summaryrefslogtreecommitdiff
path: root/src
diff options
context:
space:
mode:
Diffstat (limited to 'src')
-rw-r--r--src/authorization/cedar/authorizer.rs179
-rw-r--r--src/authorization/cedar/entities.rs145
-rw-r--r--src/authorization/cedar/mod.rs5
-rw-r--r--src/authorization/mod.rs1
-rw-r--r--src/bin/cli.rs51
-rw-r--r--src/gitlab/api.rs53
-rw-r--r--src/gitlab/group.rs10
-rw-r--r--src/gitlab/member.rs9
-rw-r--r--src/gitlab/mod.rs11
-rw-r--r--src/gitlab/namespace.rs11
-rw-r--r--src/gitlab/project.rs11
-rw-r--r--src/lib.rs2
-rw-r--r--src/rpc/authzed.api.materialize.v0.rs315
-rw-r--r--src/rpc/authzed.api.v1.rs2496
14 files changed, 2813 insertions, 486 deletions
diff --git a/src/authorization/cedar/authorizer.rs b/src/authorization/cedar/authorizer.rs
deleted file mode 100644
index c7086dd3..00000000
--- a/src/authorization/cedar/authorizer.rs
+++ /dev/null
@@ -1,179 +0,0 @@
-use std::fs;
-use std::str::FromStr;
-
-#[derive(Debug)]
-pub struct Authorizer {
- authorizer: cedar_policy::Authorizer,
- entities: cedar_policy::Entities,
- policies: cedar_policy::PolicySet,
-}
-
-impl Authorizer {
- pub fn new(policies: cedar_policy::PolicySet, entities: cedar_policy::Entities) -> Authorizer {
- Authorizer {
- policies,
- entities,
- authorizer: cedar_policy::Authorizer::new(),
- }
- }
-
- pub fn new_from(path: &std::path::Path, entities: cedar_policy::Entities) -> Authorizer {
- Self::new(
- Self::load_from(path).unwrap_or_else(|e| {
- tracing::error!(
- path = ?path,
- error = %e,
- "Failed to load Cedar policies, using empty policy set"
- );
- cedar_policy::PolicySet::default()
- }),
- entities,
- )
- }
-
- fn load_from(
- path: &std::path::Path,
- ) -> Result<cedar_policy::PolicySet, Box<dyn std::error::Error>> {
- if !path.exists() {
- return Ok(cedar_policy::PolicySet::default());
- }
-
- if path.is_file() && path.extension().is_some_and(|ext| ext == "cedar") {
- let content = fs::read_to_string(path)?;
- return Ok(cedar_policy::PolicySet::from_str(&content)?);
- }
-
- if !path.is_dir() {
- return Ok(cedar_policy::PolicySet::default());
- }
-
- let mut policies = cedar_policy::PolicySet::new();
- for entry in fs::read_dir(path)? {
- policies.merge(&Self::load_from(&entry?.path())?, true)?;
- }
- Ok(policies)
- }
-
- fn map_from(
- &self,
- http_request: envoy_types::pb::envoy::service::auth::v3::attribute_context::HttpRequest,
- ) -> Result<cedar_policy::Request, Box<dyn std::error::Error>> {
- let principal = self.principal_from(&http_request)?;
- let permission = self.permission_from(&http_request)?;
- let resource = self.resource_from(&http_request)?;
- let context = self.context_from(http_request)?;
-
- Ok(cedar_policy::Request::new(
- principal, permission, resource, context, None,
- )?)
- }
-
- fn principal_from(
- &self,
- http_request: &envoy_types::pb::envoy::service::auth::v3::attribute_context::HttpRequest,
- ) -> Result<cedar_policy::EntityUid, Box<dyn std::error::Error>> {
- let subject = http_request
- .headers
- .get("x-jwt-claim-sub")
- .map_or("", |v| v);
-
- Ok(cedar_policy::EntityUid::from_type_name_and_id(
- cedar_policy::EntityTypeName::from_str("User")?,
- cedar_policy::EntityId::from_str(subject)?,
- ))
- }
-
- fn permission_from(
- &self,
- http_request: &envoy_types::pb::envoy::service::auth::v3::attribute_context::HttpRequest,
- ) -> Result<cedar_policy::EntityUid, Box<dyn std::error::Error>> {
- Ok(cedar_policy::EntityUid::from_type_name_and_id(
- cedar_policy::EntityTypeName::from_str("Action")?,
- cedar_policy::EntityId::from_str(&http_request.method)?,
- ))
- }
-
- fn resource_from(
- &self,
- http_request: &envoy_types::pb::envoy::service::auth::v3::attribute_context::HttpRequest,
- ) -> Result<cedar_policy::EntityUid, Box<dyn std::error::Error>> {
- Ok(cedar_policy::EntityUid::from_type_name_and_id(
- cedar_policy::EntityTypeName::from_str("Resource")?,
- cedar_policy::EntityId::from_str(&http_request.path)?,
- ))
- }
-
- fn context_from(
- &self,
- http_request: envoy_types::pb::envoy::service::auth::v3::attribute_context::HttpRequest,
- ) -> Result<cedar_policy::Context, Box<dyn std::error::Error>> {
- let mut items = std::collections::HashMap::new();
-
- items.insert("host".to_string(), self.safe_string(&http_request.host));
- items.insert("method".to_string(), self.safe_string(&http_request.method));
- items.insert("path".to_string(), self.safe_string(&http_request.path));
-
- Ok(cedar_policy::Context::from_pairs(
- items.into_iter().collect::<Vec<_>>(),
- )?)
- }
-
- fn safe_string(&self, item: &str) -> cedar_policy::RestrictedExpression {
- cedar_policy::RestrictedExpression::new_string(item.to_string())
- }
-}
-
-impl Default for Authorizer {
- fn default() -> Self {
- Self::new_from(
- std::path::Path::new("./etc/authzd"),
- cedar_policy::Entities::empty(),
- )
- }
-}
-
-impl crate::authorization::authorizer::Authorizer for Authorizer {
- fn authorize(&self, request: envoy_types::pb::envoy::service::auth::v3::CheckRequest) -> bool {
- let http_request = match request
- .attributes
- .as_ref()
- .and_then(|attr| attr.request.as_ref())
- .and_then(|req| req.http.as_ref())
- {
- Some(http) => http,
- None => return false,
- };
-
- match self.map_from(http_request.clone()) {
- Ok(cedar_request) => {
- let response =
- self.authorizer
- .is_authorized(&cedar_request, &self.policies, &self.entities);
-
- let decision = response.decision();
-
- tracing::info!(
- decision = ?decision,
- diagnostics = ?response.diagnostics(),
- principal = %cedar_request.principal().unwrap(),
- action = %cedar_request.action().unwrap(),
- resource = %cedar_request.resource().unwrap(),
- host = %http_request.host,
- method = %http_request.method,
- path = %http_request.path,
- "http"
- );
-
- matches!(decision, cedar_policy::Decision::Allow)
- }
- Err(e) => {
- tracing::error!(
- error = %e,
- path = %http_request.path,
- "Failed to create Cedar request"
- );
- false
- }
- }
- }
-}
diff --git a/src/authorization/cedar/entities.rs b/src/authorization/cedar/entities.rs
deleted file mode 100644
index 050f6f26..00000000
--- a/src/authorization/cedar/entities.rs
+++ /dev/null
@@ -1,145 +0,0 @@
-use crate::gitlab::Api;
-use serde::Serialize;
-use std::collections::HashSet;
-use std::future::Future;
-use std::pin::Pin;
-
-type BoxFuture<'a, T> = Pin<Box<dyn Future<Output = T> + 'a>>;
-
-// Cedar entity structures
-// Note: We define custom types instead of using cedar_policy::Entity directly because:
-// 1. Cedar's Entity type is for runtime use, not JSON serialization
-// 2. These types ensure our JSON output matches Cedar's expected format exactly
-// 3. The #[serde(rename)] attributes handle Cedar's specific field naming requirements
-#[derive(Debug, Serialize)]
-pub struct CedarEntity {
- pub uid: CedarUid,
- pub attrs: serde_json::Value,
- pub parents: Vec<CedarParent>,
-}
-
-#[derive(Debug, Serialize)]
-pub struct CedarUid {
- #[serde(rename = "type")]
- pub entity_type: String,
- pub id: String,
-}
-
-#[derive(Debug, Serialize)]
-pub struct CedarParent {
- #[serde(rename = "type")]
- pub parent_type: String,
- pub id: String,
-}
-
-pub struct EntitiesRepository {
- api: Api,
-}
-
-impl EntitiesRepository {
- pub fn new(api: Api) -> EntitiesRepository {
- EntitiesRepository { api }
- }
-
- pub async fn all(
- &self,
- project_path: String,
- ) -> Result<Vec<CedarEntity>, Box<dyn std::error::Error>> {
- let mut entities = Vec::new();
- let mut groups = HashSet::new();
-
- let project = self.api.get_project(&project_path).await?;
-
- entities.push(CedarEntity {
- uid: CedarUid {
- entity_type: "Project".to_string(),
- id: project.id.to_string(),
- },
- attrs: serde_json::json!({
- "name": project.name,
- "path": project.path,
- "full_path": format!("{}/{}", project.namespace.full_path, project.path),
- }),
- parents: if project.namespace.kind == "group" {
- vec![CedarParent {
- parent_type: "Group".to_string(),
- id: project.namespace.id.to_string(),
- }]
- } else {
- vec![]
- },
- });
-
- for member in self.api.get_project_members(project.id).await? {
- if member.state == "active" {
- entities.push(CedarEntity {
- uid: CedarUid {
- entity_type: "User".to_string(),
- id: member.id.to_string(),
- },
- attrs: serde_json::json!({
- "username": member.username,
- "access_level": member.access_level,
- }),
- parents: vec![],
- });
- }
- }
-
- if project.namespace.kind == "group" {
- self.fetch_hierarchy(project.namespace.id, &mut entities, &mut groups)
- .await?;
- }
-
- Ok(entities)
- }
-
- /// Validates that the entities can be parsed by Cedar
- pub fn is_valid(entities: &[CedarEntity]) -> Result<(), Box<dyn std::error::Error>> {
- let json = serde_json::to_string(entities)?;
- cedar_policy::Entities::from_json_str(&json, None)?;
- Ok(())
- }
-
- fn fetch_hierarchy<'a>(
- &'a self,
- group_id: u64,
- entities: &'a mut Vec<CedarEntity>,
- groups: &'a mut HashSet<u64>,
- ) -> BoxFuture<'a, Result<(), Box<dyn std::error::Error>>> {
- Box::pin(async move {
- if groups.contains(&group_id) {
- return Ok(());
- }
-
- groups.insert(group_id);
-
- let group = self.api.get_group(group_id).await?;
-
- let parents = if let Some(parent_id) = group.parent_id {
- self.fetch_hierarchy(parent_id, entities, groups).await?;
- vec![CedarParent {
- parent_type: "Group".to_string(),
- id: parent_id.to_string(),
- }]
- } else {
- vec![]
- };
-
- entities.push(CedarEntity {
- uid: CedarUid {
- entity_type: "Group".to_string(),
- id: group.id.to_string(),
- },
- attrs: serde_json::json!({
- "name": group.name,
- "path": group.path,
- "full_path": group.full_path,
- }),
- parents,
- });
-
- Ok(())
- })
- }
-}
diff --git a/src/authorization/cedar/mod.rs b/src/authorization/cedar/mod.rs
deleted file mode 100644
index 8be10feb..00000000
--- a/src/authorization/cedar/mod.rs
+++ /dev/null
@@ -1,5 +0,0 @@
-pub mod authorizer;
-pub mod entities;
-
-pub use authorizer::*;
-pub use entities::*;
diff --git a/src/authorization/mod.rs b/src/authorization/mod.rs
index 664096e5..c3aa366d 100644
--- a/src/authorization/mod.rs
+++ b/src/authorization/mod.rs
@@ -1,5 +1,4 @@
pub mod authorizer;
-pub mod cedar;
pub mod check_service;
pub mod default;
pub mod server;
diff --git a/src/bin/cli.rs b/src/bin/cli.rs
index a6d2fa8a..64b5734d 100644
--- a/src/bin/cli.rs
+++ b/src/bin/cli.rs
@@ -1,13 +1,7 @@
-use authzd::EntitiesRepository;
-use authzd::gitlab::Api;
use clap::{Parser, Subcommand};
#[derive(Parser, Debug)]
-#[command(
- author,
- version,
- about = "Authorization CLI for managing Cedar entities and policies"
-)]
+#[command(author, version, about = "Authorization CLI for managing policies")]
struct Args {
#[command(subcommand)]
command: Commands,
@@ -15,29 +9,6 @@ struct Args {
#[derive(Subcommand, Debug)]
enum Commands {
- /// Generate entities from GitLab API
- Generate {
- /// Project ID or path (e.g., gitlab-org/gitlab)
- #[arg(short, long)]
- project: String,
-
- /// Output file path
- #[arg(short, long, default_value = "entities.json")]
- output: String,
-
- /// GitLab API token
- #[arg(short, long, env = "GITLAB_TOKEN")]
- token: String,
-
- /// GitLab instance URL
- #[arg(
- short = 'H',
- long,
- env = "GITLAB_HOST",
- default_value = "https://gitlab.com"
- )]
- host: String,
- },
Server {
/// Address to bind to
#[arg(short, long, env = "BIND_ADDR", default_value = "127.0.0.1:50052")]
@@ -50,24 +21,6 @@ async fn main() -> Result<(), Box<dyn std::error::Error>> {
let args = Args::parse();
match args.command {
- Commands::Generate {
- project,
- output,
- token,
- host,
- } => {
- let repository = EntitiesRepository::new(Api::new(token, host));
- let entities = repository.all(project).await?;
- EntitiesRepository::is_valid(&entities)?;
- let json = serde_json::to_string_pretty(&entities)?;
- std::fs::write(&output, json)?;
-
- println!(
- "Successfully generated {} entities to {}",
- entities.len(),
- output
- );
- }
Commands::Server { addr } => {
tracing_subscriber::fmt()
.json()
@@ -85,7 +38,7 @@ async fn main() -> Result<(), Box<dyn std::error::Error>> {
tracing::info!(address = %addr, "Starting");
authzd::authorization::Server::new(
- authzd::authorization::cedar::Authorizer::default(),
+ authzd::authorization::spice::Authorizer::default(),
)?
.serve(addr.parse().unwrap())
.await?;
diff --git a/src/gitlab/api.rs b/src/gitlab/api.rs
deleted file mode 100644
index 9047ddaf..00000000
--- a/src/gitlab/api.rs
+++ /dev/null
@@ -1,53 +0,0 @@
-use crate::gitlab::{Group, Member, Project};
-use reqwest::Client;
-
-pub struct Api {
- pub token: String,
- pub host: String,
- client: Client,
-}
-
-impl Api {
- pub fn new(token: String, host: String) -> Api {
- Api {
- token,
- host,
- client: Client::new(),
- }
- }
-
- pub async fn get_project(&self, project: &str) -> Result<Project, Box<dyn std::error::Error>> {
- self.get::<Project>(format!("/api/v4/projects/{}", urlencoding::encode(project)))
- .await
- }
-
- pub async fn get_project_members(
- &self,
- project_id: u64,
- ) -> Result<Vec<Member>, Box<dyn std::error::Error>> {
- self.get::<Vec<Member>>(format!("/api/v4/projects/{project_id}/members/all"))
- .await
- }
-
- pub async fn get_group(&self, group_id: u64) -> Result<Group, Box<dyn std::error::Error>> {
- self.get::<Group>(format!("/api/v4/groups/{group_id}"))
- .await
- }
-
- async fn get<T: serde::de::DeserializeOwned>(
- &self,
- path: String,
- ) -> Result<T, Box<dyn std::error::Error>> {
- let url = format!("{}{}", self.host.trim_end_matches('/'), path);
-
- Ok(self
- .client
- .get(&url)
- .header("PRIVATE-TOKEN", &self.token)
- .send()
- .await?
