| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-07-17 | feat: migrate from Cedar to SpiceDB authorization system | mo khan | |
| This is a major architectural change that replaces the Cedar policy-based authorization system with SpiceDB's relation-based authorization. Key changes: - Migrate from Rust to Go implementation - Replace Cedar policies with SpiceDB schema and relationships - Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks - Update build system and dependencies for Go ecosystem - Maintain Envoy integration for external authorization This change enables more flexible permission modeling through SpiceDB's Google Zanzibar inspired relation-based system, supporting complex hierarchical permissions that were difficult to express in Cedar. Breaking change: Existing Cedar policies and Rust-based configuration will no longer work and need to be migrated to SpiceDB schema. | |||
| 2025-07-14 | chore: fix linter error with type complexity | mo khan | |
| 2025-07-14 | chore: fix more linter errors | mo khan | |
| 2025-07-10 | feat: add access_level to entities.json | mo khan | |
| 2025-07-10 | fix: allow authenticated+authorized users to create Sparkles | mo khan | |
| 2025-07-10 | chore: validate the generated entities.json | mo khan | |
| 2025-07-10 | refactor: pass api client to repository ctor | mo khan | |
| 2025-07-10 | refactor: pass project path to all() | mo khan | |
| 2025-07-10 | refactor: extract an api type | mo khan | |
| 2025-07-10 | refactor: move gitlab types to a separate module | mo khan | |
| 2025-07-10 | refactor: rename to fetch_hierarchy | mo khan | |
| 2025-07-10 | refactor: remove hard-coded organization | mo khan | |
| 2025-07-10 | refactor: rename generate to all | mo khan | |
| 2025-07-10 | refactor: move functions to repository type | mo khan | |
| 2025-07-10 | feat: hack together a CLI to generate an entitites.json file | mo khan | |
 |
index : gitlab/authzd.git | |
| Authorization daemon | git |
| summaryrefslogtreecommitdiff |