summaryrefslogtreecommitdiff
path: root/pkg/rpc/ability_service.go
diff options
context:
space:
mode:
Diffstat (limited to 'pkg/rpc/ability_service.go')
-rw-r--r--pkg/rpc/ability_service.go7
1 files changed, 4 insertions, 3 deletions
diff --git a/pkg/rpc/ability_service.go b/pkg/rpc/ability_service.go
index bf299da..18327d5 100644
--- a/pkg/rpc/ability_service.go
+++ b/pkg/rpc/ability_service.go
@@ -4,6 +4,7 @@ import (
context "context"
"github.com/cedar-policy/cedar-go"
+ "gitlab.com/mokhax/spike/pkg/gid"
"gitlab.com/mokhax/spike/pkg/policies"
)
@@ -17,9 +18,9 @@ func NewAbilityService() *AbilityService {
func (h *AbilityService) Allowed(ctx context.Context, req *AllowRequest) (*AllowReply, error) {
ok := policies.Allowed(cedar.Request{
- Principal: cedar.NewEntityUID("User", cedar.String(req.Subject)),
- Action: cedar.NewEntityUID("Action", cedar.String(req.Permission)),
- Resource: cedar.NewEntityUID("Album", cedar.String(req.Resource)),
+ Principal: gid.NewEntityUID(req.Subject),
+ Action: cedar.NewEntityUID("Permission", cedar.String(req.Permission)),
+ Resource: gid.NewEntityUID(req.Resource),
Context: cedar.NewRecord(cedar.RecordMap{}),
})
return &AllowReply{Result: ok}, nil
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 03:14:23 +0000