summaryrefslogtreecommitdiff
path: root/tests/authorization
AgeCommit message (Collapse)Author
2025-07-17feat: migrate from Cedar to SpiceDB authorization systemmo khan
This is a major architectural change that replaces the Cedar policy-based authorization system with SpiceDB's relation-based authorization. Key changes: - Migrate from Rust to Go implementation - Replace Cedar policies with SpiceDB schema and relationships - Switch from envoy `ext_authz` with Cedar to SpiceDB permission checks - Update build system and dependencies for Go ecosystem - Maintain Envoy integration for external authorization This change enables more flexible permission modeling through SpiceDB's Google Zanzibar inspired relation-based system, supporting complex hierarchical permissions that were difficult to express in Cedar. Breaking change: Existing Cedar policies and Rust-based configuration will no longer work and need to be migrated to SpiceDB schema.
2025-07-14feat: allow access to sparkle in developmentmo khan
2025-07-14test: update integration test to test ext_authz servicemo khan
2025-07-11test: add test to ensure access to the sparkle homepage in devmo khan
2025-07-10fix: allow authenticated+authorized users to create Sparklesmo khan
2025-07-10test: ensure authenticated users that are not in the entities do not have accessmo khan
2025-07-10test: print failure details for table testmo khan
2025-07-10feat: extract JWT subject claim headermo khan
2025-07-09refactor: extract build_user functionmo khan
2025-07-09test: consolidate some of the duplicate testsmo khan
2025-07-09test: extract common test setup to initialize loggermo khan
2025-07-09test: build a cedar entity with my user record idmo khan
2025-07-09test: update test to focus on :read, Sparklemo khan
2025-07-09test: define the types of scenarios that I want to cover using the ↵mo khan
x-jwt-claim-sub
2025-07-09chore: start to provide entities to cedarmo khan
2025-07-09test: add sparkle public endpoint testsmo khan
2025-07-05test: convert i32 to tonic::Codemo khan
2025-07-05feat: allow requests from localhostmo khan
2025-07-05feat: allow access from production sparklemo khan
2025-07-05test: refactor tests to provide multiple sparkle hostsmo khan
2025-07-05test: invalid request variables in testsmo khan
2025-07-05fix: fix typo in cedar policy filemo khan
2025-07-04test: add missing public asset testsmo khan
2025-07-04refactor: extract method to convert http request to cedar contextmo khan
2025-07-04test: start to build table testsmo khan
2025-07-04refactor: map from http request to cedar requestmo khan
2025-07-04chore: add additional request loggingmo khan
2025-07-04feat: allow access to sparkle homepagemo khan
2025-07-04feat: allow access to sparkle homepagemo khan
2025-06-27refactor: extract authorization::Server typemo khan
2025-06-27test: move helpers to factory_bot modulemo khan
2025-06-27test: convert build_client to a generic functionmo khan
2025-06-27test: rename common module to supportmo khan
2025-06-27test: merge server testsmo khan
2025-06-27test: add tests for grpc servermo khan
2025-06-27test: refactor duplicate tests and start to build test harness for rpc servermo khan
2025-06-27test: rename create_request -> build_requestmo khan
2025-06-27test: extract factory_bot factory for cedar authorizermo khan
2025-06-27feat: scan directory for all policy filesmo khan
2025-06-26test: tidy up the testsmo khan
2025-06-26refactor: try to move policy files to /etc/authzd/mo khan
2025-06-25test: move builder functions to factory_bot modulemo khan
2025-06-25test: extract factory_bot modulemo khan
2025-06-25test: improve readability of some of the test codemo khan
2025-06-25test: start to extract buildersmo khan
2025-06-25test: move unit tests to integration test suite to share codemo khan
2025-06-25test: move cedar_authorizer tests to integration test suitemo khan
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 23:39:00 +0000