Commitea25c08

committed

Allow wildcards for ACL list

1 parentf162694 commitea25c08Copy full SHA for ea25c08

File tree

+12

-0

lines changed

+12

-0

lines changed

Lines changed: 7 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -199,6 +199,13 @@ func TestAuthorizeDomain(t *testing.T) {`
`199`	`199`	`actions:allActions(),`
`200`	`200`	`allow:true,`
`201`	`201`	`},`
	`202`	`+{`
	`203`	`+resource:ResourceWorkspace.WithOwner(unuseID.String()).InOrg(unuseID).WithACLUserList(map[string][]Action{`
	`204`	`+user.UserID: {WildcardSymbol},`
	`205`	`+}),`
	`206`	`+actions:allActions(),`
	`207`	`+allow:true,`
	`208`	`+},`
`202`	`209`	`{`
`203`	`210`	`resource:ResourceWorkspace.WithOwner(unuseID.String()).InOrg(unuseID).WithACLUserList(map[string][]Action{`
`204`	`211`	`user.UserID: {ActionRead,ActionUpdate},`

Lines changed: 5 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -163,3 +163,8 @@ allow {`
`163`	`163`	`perms:= input.object.acl_user_list[input.subject.id]`
`164`	`164`	`input.action inperms`
`165`	`165`	`}`
	`166`	`+`
	`167`	`+# ACL wildcard allow`
	`168`	`+allow {`
	`169`	`+"*" ininput.object.acl_user_list[input.subject.id]`
	`170`	`+}`

Comments

(0)