- .error_for_status()?
- .json()
- .await?)
- }
-}
diff --git a/src/gitlab/group.rs b/src/gitlab/group.rs
deleted file mode 100644
index 6b00e87d..00000000
--- a/src/gitlab/group.rs
+++ /dev/null
@@ -1,10 +0,0 @@
-use serde::Deserialize;
-
-#[derive(Debug, Deserialize)]
-pub struct Group {
- pub id: u64,
- pub name: String,
- pub path: String,
- pub full_path: String,
- pub parent_id: Option<u64>,
-}
diff --git a/src/gitlab/member.rs b/src/gitlab/member.rs
deleted file mode 100644
index b44b88f2..00000000
--- a/src/gitlab/member.rs
+++ /dev/null
@@ -1,9 +0,0 @@
-use serde::Deserialize;
-
-#[derive(Debug, Deserialize)]
-pub struct Member {
- pub id: u64,
- pub username: String,
- pub state: String,
- pub access_level: u64,
-}
diff --git a/src/gitlab/mod.rs b/src/gitlab/mod.rs
deleted file mode 100644
index e1993d81..00000000
--- a/src/gitlab/mod.rs
+++ /dev/null
@@ -1,11 +0,0 @@
-pub mod api;
-pub mod group;
-pub mod member;
-pub mod namespace;
-pub mod project;
-
-pub use api::Api;
-pub use group::Group;
-pub use member::Member;
-pub use namespace::Namespace;
-pub use project::Project;
diff --git a/src/gitlab/namespace.rs b/src/gitlab/namespace.rs
deleted file mode 100644
index d4a1e8f4..00000000
--- a/src/gitlab/namespace.rs
+++ /dev/null
@@ -1,11 +0,0 @@
-use serde::Deserialize;
-
-#[derive(Debug, Deserialize)]
-pub struct Namespace {
- pub id: u64,
- pub name: String,
- pub path: String,
- pub kind: String,
- pub full_path: String,
- pub parent_id: Option<u64>,
-}
diff --git a/src/gitlab/project.rs b/src/gitlab/project.rs
deleted file mode 100644
index ba88c2e3..00000000
--- a/src/gitlab/project.rs
+++ /dev/null
@@ -1,11 +0,0 @@
-use serde::Deserialize;
-
-use super::Namespace;
-
-#[derive(Debug, Deserialize)]
-pub struct Project {
- pub id: u64,
- pub name: String,
- pub path: String,
- pub namespace: Namespace,
-}
diff --git a/src/lib.rs b/src/lib.rs
index 918543dd..2f021af8 100644
--- a/src/lib.rs
+++ b/src/lib.rs
@@ -1,6 +1,4 @@
pub mod authorization;
-pub mod gitlab;
-pub use authorization::cedar::{Authorizer as CedarAuthorizer, CedarEntity, EntitiesRepository};
pub use authorization::spice::Authorizer as SpiceAuthorizer;
pub use authorization::{Authorizer, CheckService, Server};
diff --git a/src/rpc/authzed.api.materialize.v0.rs b/src/rpc/authzed.api.materialize.v0.rs
new file mode 100644
index 00000000..57bdacfd
--- /dev/null
+++ b/src/rpc/authzed.api.materialize.v0.rs
@@ -0,0 +1,315 @@
+// @generated
+// This file is @generated by prost-build.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WatchPermissionsRequest {
+ /// permissions is a list of permissions to watch for changes. At least one permission must be specified, and it must
+ /// be a subset or equal to the permissions that were enabled for the service.
+ #[prost(message, repeated, tag="1")]
+ pub permissions: ::prost::alloc::vec::Vec<WatchedPermission>,
+ /// optional_starting_after is the revision token to start watching from. If not provided, the stream
+ /// will start from the current revision at the moment of the request.
+ #[prost(message, optional, tag="2")]
+ pub optional_starting_after: ::core::option::Option<super::super::v1::ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WatchedPermission {
+ /// resource_type is the type of the resource to watch for changes.
+ #[prost(string, tag="1")]
+ pub resource_type: ::prost::alloc::string::String,
+ /// permission is the permission to watch for changes.
+ #[prost(string, tag="2")]
+ pub permission: ::prost::alloc::string::String,
+ /// subject_type is the type of the subject to watch for changes.
+ #[prost(string, tag="3")]
+ pub subject_type: ::prost::alloc::string::String,
+ /// optional_subject_relation is the relation on the subject to watch for changes.
+ #[prost(string, tag="4")]
+ pub optional_subject_relation: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WatchPermissionsResponse {
+ #[prost(oneof="watch_permissions_response::Response", tags="1, 2")]
+ pub response: ::core::option::Option<watch_permissions_response::Response>,
+}
+/// Nested message and enum types in `WatchPermissionsResponse`.
+pub mod watch_permissions_response {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Response {
+ /// change is the computed permission delta that has occurred as result of a mutation in origin SpiceDB.
+ /// The consumer should apply this change to the current state of the computed permissions in their target system.
+ /// Once an event arrives with completed_revision instead, the consumer shall consider there are not more changes
+ /// originating from that revision.
+ ///
+ /// The consumer should keep track of the revision in order to resume streaming in the event of consumer restarts.
+ #[prost(message, tag="1")]
+ Change(super::PermissionChange),
+ /// completed_revision is the revision token that indicates all changes originating from a revision have been
+ /// streamed and thus the revision should be considered completed. It may also be
+ /// received without accompanying set of changes, indicating that a mutation in the origin SpiceDB cluster did
+ /// not yield any effective changes in the computed permissions
+ #[prost(message, tag="2")]
+ CompletedRevision(super::super::super::v1::ZedToken),
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct PermissionChange {
+ /// revision represents the revision at which the change occurred.
+ #[prost(message, optional, tag="1")]
+ pub revision: ::core::option::Option<super::super::v1::ZedToken>,
+ /// resource is the resource that the permission change is related to.
+ #[prost(message, optional, tag="2")]
+ pub resource: ::core::option::Option<super::super::v1::ObjectReference>,
+ /// permission is the permission that has changed.
+ #[prost(string, tag="3")]
+ pub permission: ::prost::alloc::string::String,
+ /// subject is the subject that the permission change is related to.
+ #[prost(message, optional, tag="4")]
+ pub subject: ::core::option::Option<super::super::v1::SubjectReference>,
+ /// permissionship is the new permissionship of the subject over the resource after the change.
+ #[prost(enumeration="permission_change::Permissionship", tag="5")]
+ pub permissionship: i32,
+}
+/// Nested message and enum types in `PermissionChange`.
+pub mod permission_change {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum Permissionship {
+ Unspecified = 0,
+ NoPermission = 1,
+ HasPermission = 2,
+ ConditionalPermission = 3,
+ }
+ impl Permissionship {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ Permissionship::Unspecified => "PERMISSIONSHIP_UNSPECIFIED",
+ Permissionship::NoPermission => "PERMISSIONSHIP_NO_PERMISSION",
+ Permissionship::HasPermission => "PERMISSIONSHIP_HAS_PERMISSION",
+ Permissionship::ConditionalPermission => "PERMISSIONSHIP_CONDITIONAL_PERMISSION",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "PERMISSIONSHIP_UNSPECIFIED" => Some(Self::Unspecified),
+ "PERMISSIONSHIP_NO_PERMISSION" => Some(Self::NoPermission),
+ "PERMISSIONSHIP_HAS_PERMISSION" => Some(Self::HasPermission),
+ "PERMISSIONSHIP_CONDITIONAL_PERMISSION" => Some(Self::ConditionalPermission),
+ _ => None,
+ }
+ }
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WatchPermissionSetsRequest {
+ /// optional_starting_after is used to specify the SpiceDB revision to start watching from.
+ /// If not specified, the watch will start from the current SpiceDB revision time of the request ("head revision").
+ #[prost(message, optional, tag="1")]
+ pub optional_starting_after: ::core::option::Option<super::super::v1::ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WatchPermissionSetsResponse {
+ #[prost(oneof="watch_permission_sets_response::Response", tags="1, 2, 3, 4")]
+ pub response: ::core::option::Option<watch_permission_sets_response::Response>,
+}
+/// Nested message and enum types in `WatchPermissionSetsResponse`.
+pub mod watch_permission_sets_response {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Response {
+ /// change is the permission set delta that has occurred as result of a mutation in origin SpiceDB.
+ /// The consumer should apply this change to the current state of the permission sets in their target system.
+ /// Once an event arrives with completed_revision instead, the consumer shall consider the set of
+ /// changes originating from that revision completed.
+ ///
+ /// The consumer should keep track of the revision in order to resume streaming in the event of consumer restarts.
+ #[prost(message, tag="1")]
+ Change(super::PermissionSetChange),
+ /// completed_revision is the revision token that indicates the completion of a set of changes. It may also be
+ /// received without accompanying set of changes, indicating that a mutation in the origin SpiceDB cluster did
+ /// not yield any effective changes in the permission sets
+ #[prost(message, tag="2")]
+ CompletedRevision(super::super::super::v1::ZedToken),
+ /// lookup_permission_sets_required is a signal that the consumer should perform a LookupPermissionSets call because
+ /// the permission set snapshot needs to be rebuilt from scratch. This typically happens when the origin SpiceDB
+ /// cluster has seen its schema changed.
+ #[prost(message, tag="3")]
+ LookupPermissionSetsRequired(super::LookupPermissionSetsRequired),
+ /// breaking_schema_change is a signal that a breaking schema change has been written to the origin SpiceDB cluster,
+ /// and that the consumer should expect delays in the ingestion of new changes,
+ /// because the permission set snapshot needs to be rebuilt from scratch. Once the snapshot is ready, the consumer
+ /// will receive a LookupPermissionSetsRequired event.
+ #[prost(message, tag="4")]
+ BreakingSchemaChange(super::BreakingSchemaChange),
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct Cursor {
+ /// limit is the number of permission sets to stream over a single LookupPermissionSets call that was requested.
+ #[prost(uint32, tag="1")]
+ pub limit: u32,
+ /// token is the snapshot revision at which the cursor was computed.
+ #[prost(message, optional, tag="4")]
+ pub token: ::core::option::Option<super::super::v1::ZedToken>,
+ /// starting_index is an offset of the permission set represented by this cursor
+ #[prost(uint32, tag="5")]
+ pub starting_index: u32,
+ /// completed_members is a boolean flag that indicates that the cursor has reached the end of the permission sets
+ #[prost(bool, tag="6")]
+ pub completed_members: bool,
+ /// starting_key is a string cursor used by some backends to resume the stream from a specific point.
+ #[prost(string, tag="7")]
+ pub starting_key: ::prost::alloc::string::String,
+ /// cursor is a string-encoded internal materialize cursor.
+ #[prost(string, tag="8")]
+ pub cursor: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct LookupPermissionSetsRequest {
+ /// limit is the number of permission sets to stream over a single LookupPermissionSets. Once the limit is reached,
+ /// the server will close the stream. If more permission sets are available, the consume should open a new stream
+ /// providing optional_starting_after_cursor, using the cursor from the last response.
+ #[prost(uint32, tag="1")]
+ pub limit: u32,
+ /// optional_at_revision specifies the client is requesting to lookup PermissionSets at a specific revision. It's
+ /// optional, and if not provided, PermissionSets will be looked up at the current revision. The cursor always
+ /// takes precedence in defining the revision when present.
+ #[prost(message, optional, tag="2")]
+ pub optional_at_revision: ::core::option::Option<super::super::v1::ZedToken>,
+ /// optional_starting_after_cursor is used to specify the offset to start streaming permission sets from.
+ #[prost(message, optional, tag="4")]
+ pub optional_starting_after_cursor: ::core::option::Option<Cursor>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct LookupPermissionSetsResponse {
+ /// change represents the permission set delta necessary to transition an uninitialized target system to
+ /// a specific snapshot revision. In practice it's not different from the WatchPermissionSetsResponse.change, except
+ /// all changes will be of time SET_OPERATION_ADDED because it's assumed there is no known previous state.
+ ///
+ /// Applying the deltas to a previously initialized target system would yield incorrect results.
+ #[prost(message, optional, tag="1")]
+ pub change: ::core::option::Option<PermissionSetChange>,
+ /// cursor points to a specific permission set in a revision.
+ /// The consumer should keep track of the cursor in order to resume streaming in the event of consumer restarts. This
+ /// is particularly important in backfill scenarios that may take hours or event days to complete.
+ #[prost(message, optional, tag="2")]
+ pub cursor: ::core::option::Option<Cursor>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct PermissionSetChange {
+ /// revision represents the revision at which the permission set change occurred.
+ #[prost(message, optional, tag="1")]
+ pub at_revision: ::core::option::Option<super::super::v1::ZedToken>,
+ /// operation represents the type of set operation that took place as part of the change
+ #[prost(enumeration="permission_set_change::SetOperation", tag="2")]
+ pub operation: i32,
+ /// parent_set represents the permission set parent of either another set or a member
+ #[prost(message, optional, tag="3")]
+ pub parent_set: ::core::option::Option<SetReference>,
+ #[prost(oneof="permission_set_change::Child", tags="4, 5")]
+ pub child: ::core::option::Option<permission_set_change::Child>,
+}
+/// Nested message and enum types in `PermissionSetChange`.
+pub mod permission_set_change {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum SetOperation {
+ Unspecified = 0,
+ Added = 1,
+ Removed = 2,
+ }
+ impl SetOperation {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ SetOperation::Unspecified => "SET_OPERATION_UNSPECIFIED",
+ SetOperation::Added => "SET_OPERATION_ADDED",
+ SetOperation::Removed => "SET_OPERATION_REMOVED",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "SET_OPERATION_UNSPECIFIED" => Some(Self::Unspecified),
+ "SET_OPERATION_ADDED" => Some(Self::Added),
+ "SET_OPERATION_REMOVED" => Some(Self::Removed),
+ _ => None,
+ }
+ }
+ }
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Child {
+ /// child_set represents the scenario where another set is considered member of the parent set
+ #[prost(message, tag="4")]
+ ChildSet(super::SetReference),
+ /// child_member represents the scenario where an specific object is considered member of the parent set
+ #[prost(message, tag="5")]
+ ChildMember(super::MemberReference),
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct SetReference {
+ /// object_type is the type of object in a permission set
+ #[prost(string, tag="1")]
+ pub object_type: ::prost::alloc::string::String,
+ /// object_id is the ID of a permission set
+ #[prost(string, tag="2")]
+ pub object_id: ::prost::alloc::string::String,
+ /// permission_or_relation is the permission or relation referenced by this permission set
+ #[prost(string, tag="3")]
+ pub permission_or_relation: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct MemberReference {
+ /// object_type is the type of object of a permission set member
+ #[prost(string, tag="1")]
+ pub object_type: ::prost::alloc::string::String,
+ /// object_id is the ID of a permission set member
+ #[prost(string, tag="2")]
+ pub object_id: ::prost::alloc::string::String,
+ /// optional_permission_or_relation is the permission or relation referenced by this permission set member
+ #[prost(string, tag="3")]
+ pub optional_permission_or_relation: ::prost::alloc::string::String,
+}
+/// LookupPermissionSetsRequired is a signal that the consumer should perform a LookupPermissionSets call because
+/// the permission set snapshot needs to be rebuilt from scratch. This typically happens when the origin SpiceDB
+/// cluster has seen its schema changed, see BreakingSchemaChange event.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct LookupPermissionSetsRequired {
+ /// required_lookup_at is the snapshot revision at which the permission set needs to be rebuilt to.
