| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-07-17 | feat: migrate from Cedar to SpiceDB authorization system | mo khan | |
| This is a major architectural change that replaces the Cedar policy-based authorization system with SpiceDB's relation-based authorization. Key changes: - Migrate from Rust to Go implementation - Replace Cedar policies with SpiceDB schema and relationships - Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks - Update build system and dependencies for Go ecosystem - Maintain Envoy integration for external authorization This change enables more flexible permission modeling through SpiceDB's Google Zanzibar inspired relation-based system, supporting complex hierarchical permissions that were difficult to express in Cedar. Breaking change: Existing Cedar policies and Rust-based configuration will no longer work and need to be migrated to SpiceDB schema. | |||
| 2025-07-14 | chore: run authzd on 50052 instead of 50051 to prevent port collision | mo khan | |
| 2025-07-11 | chore: tidy up request logs | mo khan | |
| 2025-07-11 | chore: provide default value for bind addr and fix Procfile | mo khan | |
| 2025-07-11 | refactor: merge the server and cli into a single binary | mo khan | |
| 2025-07-10 | chore: validate the generated entities.json | mo khan | |
| 2025-07-10 | refactor: pass api client to repository ctor | mo khan | |
| 2025-07-10 | refactor: pass project path to all() | mo khan | |
| 2025-07-10 | refactor: rename generate to all | mo khan | |
| 2025-07-10 | refactor: move functions to repository type | mo khan | |
| 2025-07-10 | feat: hack together a CLI to generate an entitites.json file | mo khan | |
 |
index : gitlab/authzd.git | |
| Authorization daemon | git |
| summaryrefslogtreecommitdiff |