Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type GroupPermissions ¶ added in v0.1.14
type GroupPermissions struct {
// ID is the unique, immutable project identifier.
ID string `json:"id"`
// Roles are the privileges a user has for the group.
Roles []roles.Role `json:"roles"`
}
GroupPermissions are privilege grants for a project.
type OrganizationPermissions ¶ added in v0.1.14
type OrganizationPermissions struct {
// IsAdmin allows the user to play with all resources in an organization.
IsAdmin bool `json:"isAdmin,omitempty"`
// Name is the name of the organization.
Name string `json:"name"`
// Groups are any groups the user belongs to in an organization.
Groups []GroupPermissions `json:"groups,omitempty"`
}
OrganizationPermissions are privilege grants for an organization.
type Permissions ¶ added in v0.1.14
type Permissions struct {
// IsSuperAdmin HAS SUPER COW POWERS!!!
IsSuperAdmin bool `json:"isSuperAdmin,omitempty"`
// Organizations are any organizations the user has access to.
Organizations []OrganizationPermissions `json:"organizations,omitempty"`
}
Permissions are privilege grants for the entire system.
type RBAC ¶
type RBAC struct {
// contains filtered or unexported fields
}
RBAC contains all the scoping rules for services across the platform.
func (*RBAC) GetOrganizatons ¶ added in v0.1.14
GetOrganizatons grabs all organizations for the system.
func (*RBAC) UserExists ¶
UserExists is an optimized version of the permissions builder that is used to authorize authentication requests. Failure here means the user need to signup and register themselves with an organization uing a back-channel.
func (*RBAC) UserPermissions ¶ added in v0.1.14
UserPermissions builds up a hierarchy of permissions for a user, this is used both internally and given out to resource servers via token introspection.
Source Files
Click to show internal directories.
Click to hide internal directories.