+ #[prost(message, optional, tag="1")]
+ pub required_lookup_at: ::core::option::Option<super::super::v1::ZedToken>,
+}
+/// BreakingSchemaChange is used to signal a breaking schema change has happened, and that the consumer should
+/// expect delays in the ingestion of new changes, because the permission set snapshot needs to be rebuilt from scratch.
+/// Once the snapshot is ready, the consumer will receive a LookupPermissionSetsRequired event.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BreakingSchemaChange {
+ /// change_at is the revision at which a breaking schema event has happened.
+ #[prost(message, optional, tag="1")]
+ pub change_at: ::core::option::Option<super::super::v1::ZedToken>,
+}
+// @@protoc_insertion_point(module)
diff --git a/src/rpc/authzed.api.v1.rs b/src/rpc/authzed.api.v1.rs
new file mode 100644
index 00000000..6ad6df94
--- /dev/null
+++ b/src/rpc/authzed.api.v1.rs
@@ -0,0 +1,2496 @@
+// @generated
+// This file is @generated by prost-build.
+/// Relationship specifies how a resource relates to a subject. Relationships
+/// form the data for the graph over which all permissions questions are
+/// answered.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct Relationship {
+ /// resource is the resource to which the subject is related, in some manner
+ #[prost(message, optional, tag="1")]
+ pub resource: ::core::option::Option<ObjectReference>,
+ /// relation is how the resource and subject are related.
+ #[prost(string, tag="2")]
+ pub relation: ::prost::alloc::string::String,
+ /// subject is the subject to which the resource is related, in some manner.
+ #[prost(message, optional, tag="3")]
+ pub subject: ::core::option::Option<SubjectReference>,
+ /// optional_caveat is a reference to a the caveat that must be enforced over the relationship
+ #[prost(message, optional, tag="4")]
+ pub optional_caveat: ::core::option::Option<ContextualizedCaveat>,
+ /// optional_expires_at is the time at which the relationship expires, if any.
+ #[prost(message, optional, tag="5")]
+ pub optional_expires_at: ::core::option::Option<super::super::super::google::protobuf::Timestamp>,
+}
+/// ContextualizedCaveat represents a reference to a caveat to be used by caveated relationships.
+/// The context consists of key-value pairs that will be injected at evaluation time.
+/// The keys must match the arguments defined on the caveat in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ContextualizedCaveat {
+ /// caveat_name is the name of the caveat expression to use, as defined in the schema
+ #[prost(string, tag="1")]
+ pub caveat_name: ::prost::alloc::string::String,
+ /// context consists of any named values that are defined at write time for the caveat expression
+ #[prost(message, optional, tag="2")]
+ pub context: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+}
+/// SubjectReference is used for referring to the subject portion of a
+/// Relationship. The relation component is optional and is used for defining a
+/// sub-relation on the subject, e.g. group:123#members
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct SubjectReference {
+ #[prost(message, optional, tag="1")]
+ pub object: ::core::option::Option<ObjectReference>,
+ #[prost(string, tag="2")]
+ pub optional_relation: ::prost::alloc::string::String,
+}
+/// ObjectReference is used to refer to a specific object in the system.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ObjectReference {
+ #[prost(string, tag="1")]
+ pub object_type: ::prost::alloc::string::String,
+ #[prost(string, tag="2")]
+ pub object_id: ::prost::alloc::string::String,
+}
+/// ZedToken is used to provide causality metadata between Write and Check
+/// requests.
+///
+/// See the authzed.api.v1.Consistency message for more information.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ZedToken {
+ #[prost(string, tag="1")]
+ pub token: ::prost::alloc::string::String,
+}
+/// Cursor is used to provide resumption of listing between calls to APIs
+/// such as LookupResources.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct Cursor {
+ #[prost(string, tag="1")]
+ pub token: ::prost::alloc::string::String,
+}
+/// RelationshipUpdate is used for mutating a single relationship within the
+/// service.
+///
+/// CREATE will create the relationship only if it doesn't exist, and error
+/// otherwise.
+///
+/// TOUCH will upsert the relationship, and will not error if it
+/// already exists.
+///
+/// DELETE will delete the relationship. If the relationship does not exist,
+/// this operation will no-op.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct RelationshipUpdate {
+ #[prost(enumeration="relationship_update::Operation", tag="1")]
+ pub operation: i32,
+ #[prost(message, optional, tag="2")]
+ pub relationship: ::core::option::Option<Relationship>,
+}
+/// Nested message and enum types in `RelationshipUpdate`.
+pub mod relationship_update {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum Operation {
+ Unspecified = 0,
+ Create = 1,
+ Touch = 2,
+ Delete = 3,
+ }
+ impl Operation {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ Operation::Unspecified => "OPERATION_UNSPECIFIED",
+ Operation::Create => "OPERATION_CREATE",
+ Operation::Touch => "OPERATION_TOUCH",
+ Operation::Delete => "OPERATION_DELETE",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "OPERATION_UNSPECIFIED" => Some(Self::Unspecified),
+ "OPERATION_CREATE" => Some(Self::Create),
+ "OPERATION_TOUCH" => Some(Self::Touch),
+ "OPERATION_DELETE" => Some(Self::Delete),
+ _ => None,
+ }
+ }
+ }
+}
+/// PermissionRelationshipTree is used for representing a tree of a resource and
+/// its permission relationships with other objects.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct PermissionRelationshipTree {
+ #[prost(message, optional, tag="3")]
+ pub expanded_object: ::core::option::Option<ObjectReference>,
+ #[prost(string, tag="4")]
+ pub expanded_relation: ::prost::alloc::string::String,
+ #[prost(oneof="permission_relationship_tree::TreeType", tags="1, 2")]
+ pub tree_type: ::core::option::Option<permission_relationship_tree::TreeType>,
+}
+/// Nested message and enum types in `PermissionRelationshipTree`.
+pub mod permission_relationship_tree {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum TreeType {
+ #[prost(message, tag="1")]
+ Intermediate(super::AlgebraicSubjectSet),
+ #[prost(message, tag="2")]
+ Leaf(super::DirectSubjectSet),
+ }
+}
+/// AlgebraicSubjectSet is a subject set which is computed based on applying the
+/// specified operation to the operands according to the algebra of sets.
+///
+/// UNION is a logical set containing the subject members from all operands.
+///
+/// INTERSECTION is a logical set containing only the subject members which are
+/// present in all operands.
+///
+/// EXCLUSION is a logical set containing only the subject members which are
+/// present in the first operand, and none of the other operands.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct AlgebraicSubjectSet {
+ #[prost(enumeration="algebraic_subject_set::Operation", tag="1")]
+ pub operation: i32,
+ #[prost(message, repeated, tag="2")]
+ pub children: ::prost::alloc::vec::Vec<PermissionRelationshipTree>,
+}
+/// Nested message and enum types in `AlgebraicSubjectSet`.
+pub mod algebraic_subject_set {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum Operation {
+ Unspecified = 0,
+ Union = 1,
+ Intersection = 2,
+ Exclusion = 3,
+ }
+ impl Operation {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ Operation::Unspecified => "OPERATION_UNSPECIFIED",
+ Operation::Union => "OPERATION_UNION",
+ Operation::Intersection => "OPERATION_INTERSECTION",
+ Operation::Exclusion => "OPERATION_EXCLUSION",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "OPERATION_UNSPECIFIED" => Some(Self::Unspecified),
+ "OPERATION_UNION" => Some(Self::Union),
+ "OPERATION_INTERSECTION" => Some(Self::Intersection),
+ "OPERATION_EXCLUSION" => Some(Self::Exclusion),
+ _ => None,
+ }
+ }
+ }
+}
+/// DirectSubjectSet is a subject set which is simply a collection of subjects.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DirectSubjectSet {
+ #[prost(message, repeated, tag="1")]
+ pub subjects: ::prost::alloc::vec::Vec<SubjectReference>,
+}
+/// PartialCaveatInfo carries information necessary for the client to take action
+/// in the event a response contains a partially evaluated caveat
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct PartialCaveatInfo {
+ /// missing_required_context is a list of one or more fields that were missing and prevented caveats
+ /// from being fully evaluated
+ #[prost(string, repeated, tag="1")]
+ pub missing_required_context: ::prost::alloc::vec::Vec<::prost::alloc::string::String>,
+}
+/// DebugInformation defines debug information returned by an API call in a footer when
+/// requested with a specific debugging header.
+///
+/// The specific debug information returned will depend on the type of the API call made.
+///
+/// See the github.com/authzed/authzed-go project for the specific header and footer names.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DebugInformation {
+ /// check holds debug information about a check request.
+ #[prost(message, optional, tag="1")]
+ pub check: ::core::option::Option<CheckDebugTrace>,
+ /// schema_used holds the schema used for the request.
+ #[prost(string, tag="2")]
+ pub schema_used: ::prost::alloc::string::String,
+}
+/// CheckDebugTrace is a recursive trace of the requests made for resolving a CheckPermission
+/// API call.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckDebugTrace {
+ /// resource holds the resource on which the Check was performed.
+ /// for batched calls, the object_id field contains a comma-separated list of object IDs
+ /// for all the resources checked in the batch.
+ #[prost(message, optional, tag="1")]
+ pub resource: ::core::option::Option<ObjectReference>,
+ /// permission holds the name of the permission or relation on which the Check was performed.
+ #[prost(string, tag="2")]
+ pub permission: ::prost::alloc::string::String,
+ /// permission_type holds information indicating whether it was a permission or relation.
+ #[prost(enumeration="check_debug_trace::PermissionType", tag="3")]
+ pub permission_type: i32,
+ /// subject holds the subject on which the Check was performed. This will be static across all calls within
+ /// the same Check tree.
+ #[prost(message, optional, tag="4")]
+ pub subject: ::core::option::Option<SubjectReference>,
+ /// result holds the result of the Check call.
+ #[prost(enumeration="check_debug_trace::Permissionship", tag="5")]
+ pub result: i32,
+ /// caveat_evaluation_info holds information about the caveat evaluated for this step of the trace.
+ #[prost(message, optional, tag="8")]
+ pub caveat_evaluation_info: ::core::option::Option<CaveatEvalInfo>,
+ /// duration holds the time spent executing this Check operation.
+ #[prost(message, optional, tag="9")]
+ pub duration: ::core::option::Option<super::super::super::google::protobuf::Duration>,
+ /// optional_expires_at is the time at which at least one of the relationships used to
+ /// compute this result, expires (if any). This is *not* related to the caching window.
+ #[prost(message, optional, tag="10")]
+ pub optional_expires_at: ::core::option::Option<super::super::super::google::protobuf::Timestamp>,
+ /// trace_operation_id is a unique identifier for this trace's operation, that will
+ /// be shared for all traces created for the same check operation in SpiceDB.
+ ///
+ /// In cases where SpiceDB performs automatic batching of subproblems, this ID can be used
+ /// to correlate work that was shared across multiple traces.
+ ///
+ /// This identifier is generated by SpiceDB, is to be considered opaque to the caller
+ /// and only guaranteed to be unique within the same overall Check or CheckBulk operation.
+ #[prost(string, tag="11")]
+ pub trace_operation_id: ::prost::alloc::string::String,
+ /// source holds the source of the result. It is of the form:
+ /// `<sourcetype>:<sourceid>`, where sourcetype can be, among others:
+ /// `spicedb`, `materialize`, etc.
+ #[prost(string, tag="12")]
+ pub source: ::prost::alloc::string::String,
+ /// resolution holds information about how the problem was resolved.
+ #[prost(oneof="check_debug_trace::Resolution", tags="6, 7")]
+ pub resolution: ::core::option::Option<check_debug_trace::Resolution>,
+}
+/// Nested message and enum types in `CheckDebugTrace`.
+pub mod check_debug_trace {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+ pub struct SubProblems {
+ #[prost(message, repeated, tag="1")]
+ pub traces: ::prost::alloc::vec::Vec<super::CheckDebugTrace>,
+ }
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum PermissionType {
+ Unspecified = 0,
+ Relation = 1,
+ Permission = 2,
+ }
+ impl PermissionType {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ PermissionType::Unspecified => "PERMISSION_TYPE_UNSPECIFIED",
+ PermissionType::Relation => "PERMISSION_TYPE_RELATION",
+ PermissionType::Permission => "PERMISSION_TYPE_PERMISSION",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "PERMISSION_TYPE_UNSPECIFIED" => Some(Self::Unspecified),
+ "PERMISSION_TYPE_RELATION" => Some(Self::Relation),
+ "PERMISSION_TYPE_PERMISSION" => Some(Self::Permission),
+ _ => None,
+ }
+ }
+ }
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum Permissionship {
+ Unspecified = 0,
+ NoPermission = 1,
+ HasPermission = 2,
+ ConditionalPermission = 3,
+ }
+ impl Permissionship {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ Permissionship::Unspecified => "PERMISSIONSHIP_UNSPECIFIED",
+ Permissionship::NoPermission => "PERMISSIONSHIP_NO_PERMISSION",
+ Permissionship::HasPermission => "PERMISSIONSHIP_HAS_PERMISSION",
+ Permissionship::ConditionalPermission => "PERMISSIONSHIP_CONDITIONAL_PERMISSION",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "PERMISSIONSHIP_UNSPECIFIED" => Some(Self::Unspecified),
+ "PERMISSIONSHIP_NO_PERMISSION" => Some(Self::NoPermission),
+ "PERMISSIONSHIP_HAS_PERMISSION" => Some(Self::HasPermission),
+ "PERMISSIONSHIP_CONDITIONAL_PERMISSION" => Some(Self::ConditionalPermission),
+ _ => None,
+ }
+ }
+ }
+ /// resolution holds information about how the problem was resolved.
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Resolution {
+ /// was_cached_result, if true, indicates that the result was found in the cache and returned directly.
+ #[prost(bool, tag="6")]
+ WasCachedResult(bool),
+ /// sub_problems holds the sub problems that were executed to resolve the answer to this Check. An empty list
+ /// and a permissionship of PERMISSIONSHIP_HAS_PERMISSION indicates the subject was found within this relation.
+ #[prost(message, tag="7")]
+ SubProblems(SubProblems),
+ }
+}
+/// CaveatEvalInfo holds information about a caveat expression that was evaluated.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CaveatEvalInfo {
+ /// expression is the expression that was evaluated.
+ #[prost(string, tag="1")]
+ pub expression: ::prost::alloc::string::String,
+ /// result is the result of the evaluation.
+ #[prost(enumeration="caveat_eval_info::Result", tag="2")]
+ pub result: i32,
+ /// context consists of any named values that were used for evaluating the caveat expression.
+ #[prost(message, optional, tag="3")]
+ pub context: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+ /// partial_caveat_info holds information of a partially-evaluated caveated response, if applicable.
+ #[prost(message, optional, tag="4")]
+ pub partial_caveat_info: ::core::option::Option<PartialCaveatInfo>,
+ /// caveat_name is the name of the caveat that was executed, if applicable.
+ #[prost(string, tag="5")]
+ pub caveat_name: ::prost::alloc::string::String,
+}
+/// Nested message and enum types in `CaveatEvalInfo`.
