diff options
| author | mo khan <mo@mokhan.ca> | 2025-07-23 15:33:14 -0600 |
|---|---|---|
| committer | mo khan <mo@mokhan.ca> | 2025-07-23 15:33:14 -0600 |
| commit | 7963e072161907e81544dcdc2ff04a49c9359096 (patch) | |
| tree | 54c8c34feda2cdeee46cdf662d18d89889a7d609 /etc | |
| parent | f861b0df276d26ef8db1e27678f807d22dabd6e3 (diff) | |
refactor: remove create permission check
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/authzd/relationships.yaml | 14 | ||||
| -rw-r--r-- | etc/authzd/schema.zed | 8 |
2 files changed, 11 insertions, 11 deletions
diff --git a/etc/authzd/relationships.yaml b/etc/authzd/relationships.yaml index 7f93052..1eb4459 100644 --- a/etc/authzd/relationships.yaml +++ b/etc/authzd/relationships.yaml @@ -1,12 +1,12 @@ schemaFile: "./schema.zed" relationships: >- - sparkle:1#author@user:mokhax + sparkle:1#sparkler@user:mokhax sparkle:1#sparklee@user:tanuki sparkle:1#reader@user:* - sparkle:2#author@user:mona + sparkle:2#sparkler@user:mona sparkle:2#sparklee@user:tanuki @@ -15,12 +15,12 @@ assertions: assertTrue: - "sparkle:1#read@user:mokhax" - "sparkle:1#read@user:tanuki" - - "sparkle:1#write@user:mokhax" + - "sparkle:1#update@user:mokhax" - "sparkle:2#read@user:mokhax" - "sparkle:2#read@user:mona" - "sparkle:2#read@user:tanuki" - - "sparkle:2#write@user:mona" + - "sparkle:2#update@user:mona" assertFalse: - - "sparkle:1#write@user:tanuki" - - "sparkle:2#write@user:tanuki" - - "sparkle:2#write@user:mokha" + - "sparkle:1#update@user:tanuki" + - "sparkle:2#update@user:tanuki" + - "sparkle:2#update@user:mokhax" diff --git a/etc/authzd/schema.zed b/etc/authzd/schema.zed index 9af95cc..928939d 100644 --- a/etc/authzd/schema.zed +++ b/etc/authzd/schema.zed @@ -1,10 +1,10 @@ -definition user {} +definition user { } definition sparkle { - relation author: user + relation sparkler: user relation sparklee: user relation reader: user:* - permission read = sparklee + author + reader - permission write = author + permission read = sparklee + sparkler + reader + permission update = sparkler } |