| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-07-17 | feat: migrate from Cedar to SpiceDB authorization system | mo khan | |
| This is a major architectural change that replaces the Cedar policy-based authorization system with SpiceDB's relation-based authorization. Key changes: - Migrate from Rust to Go implementation - Replace Cedar policies with SpiceDB schema and relationships - Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks - Update build system and dependencies for Go ecosystem - Maintain Envoy integration for external authorization This change enables more flexible permission modeling through SpiceDB's Google Zanzibar inspired relation-based system, supporting complex hierarchical permissions that were difficult to express in Cedar. Breaking change: Existing Cedar policies and Rust-based configuration will no longer work and need to be migrated to SpiceDB schema. | |||
| 2025-07-14 | chore: handle health checks in envoy rather than authzd | mo khan | |
| 2025-07-11 | chore: tidy up request logs | mo khan | |
| 2025-07-05 | refactor: pass the PaC autorizer to the server to allow trying different ones | mo khan | |
| 2025-07-05 | feat: allow requests from localhost | mo khan | |
| 2025-07-04 | chore: fix the request headers formatting in the json logs | mo khan | |
| 2025-07-02 | feat: implement cargo vendor and optimize Docker builds | mo khan | |
| 2025-07-02 | chore: fix linter error | mo khan | |
| 2025-07-02 | fix: report serving status from health check endpoint | mo khan | |
| 2025-07-02 | fix: install the reflection service for the health check probe discovery | mo khan | |
| 2025-07-02 | chore: rename log message | mo khan | |
| 2025-07-02 | chore: request method, path and headers in tracing | mo khan | |
| 2025-07-02 | chore: add requst timeout of 30 seconds | mo khan | |
| 2025-07-02 | chore: remove logging interceptor | mo khan | |
| 2025-06-27 | chore: add a logging interceptor to log request | mo khan | |
| 2025-06-27 | refactor: remove the reflection service | mo khan | |
| 2025-06-27 | refactor: attempt to create constructor that allows passing in services | mo khan | |
| 2025-06-27 | refactor: extract authorization::Server type | mo khan | |
 |
index : gitlab/authzd.git | |
| Authorization daemon | git |
| summaryrefslogtreecommitdiff |