+pub mod caveat_eval_info {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum Result {
+ Unspecified = 0,
+ Unevaluated = 1,
+ False = 2,
+ True = 3,
+ MissingSomeContext = 4,
+ }
+ impl Result {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ Result::Unspecified => "RESULT_UNSPECIFIED",
+ Result::Unevaluated => "RESULT_UNEVALUATED",
+ Result::False => "RESULT_FALSE",
+ Result::True => "RESULT_TRUE",
+ Result::MissingSomeContext => "RESULT_MISSING_SOME_CONTEXT",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "RESULT_UNSPECIFIED" => Some(Self::Unspecified),
+ "RESULT_UNEVALUATED" => Some(Self::Unevaluated),
+ "RESULT_FALSE" => Some(Self::False),
+ "RESULT_TRUE" => Some(Self::True),
+ "RESULT_MISSING_SOME_CONTEXT" => Some(Self::MissingSomeContext),
+ _ => None,
+ }
+ }
+ }
+}
+/// Defines the supported values for `google.rpc.ErrorInfo.reason` for the
+/// `authzed.com` error domain.
+#[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+#[repr(i32)]
+pub enum ErrorReason {
+ /// Do not use this default value.
+ Unspecified = 0,
+ /// The request gave a schema that could not be parsed.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_SCHEMA_PARSE_ERROR",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "start_line_number": "1",
+ /// "start_column_position": "19",
+ /// "end_line_number": "1",
+ /// "end_column_position": "19",
+ /// "source_code": "somedefinition",
+ /// }
+ /// }
+ ///
+ /// The line numbers and column positions are 0-indexed and may not be present.
+ SchemaParseError = 1,
+ /// The request contains a schema with a type error.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_SCHEMA_TYPE_ERROR",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "definition_name": "somedefinition",
+ /// ... additional keys based on the kind of type error ...
+ /// }
+ /// }
+ SchemaTypeError = 2,
+ /// The request referenced an unknown object definition in the schema.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_UNKNOWN_DEFINITION",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "definition_name": "somedefinition"
+ /// }
+ /// }
+ UnknownDefinition = 3,
+ /// The request referenced an unknown relation or permission under a definition in the schema.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_UNKNOWN_RELATION_OR_PERMISSION",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "definition_name": "somedefinition",
+ /// "relation_or_permission_name": "somepermission"
+ /// }
+ /// }
+ UnknownRelationOrPermission = 4,
+ /// The WriteRelationships request contained more updates than the maximum configured.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// { "reason": "ERROR_REASON_TOO_MANY_UPDATES_IN_REQUEST",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "update_count": "525",
+ /// "maximum_updates_allowed": "500",
+ /// }
+ /// }
+ TooManyUpdatesInRequest = 5,
+ /// The request contained more preconditions than the maximum configured.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_TOO_MANY_PRECONDITIONS_IN_REQUEST",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "precondition_count": "525",
+ /// "maximum_preconditions_allowed": "500",
+ /// }
+ /// }
+ TooManyPreconditionsInRequest = 6,
+ /// The request contained a precondition that failed.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_WRITE_OR_DELETE_PRECONDITION_FAILURE",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "precondition_resource_type": "document",
+ /// ... other fields for the filter ...
+ /// "precondition_operation": "MUST_EXIST",
+ /// }
+ /// }
+ WriteOrDeletePreconditionFailure = 7,
+ /// A write or delete request was made to an instance that is deployed in read-only mode.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_SERVICE_READ_ONLY",
+ /// "domain": "authzed.com"
+ /// }
+ ServiceReadOnly = 8,
+ /// The request referenced an unknown caveat in the schema.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_UNKNOWN_CAVEAT",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "caveat_name": "somecaveat"
+ /// }
+ /// }
+ UnknownCaveat = 9,
+ /// The request tries to use a subject type that was not valid for a relation.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_INVALID_SUBJECT_TYPE",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "definition_name": "somedefinition",
+ /// "relation_name": "somerelation",
+ /// "subject_type": "user:*"
+ /// }
+ /// }
+ InvalidSubjectType = 10,
+ /// The request tries to specify a caveat parameter value with the wrong type.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_CAVEAT_PARAMETER_TYPE_ERROR",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "definition_name": "somedefinition",
+ /// "relation_name": "somerelation",
+ /// "caveat_name": "somecaveat",
+ /// "parameter_name": "someparameter",
+ /// "expected_type": "int",
+ /// }
+ /// }
+ CaveatParameterTypeError = 11,
+ /// The request tries to perform two or more updates on the same relationship in the same WriteRelationships call.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_UPDATES_ON_SAME_RELATIONSHIP",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "definition_name": "somedefinition",
+ /// "relationship": "somerelationship",
+ /// }
+ /// }
+ UpdatesOnSameRelationship = 12,
+ /// The request tries to write a relationship on a permission instead of a relation.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_CANNOT_UPDATE_PERMISSION",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "definition_name": "somedefinition",
+ /// "permission_name": "somerelation",
+ /// }
+ /// }
+ CannotUpdatePermission = 13,
+ /// The request failed to evaluate a caveat expression due to an error.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_CAVEAT_EVALUATION_ERROR",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "caveat_name": "somecaveat",
+ /// }
+ /// }
+ CaveatEvaluationError = 14,
+ /// The request failed because the provided cursor was invalid in some way.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_INVALID_CURSOR",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// ... additional keys based on the kind of cursor error ...
+ /// }
+ /// }
+ InvalidCursor = 15,
+ /// The request failed because there are too many matching relationships to be
+ /// deleted within a single transactional deletion call. To avoid, set
+ /// `optional_allow_partial_deletions` to true on the DeleteRelationships call.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_TOO_MANY_RELATIONSHIPS_FOR_TRANSACTIONAL_DELETE",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// ... fields for the filter ...
+ /// }
+ /// }
+ TooManyRelationshipsForTransactionalDelete = 16,
+ /// The request failed because the client attempted to write a relationship
+ /// with a context that exceeded the configured server limit.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_MAX_RELATIONSHIP_CONTEXT_SIZE",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "relationship": "relationship_exceeding_the_limit",
+ /// "max_allowed_size": "server_max_allowed_context_size",
+ /// "context_size": "actual_relationship_context_size" ,
+ /// }
+ /// }
+ MaxRelationshipContextSize = 17,
+ /// The request failed because a relationship marked to be CREATEd
+ /// was already present within the datastore.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_ATTEMPT_TO_RECREATE_RELATIONSHIP",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "relationship": "relationship_that_already_existed",
+ /// "resource_type": "resource type",
+ /// "resource_object_id": "resource object id",
+ /// ... additional decomposed relationship fields ...
+ /// }
+ /// }
+ AttemptToRecreateRelationship = 18,
+ /// The request failed because it caused the maximum depth allowed to be
+ /// exceeded. This typically indicates that there is a circular data traversal
+ /// somewhere in the schema, but can also be raised if the data traversal is simply
+ /// too deep.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_MAXIMUM_DEPTH_EXCEEDED",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "maximum_depth_allowed": "50",
+ /// ... additional fields based on request type ...
+ /// }
+ /// }
+ MaximumDepthExceeded = 19,
+ /// The request failed due to a serialization error in the backend database.
+ /// This typically indicates that various in flight transactions conflicted with each other
+ /// and the database had to abort one or more of them. SpiceDB will retry a few times before returning
+ /// the error to the client.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_SERIALIZATION_FAILURE",
+ /// "domain": "authzed.com",
+ /// "metadata": {}
+ /// }
+ SerializationFailure = 20,
+ /// The request contained more check items than the maximum configured.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_TOO_MANY_CHECKS_IN_REQUEST",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "check_count": "525",
+ /// "maximum_checks_allowed": "500",
+ /// }
+ /// }
+ TooManyChecksInRequest = 21,
+ /// The request's specified limit is too large.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_EXCEEDS_MAXIMUM_ALLOWABLE_LIMIT",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "limit_provided": "525",
+ /// "maximum_limit_allowed": "500",
+ /// }
+ /// }
+ ExceedsMaximumAllowableLimit = 22,
+ /// The request failed because the provided filter was invalid in some way.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_INVALID_FILTER",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "filter": "...",
+ /// }
+ /// }
+ InvalidFilter = 23,
+ /// The request failed because too many concurrent updates were attempted
+ /// against the in-memory datastore.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_INMEMORY_TOO_MANY_CONCURRENT_UPDATES",
+ /// "domain": "authzed.com",
+ /// "metadata": {}
+ /// }
+ InmemoryTooManyConcurrentUpdates = 24,
+ /// The request failed because the precondition specified is empty.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_EMPTY_PRECONDITION",
+ /// "domain": "authzed.com",
+ /// "metadata": {}
+ /// }
+ EmptyPrecondition = 25,
+ /// The request failed because the counter was already registered.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_COUNTER_ALREADY_REGISTERED",
+ /// "domain": "authzed.com",
+ /// "metadata": { "counter_name": "name" }
+ /// }
+ CounterAlreadyRegistered = 26,
+ /// The request failed because the counter was not registered.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_COUNTER_NOT_REGISTERED",
+ /// "domain": "authzed.com",
+ /// "metadata": { "counter_name": "name" }
+ /// }
+ CounterNotRegistered = 27,
+ /// The request failed because a wildcard was not allowed. For CheckPermission,
+ /// this means that the subject or resource ID was a wildcard. For LookupResources,
+ /// this means that the subject ID was a wildcard.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_WILDCARD_NOT_ALLOWED",
+ /// "domain": "authzed.com",
+ /// "metadata": { "disallowed_field": "subject_id" }
+ /// }
+ WildcardNotAllowed = 28,
+ /// The request failed because the transaction metadata was too large.
+ ///
+ /// Example of an ErrorInfo:
+ ///
+ /// {
+ /// "reason": "ERROR_REASON_TRANSACTION_METADATA_TOO_LARGE",
+ /// "domain": "authzed.com",
+ /// "metadata": {
+ /// "metadata_byte_size": "1024",
+ /// "maximum_allowed_metadata_byte_size": "512",
+ /// }
+ /// }
+ TransactionMetadataTooLarge = 29,
+}
+impl ErrorReason {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ ErrorReason::Unspecified => "ERROR_REASON_UNSPECIFIED",
+ ErrorReason::SchemaParseError => "ERROR_REASON_SCHEMA_PARSE_ERROR",
+ ErrorReason::SchemaTypeError => "ERROR_REASON_SCHEMA_TYPE_ERROR",
+ ErrorReason::UnknownDefinition => "ERROR_REASON_UNKNOWN_DEFINITION",
+ ErrorReason::UnknownRelationOrPermission => "ERROR_REASON_UNKNOWN_RELATION_OR_PERMISSION",
+ ErrorReason::TooManyUpdatesInRequest => "ERROR_REASON_TOO_MANY_UPDATES_IN_REQUEST",
+ ErrorReason::TooManyPreconditionsInRequest => "ERROR_REASON_TOO_MANY_PRECONDITIONS_IN_REQUEST",
+ ErrorReason::WriteOrDeletePreconditionFailure => "ERROR_REASON_WRITE_OR_DELETE_PRECONDITION_FAILURE",
+ ErrorReason::ServiceReadOnly => "ERROR_REASON_SERVICE_READ_ONLY",
+ ErrorReason::UnknownCaveat => "ERROR_REASON_UNKNOWN_CAVEAT",
+ ErrorReason::InvalidSubjectType => "ERROR_REASON_INVALID_SUBJECT_TYPE",
+ ErrorReason::CaveatParameterTypeError => "ERROR_REASON_CAVEAT_PARAMETER_TYPE_ERROR",
+ ErrorReason::UpdatesOnSameRelationship => "ERROR_REASON_UPDATES_ON_SAME_RELATIONSHIP",
+ ErrorReason::CannotUpdatePermission => "ERROR_REASON_CANNOT_UPDATE_PERMISSION",
+ ErrorReason::CaveatEvaluationError => "ERROR_REASON_CAVEAT_EVALUATION_ERROR",
+ ErrorReason::InvalidCursor => "ERROR_REASON_INVALID_CURSOR",
+ ErrorReason::TooManyRelationshipsForTransactionalDelete => "ERROR_REASON_TOO_MANY_RELATIONSHIPS_FOR_TRANSACTIONAL_DELETE",
+ ErrorReason::MaxRelationshipContextSize => "ERROR_REASON_MAX_RELATIONSHIP_CONTEXT_SIZE",
+ ErrorReason::AttemptToRecreateRelationship => "ERROR_REASON_ATTEMPT_TO_RECREATE_RELATIONSHIP",
+ ErrorReason::MaximumDepthExceeded => "ERROR_REASON_MAXIMUM_DEPTH_EXCEEDED",
+ ErrorReason::SerializationFailure => "ERROR_REASON_SERIALIZATION_FAILURE",
+ ErrorReason::TooManyChecksInRequest => "ERROR_REASON_TOO_MANY_CHECKS_IN_REQUEST",
+ ErrorReason::ExceedsMaximumAllowableLimit => "ERROR_REASON_EXCEEDS_MAXIMUM_ALLOWABLE_LIMIT",
+ ErrorReason::InvalidFilter => "ERROR_REASON_INVALID_FILTER",
+ ErrorReason::InmemoryTooManyConcurrentUpdates => "ERROR_REASON_INMEMORY_TOO_MANY_CONCURRENT_UPDATES",
+ ErrorReason::EmptyPrecondition => "ERROR_REASON_EMPTY_PRECONDITION",
+ ErrorReason::CounterAlreadyRegistered => "ERROR_REASON_COUNTER_ALREADY_REGISTERED",
+ ErrorReason::CounterNotRegistered => "ERROR_REASON_COUNTER_NOT_REGISTERED",
+ ErrorReason::WildcardNotAllowed => "ERROR_REASON_WILDCARD_NOT_ALLOWED",
+ ErrorReason::TransactionMetadataTooLarge => "ERROR_REASON_TRANSACTION_METADATA_TOO_LARGE",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "ERROR_REASON_UNSPECIFIED" => Some(Self::Unspecified),
+ "ERROR_REASON_SCHEMA_PARSE_ERROR" => Some(Self::SchemaParseError),
+ "ERROR_REASON_SCHEMA_TYPE_ERROR" => Some(Self::SchemaTypeError),
+ "ERROR_REASON_UNKNOWN_DEFINITION" => Some(Self::UnknownDefinition),
+ "ERROR_REASON_UNKNOWN_RELATION_OR_PERMISSION" => Some(Self::UnknownRelationOrPermission),
+ "ERROR_REASON_TOO_MANY_UPDATES_IN_REQUEST" => Some(Self::TooManyUpdatesInRequest),
+ "ERROR_REASON_TOO_MANY_PRECONDITIONS_IN_REQUEST" => Some(Self::TooManyPreconditionsInRequest),
+ "ERROR_REASON_WRITE_OR_DELETE_PRECONDITION_FAILURE" => Some(Self::WriteOrDeletePreconditionFailure),
+ "ERROR_REASON_SERVICE_READ_ONLY" => Some(Self::ServiceReadOnly),
+ "ERROR_REASON_UNKNOWN_CAVEAT" => Some(Self::UnknownCaveat),
+ "ERROR_REASON_INVALID_SUBJECT_TYPE" => Some(Self::InvalidSubjectType),
+ "ERROR_REASON_CAVEAT_PARAMETER_TYPE_ERROR" => Some(Self::CaveatParameterTypeError),
+ "ERROR_REASON_UPDATES_ON_SAME_RELATIONSHIP" => Some(Self::UpdatesOnSameRelationship),
+ "ERROR_REASON_CANNOT_UPDATE_PERMISSION" => Some(Self::CannotUpdatePermission),
+ "ERROR_REASON_CAVEAT_EVALUATION_ERROR" => Some(Self::CaveatEvaluationError),
+ "ERROR_REASON_INVALID_CURSOR" => Some(Self::InvalidCursor),
+ "ERROR_REASON_TOO_MANY_RELATIONSHIPS_FOR_TRANSACTIONAL_DELETE" => Some(Self::TooManyRelationshipsForTransactionalDelete),
+ "ERROR_REASON_MAX_RELATIONSHIP_CONTEXT_SIZE" => Some(Self::MaxRelationshipContextSize),
+ "ERROR_REASON_ATTEMPT_TO_RECREATE_RELATIONSHIP" => Some(Self::AttemptToRecreateRelationship),
+ "ERROR_REASON_MAXIMUM_DEPTH_EXCEEDED" => Some(Self::MaximumDepthExceeded),
+ "ERROR_REASON_SERIALIZATION_FAILURE" => Some(Self::SerializationFailure),
+ "ERROR_REASON_TOO_MANY_CHECKS_IN_REQUEST" => Some(Self::TooManyChecksInRequest),
+ "ERROR_REASON_EXCEEDS_MAXIMUM_ALLOWABLE_LIMIT" => Some(Self::ExceedsMaximumAllowableLimit),
+ "ERROR_REASON_INVALID_FILTER" => Some(Self::InvalidFilter),
+ "ERROR_REASON_INMEMORY_TOO_MANY_CONCURRENT_UPDATES" => Some(Self::InmemoryTooManyConcurrentUpdates),
+ "ERROR_REASON_EMPTY_PRECONDITION" => Some(Self::EmptyPrecondition),
+ "ERROR_REASON_COUNTER_ALREADY_REGISTERED" => Some(Self::CounterAlreadyRegistered),
+ "ERROR_REASON_COUNTER_NOT_REGISTERED" => Some(Self::CounterNotRegistered),
+ "ERROR_REASON_WILDCARD_NOT_ALLOWED" => Some(Self::WildcardNotAllowed),
+ "ERROR_REASON_TRANSACTION_METADATA_TOO_LARGE" => Some(Self::TransactionMetadataTooLarge),
+ _ => None,
+ }
+ }
+}
+/// Consistency will define how a request is handled by the backend.
