From 187c02e9bf32f152cbca9fd5790f4a6070dbb37d Mon Sep 17 00:00:00 2001
From: mo khan <mo@mokhan.ca>
Date: Thu, 26 Jun 2025 15:30:41 -0600
Subject: refactor: try to move policy files to /etc/authzd/

---
 etc/authzd/policy0.cedar | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 etc/authzd/policy0.cedar

(limited to 'etc/authzd')

diff --git a/etc/authzd/policy0.cedar b/etc/authzd/policy0.cedar
new file mode 100644
index 00000000..e01182c5
--- /dev/null
+++ b/etc/authzd/policy0.cedar
@@ -0,0 +1,19 @@
+permit(principal, action == Action::"check", resource)
+when {
+    context has bearer_token &&
+    context.bearer_token == "valid-token"
+};
+
+permit(principal, action == Action::"check", resource)
+when {
+    context has path &&
+    (context.path like "*.css" ||
+     context.path like "*.js" ||
+     context.path like "*.ico" ||
+     context.path like "*.png" ||
+     context.path like "*.jpg" ||
+     context.path like "*.jpeg" ||
+     context.path like "*.gif" ||
+     context.path like "*.bmp" ||
+     context.path like "*.html")
+};
-- 
cgit v1.2.3