Documentation ¶
Index ¶
- func ExecuteTemplate(t *template.Template, data interface{}) ([]byte, error)
- func NewAccessControlServer(cfg *AccessControlServerConfig) (grbac.AccessControlServer, error)
- type AccessControlServerConfig
- type AccessControlServerImpl
- func (s *AccessControlServerImpl) AddGroupMember(ctx context.Context, req *grbac.AddGroupMemberRequest) (*grbac.Group, error)
- func (s *AccessControlServerImpl) Close() error
- func (s *AccessControlServerImpl) CreateGroup(ctx context.Context, req *grbac.CreateGroupRequest) (*grbac.Group, error)
- func (s *AccessControlServerImpl) CreatePermission(ctx context.Context, req *grbac.CreatePermissionRequest) (*grbac.Permission, error)
- func (s *AccessControlServerImpl) CreateResource(ctx context.Context, req *grbac.CreateResourceRequest) (*grbac.Resource, error)
- func (s *AccessControlServerImpl) CreateRole(ctx context.Context, req *grbac.CreateRoleRequest) (*grbac.Role, error)
- func (s *AccessControlServerImpl) CreateSubject(ctx context.Context, req *grbac.CreateSubjectRequest) (*grbac.Subject, error)
- func (s *AccessControlServerImpl) DeleteGroup(ctx context.Context, req *grbac.DeleteGroupRequest) (*empty.Empty, error)
- func (s *AccessControlServerImpl) DeletePermission(ctx context.Context, req *grbac.DeletePermissionRequest) (*empty.Empty, error)
- func (s *AccessControlServerImpl) DeleteResource(ctx context.Context, req *grbac.DeleteResourceRequest) (*empty.Empty, error)
- func (s *AccessControlServerImpl) DeleteRole(ctx context.Context, req *grbac.DeleteRoleRequest) (*empty.Empty, error)
- func (s *AccessControlServerImpl) DeleteSubject(ctx context.Context, req *grbac.DeleteSubjectRequest) (*empty.Empty, error)
- func (s *AccessControlServerImpl) GetGroup(ctx context.Context, req *grbac.GetGroupRequest) (*grbac.Group, error)
- func (s *AccessControlServerImpl) GetIamPolicy(ctx context.Context, req *iam.GetIamPolicyRequest) (*iam.Policy, error)
- func (s *AccessControlServerImpl) GetResource(ctx context.Context, req *grbac.GetResourceRequest) (*grbac.Resource, error)
- func (s *AccessControlServerImpl) GetRole(ctx context.Context, req *grbac.GetRoleRequest) (*grbac.Role, error)
- func (s *AccessControlServerImpl) RemoveGroupMember(ctx context.Context, req *grbac.RemoveGroupMemberRequest) (*grbac.Group, error)
- func (s *AccessControlServerImpl) SetIamPolicy(ctx context.Context, req *iam.SetIamPolicyRequest) (*iam.Policy, error)
- func (s *AccessControlServerImpl) TestIamPolicy(ctx context.Context, req *grbac.TestIamPolicyRequest) (*empty.Empty, error)
- func (s *AccessControlServerImpl) TransferResource(ctx context.Context, req *grbac.TransferResourceRequest) (*grbac.Resource, error)
- func (s *AccessControlServerImpl) UpdateGroup(ctx context.Context, req *grbac.UpdateGroupRequest) (*grbac.Group, error)
- func (s *AccessControlServerImpl) UpdateRole(ctx context.Context, req *grbac.UpdateRoleRequest) (*grbac.Role, error)
- type MemberError
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func NewAccessControlServer ¶
func NewAccessControlServer(cfg *AccessControlServerConfig) (grbac.AccessControlServer, error)
NewAccessControlServer returns a new instance of AccessControl server.
Types ¶
type AccessControlServerConfig ¶
type AccessControlServerConfig struct {
DgraphHostname string
}
type AccessControlServerImpl ¶
type AccessControlServerImpl struct {
// contains filtered or unexported fields
}
func (*AccessControlServerImpl) AddGroupMember ¶
func (s *AccessControlServerImpl) AddGroupMember(ctx context.Context, req *grbac.AddGroupMemberRequest) (*grbac.Group, error)
AddGroupMember adds a member to a group.
func (*AccessControlServerImpl) Close ¶
func (s *AccessControlServerImpl) Close() error
func (*AccessControlServerImpl) CreateGroup ¶
func (s *AccessControlServerImpl) CreateGroup(ctx context.Context, req *grbac.CreateGroupRequest) (*grbac.Group, error)
CreateGroup creates a new group.
func (*AccessControlServerImpl) CreatePermission ¶
func (s *AccessControlServerImpl) CreatePermission(ctx context.Context, req *grbac.CreatePermissionRequest) (*grbac.Permission, error)
CreatePermission creates a new permission.
func (*AccessControlServerImpl) CreateResource ¶
func (s *AccessControlServerImpl) CreateResource(ctx context.Context, req *grbac.CreateResourceRequest) (*grbac.Resource, error)
CreateResource creates a new resource.