+/// By defining a consistency requirement, and a token at which those
+/// requirements should be applied, where applicable.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct Consistency {
+ #[prost(oneof="consistency::Requirement", tags="1, 2, 3, 4")]
+ pub requirement: ::core::option::Option<consistency::Requirement>,
+}
+/// Nested message and enum types in `Consistency`.
+pub mod consistency {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Requirement {
+ /// minimize_latency indicates that the latency for the call should be
+ /// minimized by having the system select the fastest snapshot available.
+ #[prost(bool, tag="1")]
+ MinimizeLatency(bool),
+ /// at_least_as_fresh indicates that all data used in the API call must be
+ /// *at least as fresh* as that found in the ZedToken; more recent data might
+ /// be used if available or faster.
+ #[prost(message, tag="2")]
+ AtLeastAsFresh(super::ZedToken),
+ /// at_exact_snapshot indicates that all data used in the API call must be
+ /// *at the given* snapshot in time; if the snapshot is no longer available,
+ /// an error will be returned to the caller.
+ #[prost(message, tag="3")]
+ AtExactSnapshot(super::ZedToken),
+ /// fully_consistent indicates that all data used in the API call *must* be
+ /// at the most recent snapshot found.
+ ///
+ /// NOTE: using this method can be *quite slow*, so unless there is a need to
+ /// do so, it is recommended to use `at_least_as_fresh` with a stored
+ /// ZedToken.
+ #[prost(bool, tag="4")]
+ FullyConsistent(bool),
+ }
+}
+/// RelationshipFilter is a collection of filters which when applied to a
+/// relationship will return relationships that have exactly matching fields.
+///
+/// All fields are optional and if left unspecified will not filter relationships,
+/// but at least one field must be specified.
+///
+/// NOTE: The performance of the API will be affected by the selection of fields
+/// on which to filter. If a field is not indexed, the performance of the API
+/// can be significantly slower.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct RelationshipFilter {
+ /// resource_type is the *optional* resource type of the relationship.
+ /// NOTE: It is not prefixed with "optional_" for legacy compatibility.
+ #[prost(string, tag="1")]
+ pub resource_type: ::prost::alloc::string::String,
+ /// optional_resource_id is the *optional* resource ID of the relationship.
+ /// If specified, optional_resource_id_prefix cannot be specified.
+ #[prost(string, tag="2")]
+ pub optional_resource_id: ::prost::alloc::string::String,
+ /// optional_resource_id_prefix is the *optional* prefix for the resource ID of the relationship.
+ /// If specified, optional_resource_id cannot be specified.
+ #[prost(string, tag="5")]
+ pub optional_resource_id_prefix: ::prost::alloc::string::String,
+ /// relation is the *optional* relation of the relationship.
+ #[prost(string, tag="3")]
+ pub optional_relation: ::prost::alloc::string::String,
+ /// optional_subject_filter is the optional filter for the subjects of the relationships.
+ #[prost(message, optional, tag="4")]
+ pub optional_subject_filter: ::core::option::Option<SubjectFilter>,
+}
+/// SubjectFilter specifies a filter on the subject of a relationship.
+///
+/// subject_type is required and all other fields are optional, and will not
+/// impose any additional requirements if left unspecified.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct SubjectFilter {
+ #[prost(string, tag="1")]
+ pub subject_type: ::prost::alloc::string::String,
+ #[prost(string, tag="2")]
+ pub optional_subject_id: ::prost::alloc::string::String,
+ #[prost(message, optional, tag="3")]
+ pub optional_relation: ::core::option::Option<subject_filter::RelationFilter>,
+}
+/// Nested message and enum types in `SubjectFilter`.
+pub mod subject_filter {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+ pub struct RelationFilter {
+ #[prost(string, tag="1")]
+ pub relation: ::prost::alloc::string::String,
+ }
+}
+/// ReadRelationshipsRequest specifies one or more filters used to read matching
+/// relationships within the system.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReadRelationshipsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// relationship_filter defines the filter to be applied to the relationships
+ /// to be returned.
+ #[prost(message, optional, tag="2")]
+ pub relationship_filter: ::core::option::Option<RelationshipFilter>,
+ /// optional_limit, if non-zero, specifies the limit on the number of relationships to return
+ /// before the stream is closed on the server side. By default, the stream will continue
+ /// resolving relationships until exhausted or the stream is closed due to the client or a
+ /// network issue.
+ #[prost(uint32, tag="3")]
+ pub optional_limit: u32,
+ /// optional_cursor, if specified, indicates the cursor after which results should resume being returned.
+ /// The cursor can be found on the ReadRelationshipsResponse object.
+ #[prost(message, optional, tag="4")]
+ pub optional_cursor: ::core::option::Option<Cursor>,
+}
+/// ReadRelationshipsResponse contains a Relationship found that matches the
+/// specified relationship filter(s). A instance of this response message will
+/// be streamed to the client for each relationship found.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReadRelationshipsResponse {
+ /// read_at is the ZedToken at which the relationship was found.
+ #[prost(message, optional, tag="1")]
+ pub read_at: ::core::option::Option<ZedToken>,
+ /// relationship is the found relationship.
+ #[prost(message, optional, tag="2")]
+ pub relationship: ::core::option::Option<Relationship>,
+ /// after_result_cursor holds a cursor that can be used to resume the ReadRelationships stream after this
+ /// result.
+ #[prost(message, optional, tag="3")]
+ pub after_result_cursor: ::core::option::Option<Cursor>,
+}
+/// Precondition specifies how and the existence or absence of certain
+/// relationships as expressed through the accompanying filter should affect
+/// whether or not the operation proceeds.
+///
+/// MUST_NOT_MATCH will fail the parent request if any relationships match the
+/// relationships filter.
+/// MUST_MATCH will fail the parent request if there are no
+/// relationships that match the filter.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct Precondition {
+ #[prost(enumeration="precondition::Operation", tag="1")]
+ pub operation: i32,
+ #[prost(message, optional, tag="2")]
+ pub filter: ::core::option::Option<RelationshipFilter>,
+}
+/// Nested message and enum types in `Precondition`.
+pub mod precondition {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum Operation {
+ Unspecified = 0,
+ MustNotMatch = 1,
+ MustMatch = 2,
+ }
+ impl Operation {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ Operation::Unspecified => "OPERATION_UNSPECIFIED",
+ Operation::MustNotMatch => "OPERATION_MUST_NOT_MATCH",
+ Operation::MustMatch => "OPERATION_MUST_MATCH",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "OPERATION_UNSPECIFIED" => Some(Self::Unspecified),
+ "OPERATION_MUST_NOT_MATCH" => Some(Self::MustNotMatch),
+ "OPERATION_MUST_MATCH" => Some(Self::MustMatch),
+ _ => None,
+ }
+ }
+ }
+}
+/// WriteRelationshipsRequest contains a list of Relationship mutations that
+/// should be applied to the service. If the optional_preconditions parameter
+/// is included, all of the specified preconditions must also be satisfied before
+/// the write will be committed. All updates will be applied transactionally,
+/// and if any preconditions fail, the entire transaction will be reverted.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WriteRelationshipsRequest {
+ #[prost(message, repeated, tag="1")]
+ pub updates: ::prost::alloc::vec::Vec<RelationshipUpdate>,
+ /// To be bounded by configuration
+ #[prost(message, repeated, tag="2")]
+ pub optional_preconditions: ::prost::alloc::vec::Vec<Precondition>,
+ /// optional_transaction_metadata is an optional field that can be used to store metadata about the transaction.
+ /// If specified, this metadata will be supplied in the WatchResponse for the updates associated with this
+ /// transaction.
+ #[prost(message, optional, tag="3")]
+ pub optional_transaction_metadata: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WriteRelationshipsResponse {
+ #[prost(message, optional, tag="1")]
+ pub written_at: ::core::option::Option<ZedToken>,
+}
+/// DeleteRelationshipsRequest specifies which Relationships should be deleted,
+/// requesting the delete of *ALL* relationships that match the specified
+/// filters. If the optional_preconditions parameter is included, all of the
+/// specified preconditions must also be satisfied before the delete will be
+/// executed.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DeleteRelationshipsRequest {
+ #[prost(message, optional, tag="1")]
+ pub relationship_filter: ::core::option::Option<RelationshipFilter>,
+ /// To be bounded by configuration
+ #[prost(message, repeated, tag="2")]
+ pub optional_preconditions: ::prost::alloc::vec::Vec<Precondition>,
+ /// optional_limit, if non-zero, specifies the limit on the number of relationships to be deleted.
+ /// If there are more matching relationships found to be deleted than the limit specified here,
+ /// the deletion call will fail with an error to prevent partial deletion. If partial deletion
+ /// is needed, specify below that partial deletion is allowed. Partial deletions can be used
+ /// in a loop to delete large amounts of relationships in a *non-transactional* manner.
+ #[prost(uint32, tag="3")]
+ pub optional_limit: u32,
+ /// optional_allow_partial_deletions, if true and a limit is specified, will delete matching found
+ /// relationships up to the count specified in optional_limit, and no more.
+ #[prost(bool, tag="4")]
+ pub optional_allow_partial_deletions: bool,
+ /// optional_transaction_metadata is an optional field that can be used to store metadata about the transaction.
+ /// If specified, this metadata will be supplied in the WatchResponse for the deletions associated with
+ /// this transaction.
+ #[prost(message, optional, tag="5")]
+ pub optional_transaction_metadata: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DeleteRelationshipsResponse {
+ /// deleted_at is the revision at which the relationships were deleted.
+ #[prost(message, optional, tag="1")]
+ pub deleted_at: ::core::option::Option<ZedToken>,
+ /// deletion_progress is an enumeration of the possible outcomes that occurred when attempting to delete the specified relationships.
+ #[prost(enumeration="delete_relationships_response::DeletionProgress", tag="2")]
+ pub deletion_progress: i32,
+ /// relationships_deleted_count is the number of relationships that were deleted.
+ #[prost(uint64, tag="3")]
+ pub relationships_deleted_count: u64,
+}
+/// Nested message and enum types in `DeleteRelationshipsResponse`.
+pub mod delete_relationships_response {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum DeletionProgress {
+ Unspecified = 0,
+ /// DELETION_PROGRESS_COMPLETE indicates that all remaining relationships matching the filter
+ /// were deleted. Will be returned even if no relationships were deleted.
+ Complete = 1,
+ /// DELETION_PROGRESS_PARTIAL indicates that a subset of the relationships matching the filter
+ /// were deleted. Only returned if optional_allow_partial_deletions was true, an optional_limit was
+ /// specified, and there existed more relationships matching the filter than optional_limit would allow.
+ /// Once all remaining relationships have been deleted, DELETION_PROGRESS_COMPLETE will be returned.
+ Partial = 2,
+ }
+ impl DeletionProgress {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ DeletionProgress::Unspecified => "DELETION_PROGRESS_UNSPECIFIED",
+ DeletionProgress::Complete => "DELETION_PROGRESS_COMPLETE",
+ DeletionProgress::Partial => "DELETION_PROGRESS_PARTIAL",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "DELETION_PROGRESS_UNSPECIFIED" => Some(Self::Unspecified),
+ "DELETION_PROGRESS_COMPLETE" => Some(Self::Complete),
+ "DELETION_PROGRESS_PARTIAL" => Some(Self::Partial),
+ _ => None,
+ }
+ }
+ }
+}
+/// CheckPermissionRequest issues a check on whether a subject has a permission
+/// or is a member of a relation, on a specific resource.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckPermissionRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// resource is the resource on which to check the permission or relation.
+ #[prost(message, optional, tag="2")]
+ pub resource: ::core::option::Option<ObjectReference>,
+ /// permission is the name of the permission (or relation) on which to execute
+ /// the check.
+ #[prost(string, tag="3")]
+ pub permission: ::prost::alloc::string::String,
+ /// subject is the subject that will be checked for the permission or relation.
+ #[prost(message, optional, tag="4")]
+ pub subject: ::core::option::Option<SubjectReference>,
+ /// context consists of named values that are injected into the caveat evaluation context
+ #[prost(message, optional, tag="5")]
+ pub context: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+ /// with_tracing, if true, indicates that the response should include a debug trace.
+ /// This can be useful for debugging and performance analysis, but adds a small amount
+ /// of compute overhead to the request.
+ #[prost(bool, tag="6")]
+ pub with_tracing: bool,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckPermissionResponse {
+ #[prost(message, optional, tag="1")]
+ pub checked_at: ::core::option::Option<ZedToken>,
+ /// Permissionship communicates whether or not the subject has the requested
+ /// permission or has a relationship with the given resource, over the given
+ /// relation.
+ ///
+ /// This value will be authzed.api.v1.PERMISSIONSHIP_HAS_PERMISSION if the
+ /// requested subject is a member of the computed permission set or there
+ /// exists a relationship with the requested relation from the given resource
+ /// to the given subject.
+ #[prost(enumeration="check_permission_response::Permissionship", tag="2")]
+ pub permissionship: i32,
+ /// partial_caveat_info holds information of a partially-evaluated caveated response
+ #[prost(message, optional, tag="3")]
+ pub partial_caveat_info: ::core::option::Option<PartialCaveatInfo>,
+ /// debug_trace is the debugging trace of this check, if requested.
+ #[prost(message, optional, tag="4")]
+ pub debug_trace: ::core::option::Option<DebugInformation>,
+ /// optional_expires_at is the time at which at least one of the relationships used to
+ /// compute this result, expires (if any). This is *not* related to the caching window.
