Rasmus Dencker
05/25/2022, 1:23 PMattr
and do configure with expr instead?Alex Olivier (Cerbos)
Rasmus Dencker
05/25/2022, 1:26 PMapiVersion: api.cerbos.dev/v1
derivedRoles:
definitions:
- name: report.read
parentRoles:
- report.read
- report.delete
- report.update
- report.create
- name: report.create
parentRoles:
- report.create
Alex Olivier (Cerbos)
"report.read" in P.attr.permissions
where you principal looks like
{
"id": "123",
"roles": [
"USER"
],
"attr": {
"permissions": [
"reports.read",
"reports.write"
]
}
}
Rasmus Dencker
05/25/2022, 1:31 PMAlex Olivier (Cerbos)
Rasmus Dencker
05/25/2022, 1:38 PMAlex Olivier (Cerbos)
Rasmus Dencker
05/25/2022, 1:47 PMAlex Olivier (Cerbos)
Rasmus Dencker
05/25/2022, 1:56 PMAlex Olivier (Cerbos)
Rasmus Dencker
05/25/2022, 2:11 PMcerbos, err := client.New("localhost:3593", client.WithPlaintext(), client.WithPlaygroundInstance("[redacted]"))
Alex Olivier (Cerbos)
Rasmus Dencker
05/25/2022, 2:14 PMAlex Olivier (Cerbos)
Emre (Cerbos)
Rasmus Dencker
05/25/2022, 3:50 PM