diff options
Diffstat (limited to 'etc/authzd')
| -rw-r--r-- | etc/authzd/policy0.cedar | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/etc/authzd/policy0.cedar b/etc/authzd/policy0.cedar new file mode 100644 index 00000000..034e81b5 --- /dev/null +++ b/etc/authzd/policy0.cedar @@ -0,0 +1,20 @@ +permit(principal, action == Action::"check", resource) +when { + context has bearer_token && + context.bearer_token == "valid-token" +}; + +permit(principal, action == Action::"check", resource) +when { + context has path && ( + context.path like "*.css" || + context.path like "*.js" || + context.path like "*.ico" || + context.path like "*.png" || + context.path like "*.jpg" || + context.path like "*.jpeg" || + context.path like "*.gif" || + context.path like "*.bmp" || + context.path like "*.html" + ) +}; |