+ #[prost(message, optional, tag="5")]
+ pub optional_expires_at: ::core::option::Option<super::super::super::google::protobuf::Timestamp>,
+}
+/// Nested message and enum types in `CheckPermissionResponse`.
+pub mod check_permission_response {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum Permissionship {
+ Unspecified = 0,
+ NoPermission = 1,
+ HasPermission = 2,
+ ConditionalPermission = 3,
+ }
+ impl Permissionship {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ Permissionship::Unspecified => "PERMISSIONSHIP_UNSPECIFIED",
+ Permissionship::NoPermission => "PERMISSIONSHIP_NO_PERMISSION",
+ Permissionship::HasPermission => "PERMISSIONSHIP_HAS_PERMISSION",
+ Permissionship::ConditionalPermission => "PERMISSIONSHIP_CONDITIONAL_PERMISSION",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "PERMISSIONSHIP_UNSPECIFIED" => Some(Self::Unspecified),
+ "PERMISSIONSHIP_NO_PERMISSION" => Some(Self::NoPermission),
+ "PERMISSIONSHIP_HAS_PERMISSION" => Some(Self::HasPermission),
+ "PERMISSIONSHIP_CONDITIONAL_PERMISSION" => Some(Self::ConditionalPermission),
+ _ => None,
+ }
+ }
+ }
+}
+/// CheckBulkPermissionsRequest issues a check on whether a subject has permission
+/// or is a member of a relation on a specific resource for each item in the list.
+///
+/// The ordering of the items in the response is maintained in the response.
+/// Checks with the same subject/permission will automatically be batched for performance optimization.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckBulkPermissionsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[prost(message, repeated, tag="2")]
+ pub items: ::prost::alloc::vec::Vec<CheckBulkPermissionsRequestItem>,
+ /// with_tracing, if true, indicates that each response should include a debug trace.
+ /// This can be useful for debugging and performance analysis, but adds a small amount
+ /// of compute overhead to the request.
+ #[prost(bool, tag="3")]
+ pub with_tracing: bool,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckBulkPermissionsRequestItem {
+ #[prost(message, optional, tag="1")]
+ pub resource: ::core::option::Option<ObjectReference>,
+ #[prost(string, tag="2")]
+ pub permission: ::prost::alloc::string::String,
+ #[prost(message, optional, tag="3")]
+ pub subject: ::core::option::Option<SubjectReference>,
+ #[prost(message, optional, tag="4")]
+ pub context: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckBulkPermissionsResponse {
+ #[prost(message, optional, tag="1")]
+ pub checked_at: ::core::option::Option<ZedToken>,
+ #[prost(message, repeated, tag="2")]
+ pub pairs: ::prost::alloc::vec::Vec<CheckBulkPermissionsPair>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckBulkPermissionsPair {
+ #[prost(message, optional, tag="1")]
+ pub request: ::core::option::Option<CheckBulkPermissionsRequestItem>,
+ #[prost(oneof="check_bulk_permissions_pair::Response", tags="2, 3")]
+ pub response: ::core::option::Option<check_bulk_permissions_pair::Response>,
+}
+/// Nested message and enum types in `CheckBulkPermissionsPair`.
+pub mod check_bulk_permissions_pair {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Response {
+ #[prost(message, tag="2")]
+ Item(super::CheckBulkPermissionsResponseItem),
+ #[prost(message, tag="3")]
+ Error(super::super::super::super::google::rpc::Status),
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CheckBulkPermissionsResponseItem {
+ #[prost(enumeration="check_permission_response::Permissionship", tag="1")]
+ pub permissionship: i32,
+ #[prost(message, optional, tag="2")]
+ pub partial_caveat_info: ::core::option::Option<PartialCaveatInfo>,
+ /// debug_trace is the debugging trace of this check, if requested.
+ #[prost(message, optional, tag="3")]
+ pub debug_trace: ::core::option::Option<DebugInformation>,
+}
+/// ExpandPermissionTreeRequest returns a tree representing the expansion of all
+/// relationships found accessible from a permission or relation on a particular
+/// resource.
+///
+/// ExpandPermissionTreeRequest is typically used to determine the full set of
+/// subjects with a permission, along with the relationships that grant said
+/// access.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpandPermissionTreeRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// resource is the resource over which to run the expansion.
+ #[prost(message, optional, tag="2")]
+ pub resource: ::core::option::Option<ObjectReference>,
+ /// permission is the name of the permission or relation over which to run the
+ /// expansion for the resource.
+ #[prost(string, tag="3")]
+ pub permission: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpandPermissionTreeResponse {
+ #[prost(message, optional, tag="1")]
+ pub expanded_at: ::core::option::Option<ZedToken>,
+ /// tree_root is a tree structure whose leaf nodes are subjects, and
+ /// intermediate nodes represent the various operations (union, intersection,
+ /// exclusion) to reach those subjects.
+ #[prost(message, optional, tag="2")]
+ pub tree_root: ::core::option::Option<PermissionRelationshipTree>,
+}
+/// LookupResourcesRequest performs a lookup of all resources of a particular
+/// kind on which the subject has the specified permission or the relation in
+/// which the subject exists, streaming back the IDs of those resources.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct LookupResourcesRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// resource_object_type is the type of resource object for which the IDs will
+ /// be returned.
+ #[prost(string, tag="2")]
+ pub resource_object_type: ::prost::alloc::string::String,
+ /// permission is the name of the permission or relation for which the subject
+ /// must Check.
+ #[prost(string, tag="3")]
+ pub permission: ::prost::alloc::string::String,
+ /// subject is the subject with access to the resources.
+ #[prost(message, optional, tag="4")]
+ pub subject: ::core::option::Option<SubjectReference>,
+ /// context consists of named values that are injected into the caveat evaluation context
+ #[prost(message, optional, tag="5")]
+ pub context: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+ /// optional_limit, if non-zero, specifies the limit on the number of resources to return
+ /// before the stream is closed on the server side. By default, the stream will continue
+ /// resolving resources until exhausted or the stream is closed due to the client or a
+ /// network issue.
+ #[prost(uint32, tag="6")]
+ pub optional_limit: u32,
+ /// optional_cursor, if specified, indicates the cursor after which results should resume being returned.
+ /// The cursor can be found on the LookupResourcesResponse object.
+ #[prost(message, optional, tag="7")]
+ pub optional_cursor: ::core::option::Option<Cursor>,
+}
+/// LookupResourcesResponse contains a single matching resource object ID for the
+/// requested object type, permission, and subject.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct LookupResourcesResponse {
+ /// looked_up_at is the ZedToken at which the resource was found.
+ #[prost(message, optional, tag="1")]
+ pub looked_up_at: ::core::option::Option<ZedToken>,
+ /// resource_object_id is the object ID of the found resource.
+ #[prost(string, tag="2")]
+ pub resource_object_id: ::prost::alloc::string::String,
+ /// permissionship indicates whether the response was partially evaluated or not
+ #[prost(enumeration="LookupPermissionship", tag="3")]
+ pub permissionship: i32,
+ /// partial_caveat_info holds information of a partially-evaluated caveated response
+ #[prost(message, optional, tag="4")]
+ pub partial_caveat_info: ::core::option::Option<PartialCaveatInfo>,
+ /// after_result_cursor holds a cursor that can be used to resume the LookupResources stream after this
+ /// result.
+ #[prost(message, optional, tag="5")]
+ pub after_result_cursor: ::core::option::Option<Cursor>,
+}
+/// LookupSubjectsRequest performs a lookup of all subjects of a particular
+/// kind for which the subject has the specified permission or the relation in
+/// which the subject exists, streaming back the IDs of those subjects.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct LookupSubjectsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// resource is the resource for which all matching subjects for the permission
+ /// or relation will be returned.
+ #[prost(message, optional, tag="2")]
+ pub resource: ::core::option::Option<ObjectReference>,
+ /// permission is the name of the permission (or relation) for which to find
+ /// the subjects.
+ #[prost(string, tag="3")]
+ pub permission: ::prost::alloc::string::String,
+ /// subject_object_type is the type of subject object for which the IDs will
+ /// be returned.
+ #[prost(string, tag="4")]
+ pub subject_object_type: ::prost::alloc::string::String,
+ /// optional_subject_relation is the optional relation for the subject.
+ #[prost(string, tag="5")]
+ pub optional_subject_relation: ::prost::alloc::string::String,
+ /// context consists of named values that are injected into the caveat evaluation context
+ #[prost(message, optional, tag="6")]
+ pub context: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+ /// optional_concrete_limit is currently unimplemented for LookupSubjects
+ /// and will return an error as of SpiceDB version 1.40.1. This will
+ /// be implemented in a future version of SpiceDB.
+ #[prost(uint32, tag="7")]
+ pub optional_concrete_limit: u32,
+ /// optional_cursor is currently unimplemented for LookupSubjects
+ /// and will be ignored as of SpiceDB version 1.40.1. This will
+ /// be implemented in a future version of SpiceDB.
+ #[prost(message, optional, tag="8")]
+ pub optional_cursor: ::core::option::Option<Cursor>,
+ /// wildcard_option specifies whether wildcards should be returned by LookupSubjects.
+ /// For backwards compatibility, defaults to WILDCARD_OPTION_INCLUDE_WILDCARDS if unspecified.
+ #[prost(enumeration="lookup_subjects_request::WildcardOption", tag="9")]
+ pub wildcard_option: i32,
+}
+/// Nested message and enum types in `LookupSubjectsRequest`.
+pub mod lookup_subjects_request {
+ #[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+ #[repr(i32)]
+ pub enum WildcardOption {
+ Unspecified = 0,
+ IncludeWildcards = 1,
+ ExcludeWildcards = 2,
+ }
+ impl WildcardOption {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ WildcardOption::Unspecified => "WILDCARD_OPTION_UNSPECIFIED",
+ WildcardOption::IncludeWildcards => "WILDCARD_OPTION_INCLUDE_WILDCARDS",
+ WildcardOption::ExcludeWildcards => "WILDCARD_OPTION_EXCLUDE_WILDCARDS",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "WILDCARD_OPTION_UNSPECIFIED" => Some(Self::Unspecified),
+ "WILDCARD_OPTION_INCLUDE_WILDCARDS" => Some(Self::IncludeWildcards),
+ "WILDCARD_OPTION_EXCLUDE_WILDCARDS" => Some(Self::ExcludeWildcards),
+ _ => None,
+ }
+ }
+ }
+}
+/// LookupSubjectsResponse contains a single matching subject object ID for the
+/// requested subject object type on the permission or relation.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct LookupSubjectsResponse {
+ #[prost(message, optional, tag="1")]
+ pub looked_up_at: ::core::option::Option<ZedToken>,
+ /// subject_object_id is the Object ID of the subject found. May be a `*` if
+ /// a wildcard was found.
+ /// deprecated: use `subject`
+ #[deprecated]
+ #[prost(string, tag="2")]
+ pub subject_object_id: ::prost::alloc::string::String,
+ /// excluded_subject_ids are the Object IDs of the subjects excluded. This list
+ /// will only contain object IDs if `subject_object_id` is a wildcard (`*`) and
+ /// will only be populated if exclusions exist from the wildcard.
+ /// deprecated: use `excluded_subjects`
+ #[deprecated]
+ #[prost(string, repeated, tag="3")]
+ pub excluded_subject_ids: ::prost::alloc::vec::Vec<::prost::alloc::string::String>,
+ /// permissionship indicates whether the response was partially evaluated or not
+ /// deprecated: use `subject.permissionship`
+ #[deprecated]
+ #[prost(enumeration="LookupPermissionship", tag="4")]
+ pub permissionship: i32,
+ /// partial_caveat_info holds information of a partially-evaluated caveated response
+ /// deprecated: use `subject.partial_caveat_info`
+ #[deprecated]
+ #[prost(message, optional, tag="5")]
+ pub partial_caveat_info: ::core::option::Option<PartialCaveatInfo>,
+ /// subject is the subject found, along with its permissionship.
+ #[prost(message, optional, tag="6")]
+ pub subject: ::core::option::Option<ResolvedSubject>,
+ /// excluded_subjects are the subjects excluded. This list
+ /// will only contain subjects if `subject.subject_object_id` is a wildcard (`*`) and
+ /// will only be populated if exclusions exist from the wildcard.
+ #[prost(message, repeated, tag="7")]
+ pub excluded_subjects: ::prost::alloc::vec::Vec<ResolvedSubject>,
+ /// after_result_cursor holds a cursor that can be used to resume the LookupSubjects stream after this
+ /// result.
+ #[prost(message, optional, tag="8")]
+ pub after_result_cursor: ::core::option::Option<Cursor>,
+}
+/// ResolvedSubject is a single subject resolved within LookupSubjects.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ResolvedSubject {
+ /// subject_object_id is the Object ID of the subject found. May be a `*` if
+ /// a wildcard was found.
+ #[prost(string, tag="1")]
+ pub subject_object_id: ::prost::alloc::string::String,
+ /// permissionship indicates whether the response was partially evaluated or not
+ #[prost(enumeration="LookupPermissionship", tag="2")]
+ pub permissionship: i32,
+ /// partial_caveat_info holds information of a partially-evaluated caveated response
+ #[prost(message, optional, tag="3")]
+ pub partial_caveat_info: ::core::option::Option<PartialCaveatInfo>,
+}
+/// ImportBulkRelationshipsRequest represents one batch of the streaming
+/// ImportBulkRelationships API. The maximum size is only limited by the backing
+/// datastore, and optimal size should be determined by the calling client
+/// experimentally. When ImportBulk is invoked and receives its first request message,
+/// a transaction is opened to import the relationships. All requests sent to the same
+/// invocation are executed under this single transaction. If a relationship already
+/// exists within the datastore, the entire transaction will fail with an error.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ImportBulkRelationshipsRequest {
+ #[prost(message, repeated, tag="1")]
+ pub relationships: ::prost::alloc::vec::Vec<Relationship>,
+}
+/// ImportBulkRelationshipsResponse is returned on successful completion of the
+/// bulk load stream, and contains the total number of relationships loaded.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, Copy, PartialEq, ::prost::Message)]
+pub struct ImportBulkRelationshipsResponse {
+ #[prost(uint64, tag="1")]
+ pub num_loaded: u64,
+}
+/// ExportBulkRelationshipsRequest represents a resumable request for
+/// all relationships from the server.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExportBulkRelationshipsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// optional_limit, if non-zero, specifies the limit on the number of
+ /// relationships the server can return in one page. By default, the server
+ /// will pick a page size, and the server is free to choose a smaller size
+ /// at will.
+ #[prost(uint32, tag="2")]
+ pub optional_limit: u32,
+ /// optional_cursor, if specified, indicates the cursor after which results
+ /// should resume being returned. The cursor can be found on the
+ /// BulkExportRelationshipsResponse object.
+ #[prost(message, optional, tag="3")]
+ pub optional_cursor: ::core::option::Option<Cursor>,
+ /// optional_relationship_filter, if specified, indicates the
+ /// filter to apply to each relationship to be exported.
