path &&
+ (context.path like "*.css" ||
+ context.path like "*.js" ||
+ context.path like "*.ico" ||
+ context.path like "*.png" ||
+ context.path like "*.jpg" ||
+ context.path like "*.jpeg" ||
+ context.path like "*.gif" ||
+ context.path like "*.bmp" ||
+ context.path like "*.html")
+};
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 04:58:48 +0000