func (*AccessControlServerImpl) CreateRole ¶
func (s *AccessControlServerImpl) CreateRole(ctx context.Context, req *grbac.CreateRoleRequest) (*grbac.Role, error)
CreateRole creates a new role.
func (*AccessControlServerImpl) CreateSubject ¶
func (s *AccessControlServerImpl) CreateSubject(ctx context.Context, req *grbac.CreateSubjectRequest) (*grbac.Subject, error)
CreateSubject creates a new subject.
func (*AccessControlServerImpl) DeleteGroup ¶
func (s *AccessControlServerImpl) DeleteGroup(ctx context.Context, req *grbac.DeleteGroupRequest) (*empty.Empty, error)
DeleteGroup deletes a group.
func (*AccessControlServerImpl) DeletePermission ¶
func (s *AccessControlServerImpl) DeletePermission(ctx context.Context, req *grbac.DeletePermissionRequest) (*empty.Empty, error)
DeletePermission deletes a permission.
func (*AccessControlServerImpl) DeleteResource ¶
func (s *AccessControlServerImpl) DeleteResource(ctx context.Context, req *grbac.DeleteResourceRequest) (*empty.Empty, error)
DeleteResource deletes a resource.
func (*AccessControlServerImpl) DeleteRole ¶
func (s *AccessControlServerImpl) DeleteRole(ctx context.Context, req *grbac.DeleteRoleRequest) (*empty.Empty, error)
DeleteRole deletes a role.
func (*AccessControlServerImpl) DeleteSubject ¶
func (s *AccessControlServerImpl) DeleteSubject(ctx context.Context, req *grbac.DeleteSubjectRequest) (*empty.Empty, error)
DeleteSubject deletes a subject.
func (*AccessControlServerImpl) GetGroup ¶
func (s *AccessControlServerImpl) GetGroup(ctx context.Context, req *grbac.GetGroupRequest) (*grbac.Group, error)
GetGroup returns a group.
func (*AccessControlServerImpl) GetIamPolicy ¶
func (s *AccessControlServerImpl) GetIamPolicy(ctx context.Context, req *iam.GetIamPolicyRequest) (*iam.Policy, error)
Gets the IAM policy that is attached to a generic resource.
func (*AccessControlServerImpl) GetResource ¶
func (s *AccessControlServerImpl) GetResource(ctx context.Context, req *grbac.GetResourceRequest) (*grbac.Resource, error)
GetResource returns a resource.
func (*AccessControlServerImpl) GetRole ¶
func (s *AccessControlServerImpl) GetRole(ctx context.Context, req *grbac.GetRoleRequest) (*grbac.Role, error)
GetRole returns a role.
func (*AccessControlServerImpl) RemoveGroupMember ¶
func (s *AccessControlServerImpl) RemoveGroupMember(ctx context.Context, req *grbac.RemoveGroupMemberRequest) (*grbac.Group, error)
RemoveGroupMember removes a member from a group.
func (*AccessControlServerImpl) SetIamPolicy ¶
func (s *AccessControlServerImpl) SetIamPolicy(ctx context.Context, req *iam.SetIamPolicyRequest) (*iam.Policy, error)
Sets the IAM policy that is attached to a generic resource.
func (*AccessControlServerImpl) TestIamPolicy ¶
func (s *AccessControlServerImpl) TestIamPolicy(ctx context.Context, req *grbac.TestIamPolicyRequest) (*empty.Empty, error)
Checks whether a member has a specific permission for a specific resource. If not allowed an Unauthorized (403) error will be returned.
func (*AccessControlServerImpl) TransferResource ¶
func (s *AccessControlServerImpl) TransferResource(ctx context.Context, req *grbac.TransferResourceRequest) (*grbac.Resource, error)
TransferResource transfers a resource to a new parent.
func (*AccessControlServerImpl) UpdateGroup ¶
func (s *AccessControlServerImpl) UpdateGroup(ctx context.Context, req *grbac.UpdateGroupRequest) (*grbac.Group, error)
UpdateGroup updates a group with a field mask.
func (*AccessControlServerImpl) UpdateRole ¶
func (s *AccessControlServerImpl) UpdateRole(ctx context.Context, req *grbac.UpdateRoleRequest) (*grbac.Role, error)
UpdateRole updates a role with a field mask.
type MemberError ¶
type MemberError struct {
// contains filtered or unexported fields
}
func (*MemberError) Error ¶
func (e *MemberError) Error() string
Source Files ¶
- authorize.go
- authorizer_service.go
- groups.go
- groups_create.go
- groups_delete.go
- groups_get.go
- groups_members_add.go
- groups_members_remove.go
- groups_update.go
- iam_policies_get.go
- iam_policies_set.go
- permissions.go
- permissions_create.go
- permissions_delete.go
- resources.go
- resources_create.go
- resources_delete.go
- resources_get.go
- resources_transfer.go
- roles.go
- roles_create.go
- roles_delete.go
- roles_get.go
- roles_update.go
- subjects.go
- subjects_create.go
- subjects_delete.go
- template.go