+ #[prost(message, optional, tag="4")]
+ pub optional_relationship_filter: ::core::option::Option<RelationshipFilter>,
+}
+/// ExportBulkRelationshipsResponse is one page in a stream of relationship
+/// groups that meet the criteria specified by the originating request. The
+/// server will continue to stream back relationship groups as quickly as it can
+/// until all relationships have been transmitted back.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExportBulkRelationshipsResponse {
+ #[prost(message, optional, tag="1")]
+ pub after_result_cursor: ::core::option::Option<Cursor>,
+ #[prost(message, repeated, tag="2")]
+ pub relationships: ::prost::alloc::vec::Vec<Relationship>,
+}
+/// LookupPermissionship represents whether a Lookup response was partially evaluated or not
+#[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+#[repr(i32)]
+pub enum LookupPermissionship {
+ Unspecified = 0,
+ HasPermission = 1,
+ ConditionalPermission = 2,
+}
+impl LookupPermissionship {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ LookupPermissionship::Unspecified => "LOOKUP_PERMISSIONSHIP_UNSPECIFIED",
+ LookupPermissionship::HasPermission => "LOOKUP_PERMISSIONSHIP_HAS_PERMISSION",
+ LookupPermissionship::ConditionalPermission => "LOOKUP_PERMISSIONSHIP_CONDITIONAL_PERMISSION",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "LOOKUP_PERMISSIONSHIP_UNSPECIFIED" => Some(Self::Unspecified),
+ "LOOKUP_PERMISSIONSHIP_HAS_PERMISSION" => Some(Self::HasPermission),
+ "LOOKUP_PERMISSIONSHIP_CONDITIONAL_PERMISSION" => Some(Self::ConditionalPermission),
+ _ => None,
+ }
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalRegisterRelationshipCounterRequest {
+ /// name is the name of the counter being registered.
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// relationship_filter defines the filter to be applied to the relationships
+ /// to be counted.
+ #[prost(message, optional, tag="2")]
+ pub relationship_filter: ::core::option::Option<RelationshipFilter>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, Copy, PartialEq, ::prost::Message)]
+pub struct ExperimentalRegisterRelationshipCounterResponse {
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalCountRelationshipsRequest {
+ /// name is the name of the counter whose count is being requested.
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalCountRelationshipsResponse {
+ #[prost(oneof="experimental_count_relationships_response::CounterResult", tags="1, 2")]
+ pub counter_result: ::core::option::Option<experimental_count_relationships_response::CounterResult>,
+}
+/// Nested message and enum types in `ExperimentalCountRelationshipsResponse`.
+pub mod experimental_count_relationships_response {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum CounterResult {
+ /// counter_still_calculating is true if the counter is still calculating the count.
+ #[prost(bool, tag="1")]
+ CounterStillCalculating(bool),
+ /// read_counter_value is the value of the counter at the time of the read.
+ #[prost(message, tag="2")]
+ ReadCounterValue(super::ReadCounterValue),
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReadCounterValue {
+ /// relationship_count is the count of relationships that match the filter.
+ #[prost(uint64, tag="1")]
+ pub relationship_count: u64,
+ /// read_at is the ZedToken at which the relationship count applies.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalUnregisterRelationshipCounterRequest {
+ /// name is the name of the counter being unregistered.
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, Copy, PartialEq, ::prost::Message)]
+pub struct ExperimentalUnregisterRelationshipCounterResponse {
+}
+/// NOTE: Deprecated now that BulkCheckPermission has been promoted to the stable API as "CheckBulkPermission".
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkCheckPermissionRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[deprecated]
+ #[prost(message, repeated, tag="2")]
+ pub items: ::prost::alloc::vec::Vec<BulkCheckPermissionRequestItem>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkCheckPermissionRequestItem {
+ #[prost(message, optional, tag="1")]
+ pub resource: ::core::option::Option<ObjectReference>,
+ #[prost(string, tag="2")]
+ pub permission: ::prost::alloc::string::String,
+ #[prost(message, optional, tag="3")]
+ pub subject: ::core::option::Option<SubjectReference>,
+ #[prost(message, optional, tag="4")]
+ pub context: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkCheckPermissionResponse {
+ #[prost(message, optional, tag="1")]
+ pub checked_at: ::core::option::Option<ZedToken>,
+ #[prost(message, repeated, tag="2")]
+ pub pairs: ::prost::alloc::vec::Vec<BulkCheckPermissionPair>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkCheckPermissionPair {
+ #[prost(message, optional, tag="1")]
+ pub request: ::core::option::Option<BulkCheckPermissionRequestItem>,
+ #[prost(oneof="bulk_check_permission_pair::Response", tags="2, 3")]
+ pub response: ::core::option::Option<bulk_check_permission_pair::Response>,
+}
+/// Nested message and enum types in `BulkCheckPermissionPair`.
+pub mod bulk_check_permission_pair {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Response {
+ #[prost(message, tag="2")]
+ Item(super::BulkCheckPermissionResponseItem),
+ #[prost(message, tag="3")]
+ Error(super::super::super::super::google::rpc::Status),
+ }
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkCheckPermissionResponseItem {
+ #[prost(enumeration="check_permission_response::Permissionship", tag="1")]
+ pub permissionship: i32,
+ #[prost(message, optional, tag="2")]
+ pub partial_caveat_info: ::core::option::Option<PartialCaveatInfo>,
+}
+/// BulkImportRelationshipsRequest represents one batch of the streaming
+/// BulkImportRelationships API. The maximum size is only limited by the backing
+/// datastore, and optimal size should be determined by the calling client
+/// experimentally. When BulkImport is invoked and receives its first request message,
+/// a transaction is opened to import the relationships. All requests sent to the same
+/// invocation are executed under this single transaction. If a relationship already
+/// exists within the datastore, the entire transaction will fail with an error.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkImportRelationshipsRequest {
+ #[prost(message, repeated, tag="1")]
+ pub relationships: ::prost::alloc::vec::Vec<Relationship>,
+}
+/// BulkImportRelationshipsResponse is returned on successful completion of the
+/// bulk load stream, and contains the total number of relationships loaded.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, Copy, PartialEq, ::prost::Message)]
+pub struct BulkImportRelationshipsResponse {
+ #[prost(uint64, tag="1")]
+ pub num_loaded: u64,
+}
+/// BulkExportRelationshipsRequest represents a resumable request for
+/// all relationships from the server.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkExportRelationshipsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// optional_limit, if non-zero, specifies the limit on the number of
+ /// relationships the server can return in one page. By default, the server
+ /// will pick a page size, and the server is free to choose a smaller size
+ /// at will.
+ #[prost(uint32, tag="2")]
+ pub optional_limit: u32,
+ /// optional_cursor, if specified, indicates the cursor after which results
+ /// should resume being returned. The cursor can be found on the
+ /// BulkExportRelationshipsResponse object.
+ #[prost(message, optional, tag="3")]
+ pub optional_cursor: ::core::option::Option<Cursor>,
+ /// optional_relationship_filter, if specified, indicates the
+ /// filter to apply to each relationship to be exported.
+ #[prost(message, optional, tag="4")]
+ pub optional_relationship_filter: ::core::option::Option<RelationshipFilter>,
+}
+/// BulkExportRelationshipsResponse is one page in a stream of relationship
+/// groups that meet the criteria specified by the originating request. The
+/// server will continue to stream back relationship groups as quickly as it can
+/// until all relationships have been transmitted back.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BulkExportRelationshipsResponse {
+ #[prost(message, optional, tag="1")]
+ pub after_result_cursor: ::core::option::Option<Cursor>,
+ #[prost(message, repeated, tag="2")]
+ pub relationships: ::prost::alloc::vec::Vec<Relationship>,
+}
+// Reflection types ////////////////////////////////////////////
+
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalReflectSchemaRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// optional_filters defines optional filters that are applied in
+ /// an OR fashion to the schema, before being returned
+ #[prost(message, repeated, tag="2")]
+ pub optional_filters: ::prost::alloc::vec::Vec<ExpSchemaFilter>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalReflectSchemaResponse {
+ /// definitions are the definitions defined in the schema.
+ #[prost(message, repeated, tag="1")]
+ pub definitions: ::prost::alloc::vec::Vec<ExpDefinition>,
+ /// caveats are the caveats defined in the schema.
+ #[prost(message, repeated, tag="2")]
+ pub caveats: ::prost::alloc::vec::Vec<ExpCaveat>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="3")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+/// ExpSchemaFilter is a filter that can be applied to the schema on reflection.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpSchemaFilter {
+ /// optional_definition_name_filter is a prefix that is matched against the definition name.
+ #[prost(string, tag="1")]
+ pub optional_definition_name_filter: ::prost::alloc::string::String,
+ /// optional_caveat_name_filter is a prefix that is matched against the caveat name.
+ #[prost(string, tag="2")]
+ pub optional_caveat_name_filter: ::prost::alloc::string::String,
+ /// optional_relation_name_filter is a prefix that is matched against the relation name.
+ #[prost(string, tag="3")]
+ pub optional_relation_name_filter: ::prost::alloc::string::String,
+ /// optional_permission_name_filter is a prefix that is matched against the permission name.
+ #[prost(string, tag="4")]
+ pub optional_permission_name_filter: ::prost::alloc::string::String,
+}
+/// ExpDefinition is the representation of a definition in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpDefinition {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// comment is a human-readable comments on the definition. Will include
+ /// delimiter characters.
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(message, repeated, tag="3")]
+ pub relations: ::prost::alloc::vec::Vec<ExpRelation>,
+ #[prost(message, repeated, tag="4")]
+ pub permissions: ::prost::alloc::vec::Vec<ExpPermission>,
+}
+/// ExpCaveat is the representation of a caveat in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpCaveat {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// comment is a human-readable comments on the caveat. Will include
+ /// delimiter characters.
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(message, repeated, tag="3")]
+ pub parameters: ::prost::alloc::vec::Vec<ExpCaveatParameter>,
+ #[prost(string, tag="4")]
+ pub expression: ::prost::alloc::string::String,
+}
+/// ExpCaveatParameter is the representation of a parameter in a caveat.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpCaveatParameter {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// type is the type of the parameter. Will be a string representing the
+ /// type, e.g. `int` or `list<string>`
+ #[prost(string, tag="2")]
+ pub r#type: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub parent_caveat_name: ::prost::alloc::string::String,
+}
+/// ExpRelation is the representation of a relation in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpRelation {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub parent_definition_name: ::prost::alloc::string::String,
+ #[prost(message, repeated, tag="4")]
+ pub subject_types: ::prost::alloc::vec::Vec<ExpTypeReference>,
+}
+/// ExpTypeReference is the representation of a type reference in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpTypeReference {
+ /// subject_definition_name is the name of the subject's definition.
+ #[prost(string, tag="1")]
+ pub subject_definition_name: ::prost::alloc::string::String,
+ /// optional_caveat_name is the name of the caveat that is applied to the subject, if any.
+ #[prost(string, tag="2")]
+ pub optional_caveat_name: ::prost::alloc::string::String,
+ #[prost(oneof="exp_type_reference::Typeref", tags="3, 4, 5")]
+ pub typeref: ::core::option::Option<exp_type_reference::Typeref>,
+}
+/// Nested message and enum types in `ExpTypeReference`.
+pub mod exp_type_reference {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Typeref {
+ /// is_terminal_subject is true if the subject is terminal, meaning it is referenced directly vs a sub-relation.
+ #[prost(bool, tag="3")]
+ IsTerminalSubject(bool),
+ /// optional_relation_name is the name of the relation that is applied to the subject, if any.
+ #[prost(string, tag="4")]
+ OptionalRelationName(::prost::alloc::string::String),
+ /// is_public_wildcard is true if the subject is a public wildcard.
+ #[prost(bool, tag="5")]
+ IsPublicWildcard(bool),
+ }
+}
+/// ExpPermission is the representation of a permission in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpPermission {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// comment is a human-readable comments on the permission. Will include
+ /// delimiter characters.
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub parent_definition_name: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalComputablePermissionsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[prost(string, tag="2")]
+ pub definition_name: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub relation_name: ::prost::alloc::string::String,
+ /// optional_definition_name_match is a prefix that is matched against the definition name(s)
+ /// for the permissions returned.
+ /// If not specified, will be ignored.
+ #[prost(string, tag="4")]
+ pub optional_definition_name_filter: ::prost::alloc::string::String,
+}
+/// ExpRelationReference is a reference to a relation or permission in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpRelationReference {
+ #[prost(string, tag="1")]
+ pub definition_name: ::prost::alloc::string::String,
+ #[prost(string, tag="2")]
+ pub relation_name: ::prost::alloc::string::String,
+ #[prost(bool, tag="3")]
+ pub is_permission: bool,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalComputablePermissionsResponse {
+ #[prost(message, repeated, tag="1")]
+ pub permissions: ::prost::alloc::vec::Vec<ExpRelationReference>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalDependentRelationsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[prost(string, tag="2")]
+ pub definition_name: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub permission_name: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalDependentRelationsResponse {
+ #[prost(message, repeated, tag="1")]
+ pub relations: ::prost::alloc::vec::Vec<ExpRelationReference>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalDiffSchemaRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[prost(string, tag="2")]
+ pub comparison_schema: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExperimentalDiffSchemaResponse {
+ #[prost(message, repeated, tag="1")]
+ pub diffs: ::prost::alloc::vec::Vec<ExpSchemaDiff>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpRelationSubjectTypeChange {
+ #[prost(message, optional, tag="1")]
+ pub relation: ::core::option::Option<ExpRelation>,
+ #[prost(message, optional, tag="2")]
+ pub changed_subject_type: ::core::option::Option<ExpTypeReference>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpCaveatParameterTypeChange {
+ #[prost(message, optional, tag="1")]
+ pub parameter: ::core::option::Option<ExpCaveatParameter>,
+ #[prost(string, tag="2")]
+ pub previous_type: ::prost::alloc::string::String,
+}
+/// ExpSchemaDiff is the representation of a diff between two schemas.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ExpSchemaDiff {
+ #[prost(oneof="exp_schema_diff::Diff", tags="1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19")]
+ pub diff: ::core::option::Option<exp_schema_diff::Diff>,
+}
+/// Nested message and enum types in `ExpSchemaDiff`.
+pub mod exp_schema_diff {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Diff {
+ #[prost(message, tag="1")]
+ DefinitionAdded(super::ExpDefinition),
+ #[prost(message, tag="2")]
+ DefinitionRemoved(super::ExpDefinition),
+ #[prost(message, tag="3")]
+ DefinitionDocCommentChanged(super::ExpDefinition),
+ #[prost(message, tag="4")]
+ RelationAdded(super::ExpRelation),
+ #[prost(message, tag="5")]
+ RelationRemoved(super::ExpRelation),
+ #[prost(message, tag="6")]
+ RelationDocCommentChanged(super::ExpRelation),
+ #[prost(message, tag="7")]
+ RelationSubjectTypeAdded(super::ExpRelationSubjectTypeChange),
+ #[prost(message, tag="8")]
+ RelationSubjectTypeRemoved(super::ExpRelationSubjectTypeChange),
+ #[prost(message, tag="9")]
+ PermissionAdded(super::ExpPermission),
+ #[prost(message, tag="10")]
+ PermissionRemoved(super::ExpPermission),
+ #[prost(message, tag="11")]
+ PermissionDocCommentChanged(super::ExpPermission),
+ #[prost(message, tag="12")]
+ PermissionExprChanged(super::ExpPermission),
+ #[prost(message, tag="13")]
+ CaveatAdded(super::ExpCaveat),
+ #[prost(message, tag="14")]
+ CaveatRemoved(super::ExpCaveat),
+ #[prost(message, tag="15")]
+ CaveatDocCommentChanged(super::ExpCaveat),
+ #[prost(message, tag="16")]
+ CaveatExprChanged(super::ExpCaveat),
+ #[prost(message, tag="17")]
+ CaveatParameterAdded(super::ExpCaveatParameter),
+ #[prost(message, tag="18")]
+ CaveatParameterRemoved(super::ExpCaveatParameter),
+ #[prost(message, tag="19")]
+ CaveatParameterTypeChanged(super::ExpCaveatParameterTypeChange),
+ }
+}
+/// ReadSchemaRequest returns the schema from the database.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, Copy, PartialEq, ::prost::Message)]
+pub struct ReadSchemaRequest {
+}
+/// ReadSchemaResponse is the resulting data after having read the Object
+/// Definitions from a Schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReadSchemaResponse {
+ /// schema_text is the textual form of the current schema in the system
+ #[prost(string, tag="1")]
+ pub schema_text: ::prost::alloc::string::String,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+/// WriteSchemaRequest is the required data used to "upsert" the Schema of a
+/// Permissions System.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WriteSchemaRequest {
+ /// The Schema containing one or more Object Definitions that will be written
+ /// to the Permissions System.
