feat(authz): Typed Entities (#1249)

Add Category field to Entity struct Environment entities not included in access decision resolves #1220 documentation: opentdf/docs#37
opentdf · Aug 9, 2024 · cfab3ad · cfab3ad
1 parent 9921962
commit cfab3ad
Show file tree

Hide file tree

Showing 10 changed files with 632 additions and 253 deletions.
diff --git a/docs/grpc/index.html b/docs/grpc/index.html
diff --git a/docs/openapi/authorization/authorization.swagger.json b/docs/openapi/authorization/authorization.swagger.json
diff --git a/docs/openapi/entityresolution/entity_resolution.swagger.json b/docs/openapi/entityresolution/entity_resolution.swagger.json
diff --git a/examples/cmd/authorization.go b/examples/cmd/authorization.go
@@ -35,11 +35,13 @@ func authorizationExamples() error {
 
 	// model two groups of entities; user bob and user alice
 	entityChains := []*authorization.EntityChain{{
-		Id:       "ec1", // ec1 is an arbitrary tracking id to match results to request
-		Entities: []*authorization.Entity{{EntityType: &authorization.Entity_EmailAddress{EmailAddress: "[email protected]"}}},
+		Id: "ec1", // ec1 is an arbitrary tracking id to match results to request
+		Entities: []*authorization.Entity{{EntityType: &authorization.Entity_EmailAddress{EmailAddress: "[email protected]"},
+			Category: authorization.Entity_CATEGORY_SUBJECT}},
 	}, {
-		Id:       "ec2", // ec2 is an arbitrary tracking id to match results to request
-		Entities: []*authorization.Entity{{EntityType: &authorization.Entity_UserName{UserName: "[email protected]"}}},
+		Id: "ec2", // ec2 is an arbitrary tracking id to match results to request
+		Entities: []*authorization.Entity{{EntityType: &authorization.Entity_UserName{UserName: "[email protected]"},
+			Category: authorization.Entity_CATEGORY_SUBJECT}},
 	}}
 
 	// TODO Get attribute value ids