| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-09-10 | chore: remove spice_ prefix from log keys | mo khan | |
| 2025-07-18 | feat: authorize http resources | mo khan | |
| 2025-07-18 | refactor: use * to represent public | mo khan | |
| 2025-07-18 | refactor: extract type mappings for check service | mo khan | |
| 2025-07-17 | feat: migrate from Cedar to SpiceDB authorization system | mo khan | |
| This is a major architectural change that replaces the Cedar policy-based authorization system with SpiceDB's relation-based authorization. Key changes: - Migrate from Rust to Go implementation - Replace Cedar policies with SpiceDB schema and relationships - Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks - Update build system and dependencies for Go ecosystem - Maintain Envoy integration for external authorization This change enables more flexible permission modeling through SpiceDB's Google Zanzibar inspired relation-based system, supporting complex hierarchical permissions that were difficult to express in Cedar. Breaking change: Existing Cedar policies and Rust-based configuration will no longer work and need to be migrated to SpiceDB schema. | |||
| 2025-05-02 | refactor: remove anything unrelated to the authz daemon | mo khan | |
| 2025-04-04 | refactor: switch to zerolog logger | mo khan | |
| 2025-04-02 | fix: add app to default global id | mo khan | |
| 2025-04-02 | refactor: combine cedar policies and add tests | mo khan | |
| 2025-04-02 | refactor: move policies and entities in policies package | mo khan | |
| 2025-03-28 | refactor: move authorizers into authz package | mo khan | |
| 2025-03-27 | feat: start to add structured logging | mo khan | |
| 2025-03-15 | refactor: authorize unsigned JWT in requests | mo khan | |
| 2025-03-13 | refactor: extract authz interface to test out different PaC libraries | mo khan | |
 |
index : gitlab/authzd.git | |
| Authorization daemon | git |
| summaryrefslogtreecommitdiff |