+ ///
+ /// 4MiB
+ #[prost(string, tag="1")]
+ pub schema: ::prost::alloc::string::String,
+}
+/// WriteSchemaResponse is the resulting data after having written a Schema to
+/// a Permissions System.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WriteSchemaResponse {
+ /// written_at is the ZedToken at which the schema was written.
+ #[prost(message, optional, tag="1")]
+ pub written_at: ::core::option::Option<ZedToken>,
+}
+// Reflection types ////////////////////////////////////////////
+
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectSchemaRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ /// optional_filters defines optional filters that are applied in
+ /// an OR fashion to the schema, before being returned
+ #[prost(message, repeated, tag="2")]
+ pub optional_filters: ::prost::alloc::vec::Vec<ReflectionSchemaFilter>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectSchemaResponse {
+ /// definitions are the definitions defined in the schema.
+ #[prost(message, repeated, tag="1")]
+ pub definitions: ::prost::alloc::vec::Vec<ReflectionDefinition>,
+ /// caveats are the caveats defined in the schema.
+ #[prost(message, repeated, tag="2")]
+ pub caveats: ::prost::alloc::vec::Vec<ReflectionCaveat>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="3")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+/// ReflectionSchemaFilter is a filter that can be applied to the schema on reflection.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionSchemaFilter {
+ /// optional_definition_name_filter is a prefix that is matched against the definition name.
+ #[prost(string, tag="1")]
+ pub optional_definition_name_filter: ::prost::alloc::string::String,
+ /// optional_caveat_name_filter is a prefix that is matched against the caveat name.
+ #[prost(string, tag="2")]
+ pub optional_caveat_name_filter: ::prost::alloc::string::String,
+ /// optional_relation_name_filter is a prefix that is matched against the relation name.
+ #[prost(string, tag="3")]
+ pub optional_relation_name_filter: ::prost::alloc::string::String,
+ /// optional_permission_name_filter is a prefix that is matched against the permission name.
+ #[prost(string, tag="4")]
+ pub optional_permission_name_filter: ::prost::alloc::string::String,
+}
+/// ReflectionDefinition is the representation of a definition in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionDefinition {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// comment is a human-readable comments on the definition. Will include
+ /// delimiter characters.
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(message, repeated, tag="3")]
+ pub relations: ::prost::alloc::vec::Vec<ReflectionRelation>,
+ #[prost(message, repeated, tag="4")]
+ pub permissions: ::prost::alloc::vec::Vec<ReflectionPermission>,
+}
+/// ReflectionCaveat is the representation of a caveat in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionCaveat {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// comment is a human-readable comments on the caveat. Will include
+ /// delimiter characters.
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(message, repeated, tag="3")]
+ pub parameters: ::prost::alloc::vec::Vec<ReflectionCaveatParameter>,
+ #[prost(string, tag="4")]
+ pub expression: ::prost::alloc::string::String,
+}
+/// ReflectionCaveatParameter is the representation of a parameter in a caveat.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionCaveatParameter {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// type is the type of the parameter. Will be a string representing the
+ /// type, e.g. `int` or `list<string>`
+ #[prost(string, tag="2")]
+ pub r#type: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub parent_caveat_name: ::prost::alloc::string::String,
+}
+/// ReflectionRelation is the representation of a relation in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionRelation {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub parent_definition_name: ::prost::alloc::string::String,
+ #[prost(message, repeated, tag="4")]
+ pub subject_types: ::prost::alloc::vec::Vec<ReflectionTypeReference>,
+}
+/// ReflectionTypeReference is the representation of a type reference in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionTypeReference {
+ /// subject_definition_name is the name of the subject's definition.
+ #[prost(string, tag="1")]
+ pub subject_definition_name: ::prost::alloc::string::String,
+ /// optional_caveat_name is the name of the caveat that is applied to the subject, if any.
+ #[prost(string, tag="2")]
+ pub optional_caveat_name: ::prost::alloc::string::String,
+ #[prost(oneof="reflection_type_reference::Typeref", tags="3, 4, 5")]
+ pub typeref: ::core::option::Option<reflection_type_reference::Typeref>,
+}
+/// Nested message and enum types in `ReflectionTypeReference`.
+pub mod reflection_type_reference {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Typeref {
+ /// is_terminal_subject is true if the subject is terminal, meaning it is referenced directly vs a sub-relation.
+ #[prost(bool, tag="3")]
+ IsTerminalSubject(bool),
+ /// optional_relation_name is the name of the relation that is applied to the subject, if any.
+ #[prost(string, tag="4")]
+ OptionalRelationName(::prost::alloc::string::String),
+ /// is_public_wildcard is true if the subject is a public wildcard.
+ #[prost(bool, tag="5")]
+ IsPublicWildcard(bool),
+ }
+}
+/// ReflectionPermission is the representation of a permission in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionPermission {
+ #[prost(string, tag="1")]
+ pub name: ::prost::alloc::string::String,
+ /// comment is a human-readable comments on the permission. Will include
+ /// delimiter characters.
+ #[prost(string, tag="2")]
+ pub comment: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub parent_definition_name: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ComputablePermissionsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[prost(string, tag="2")]
+ pub definition_name: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub relation_name: ::prost::alloc::string::String,
+ /// optional_definition_name_match is a prefix that is matched against the definition name(s)
+ /// for the permissions returned.
+ /// If not specified, will be ignored.
+ #[prost(string, tag="4")]
+ pub optional_definition_name_filter: ::prost::alloc::string::String,
+}
+/// ReflectionRelationReference is a reference to a relation or permission in the schema.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionRelationReference {
+ #[prost(string, tag="1")]
+ pub definition_name: ::prost::alloc::string::String,
+ #[prost(string, tag="2")]
+ pub relation_name: ::prost::alloc::string::String,
+ #[prost(bool, tag="3")]
+ pub is_permission: bool,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ComputablePermissionsResponse {
+ #[prost(message, repeated, tag="1")]
+ pub permissions: ::prost::alloc::vec::Vec<ReflectionRelationReference>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DependentRelationsRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[prost(string, tag="2")]
+ pub definition_name: ::prost::alloc::string::String,
+ #[prost(string, tag="3")]
+ pub permission_name: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DependentRelationsResponse {
+ #[prost(message, repeated, tag="1")]
+ pub relations: ::prost::alloc::vec::Vec<ReflectionRelationReference>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DiffSchemaRequest {
+ #[prost(message, optional, tag="1")]
+ pub consistency: ::core::option::Option<Consistency>,
+ #[prost(string, tag="2")]
+ pub comparison_schema: ::prost::alloc::string::String,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct DiffSchemaResponse {
+ #[prost(message, repeated, tag="1")]
+ pub diffs: ::prost::alloc::vec::Vec<ReflectionSchemaDiff>,
+ /// read_at is the ZedToken at which the schema was read.
+ #[prost(message, optional, tag="2")]
+ pub read_at: ::core::option::Option<ZedToken>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionRelationSubjectTypeChange {
+ #[prost(message, optional, tag="1")]
+ pub relation: ::core::option::Option<ReflectionRelation>,
+ #[prost(message, optional, tag="2")]
+ pub changed_subject_type: ::core::option::Option<ReflectionTypeReference>,
+}
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionCaveatParameterTypeChange {
+ #[prost(message, optional, tag="1")]
+ pub parameter: ::core::option::Option<ReflectionCaveatParameter>,
+ #[prost(string, tag="2")]
+ pub previous_type: ::prost::alloc::string::String,
+}
+/// ReflectionSchemaDiff is the representation of a diff between two schemas.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct ReflectionSchemaDiff {
+ #[prost(oneof="reflection_schema_diff::Diff", tags="1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19")]
+ pub diff: ::core::option::Option<reflection_schema_diff::Diff>,
+}
+/// Nested message and enum types in `ReflectionSchemaDiff`.
+pub mod reflection_schema_diff {
+ #[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Oneof)]
+ pub enum Diff {
+ #[prost(message, tag="1")]
+ DefinitionAdded(super::ReflectionDefinition),
+ #[prost(message, tag="2")]
+ DefinitionRemoved(super::ReflectionDefinition),
+ #[prost(message, tag="3")]
+ DefinitionDocCommentChanged(super::ReflectionDefinition),
+ #[prost(message, tag="4")]
+ RelationAdded(super::ReflectionRelation),
+ #[prost(message, tag="5")]
+ RelationRemoved(super::ReflectionRelation),
+ #[prost(message, tag="6")]
+ RelationDocCommentChanged(super::ReflectionRelation),
+ #[prost(message, tag="7")]
+ RelationSubjectTypeAdded(super::ReflectionRelationSubjectTypeChange),
+ #[prost(message, tag="8")]
+ RelationSubjectTypeRemoved(super::ReflectionRelationSubjectTypeChange),
+ #[prost(message, tag="9")]
+ PermissionAdded(super::ReflectionPermission),
+ #[prost(message, tag="10")]
+ PermissionRemoved(super::ReflectionPermission),
+ #[prost(message, tag="11")]
+ PermissionDocCommentChanged(super::ReflectionPermission),
+ #[prost(message, tag="12")]
+ PermissionExprChanged(super::ReflectionPermission),
+ #[prost(message, tag="13")]
+ CaveatAdded(super::ReflectionCaveat),
+ #[prost(message, tag="14")]
+ CaveatRemoved(super::ReflectionCaveat),
+ #[prost(message, tag="15")]
+ CaveatDocCommentChanged(super::ReflectionCaveat),
+ #[prost(message, tag="16")]
+ CaveatExprChanged(super::ReflectionCaveat),
+ #[prost(message, tag="17")]
+ CaveatParameterAdded(super::ReflectionCaveatParameter),
+ #[prost(message, tag="18")]
+ CaveatParameterRemoved(super::ReflectionCaveatParameter),
+ #[prost(message, tag="19")]
+ CaveatParameterTypeChanged(super::ReflectionCaveatParameterTypeChange),
+ }
+}
+/// WatchRequest specifies what mutations to watch for, and an optional start snapshot for when to start
+/// watching.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WatchRequest {
+ /// optional_object_types is a filter of resource object types to watch for relationship changes.
+ /// If specified, only changes to the specified object types will be returned and
+ /// optional_relationship_filters cannot be used.
+ #[prost(string, repeated, tag="1")]
+ pub optional_object_types: ::prost::alloc::vec::Vec<::prost::alloc::string::String>,
+ /// optional_start_cursor is the ZedToken holding the point-in-time at
+ /// which to start watching for changes.
+ /// If not specified, the watch will begin at the current head revision
+ /// of the datastore, returning any updates that occur after the caller
+ /// makes the request.
+ /// Note that if this cursor references a point-in-time containing data
+ /// that has been garbage collected, an error will be returned.
+ #[prost(message, optional, tag="2")]
+ pub optional_start_cursor: ::core::option::Option<ZedToken>,
+ /// optional_relationship_filters, if specified, indicates the
+ /// filter(s) to apply to each relationship to be returned by watch.
+ /// The relationship will be returned as long as at least one filter matches,
+ /// this allows clients to match relationships on multiple filters on a single watch call.
+ /// If specified, optional_object_types cannot be used.
+ #[prost(message, repeated, tag="3")]
+ pub optional_relationship_filters: ::prost::alloc::vec::Vec<RelationshipFilter>,
+ /// optional_update_kinds, if specified, indicates what kinds of mutations to include.
+ #[prost(enumeration="WatchKind", repeated, tag="4")]
+ pub optional_update_kinds: ::prost::alloc::vec::Vec<i32>,
+}
+/// WatchResponse contains all mutation events in ascending timestamp order,
+/// from the requested start snapshot to a snapshot
+/// encoded in the watch response. The client can use the snapshot to resume
+/// watching where the previous watch response left off.
+#[allow(clippy::derive_partial_eq_without_eq)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct WatchResponse {
+ /// updates are the RelationshipUpdate events that have occurred since the
+ /// last watch response.
+ #[prost(message, repeated, tag="1")]
+ pub updates: ::prost::alloc::vec::Vec<RelationshipUpdate>,
+ /// changes_through is the ZedToken that represents the point in time
+ /// that the watch response is current through. This token can be used
+ /// in a subsequent WatchRequest to resume watching from this point.
+ #[prost(message, optional, tag="2")]
+ pub changes_through: ::core::option::Option<ZedToken>,
+ /// optional_transaction_metadata is an optional field that returns the transaction metadata
+ /// given to SpiceDB during the transaction that produced the changes in this response.
+ /// This field may not exist if no transaction metadata was provided.
+ #[prost(message, optional, tag="3")]
+ pub optional_transaction_metadata: ::core::option::Option<super::super::super::google::protobuf::Struct>,
+ /// schema_updated, if true, indicates that the schema was changed in this revision.
+ #[prost(bool, tag="4")]
+ pub schema_updated: bool,
+ /// is_checkpoint, if true, indicates that a checkpoint was reached.
+ /// A checkpoint indicates that the server guarantees that the client
+ /// will not observe any changes at a revision below or equal to the revision in this response.
+ #[prost(bool, tag="5")]
+ pub is_checkpoint: bool,
+}
+#[derive(Clone, Copy, Debug, PartialEq, Eq, Hash, PartialOrd, Ord, ::prost::Enumeration)]
+#[repr(i32)]
+pub enum WatchKind {
+ /// Default, just relationship updates (for backwards compatibility)
+ Unspecified = 0,
+ IncludeRelationshipUpdates = 1,
+ IncludeSchemaUpdates = 2,
+ IncludeCheckpoints = 3,
+}
+impl WatchKind {
+ /// String value of the enum field names used in the ProtoBuf definition.
+ ///
+ /// The values are not transformed in any way and thus are considered stable
+ /// (if the ProtoBuf definition does not change) and safe for programmatic use.
+ pub fn as_str_name(&self) -> &'static str {
+ match self {
+ WatchKind::Unspecified => "WATCH_KIND_UNSPECIFIED",
+ WatchKind::IncludeRelationshipUpdates => "WATCH_KIND_INCLUDE_RELATIONSHIP_UPDATES",
+ WatchKind::IncludeSchemaUpdates => "WATCH_KIND_INCLUDE_SCHEMA_UPDATES",
+ WatchKind::IncludeCheckpoints => "WATCH_KIND_INCLUDE_CHECKPOINTS",
+ }
+ }
+ /// Creates an enum from field names used in the ProtoBuf definition.
+ pub fn from_str_name(value: &str) -> ::core::option::Option<Self> {
+ match value {
+ "WATCH_KIND_UNSPECIFIED" => Some(Self::Unspecified),
+ "WATCH_KIND_INCLUDE_RELATIONSHIP_UPDATES" => Some(Self::IncludeRelationshipUpdates),
+ "WATCH_KIND_INCLUDE_SCHEMA_UPDATES" => Some(Self::IncludeSchemaUpdates),
+ "WATCH_KIND_INCLUDE_CHECKPOINTS" => Some(Self::IncludeCheckpoints),
+ _ => None,
+ }
+ }
+}
+// @@protoc_insertion_point(module)
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 06:13:11 +0000