Dung Truong
08/24/2023, 9:52 PMarbitrary object
instead of just EFFECT_ALLOW/DENY
The use case of mine is, i want to return list of fields
user could access based on action
.Dennis (Cerbos)
rules:
- actions: ['view']
effect: EFFECT_ALLOW
roles:
- user
condition:
match:
expr: request.resource.attr.public == true
output:
expr: |-
"view_allowed:%s".format([request.principal.id])
Dennis (Cerbos)
Dung Truong
08/24/2023, 11:01 PM