authzv1alpha1

package
v1.31.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 2, 2024 License: MIT Imports: 9 Imported by: 2

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var (
	Decision_name = map[int32]string{
		0: "DECISION_UNSPECIFIED",
		2: "DECISION_ALLOW",
		4: "DECISION_DENY",
	}
	Decision_value = map[string]int32{
		"DECISION_UNSPECIFIED": 0,
		"DECISION_ALLOW":       2,
		"DECISION_DENY":        4,
	}
)

Enum value maps for Decision.

View Source 
var (
	ValidationErrorKind_name = map[int32]string{
		0: "VALIDATION_ERROR_KIND_UNSPECIFIED",
		1: "VALIDATION_ERROR_UNRECOGNIZED_ENTITY_TYPE",
		2: "VALIDATION_ERROR_UNRECOGNIZED_ACTION_ID",
		3: "VALIDATION_ERROR_INVALID_ACTION_APPLICATION",
		4: "VALIDATION_ERROR_TYPE_ERROR",
		5: "VALIDATION_ERROR_UNSPECIFIED_ENTITY",
	}
	ValidationErrorKind_value = map[string]int32{
		"VALIDATION_ERROR_KIND_UNSPECIFIED":           0,
		"VALIDATION_ERROR_UNRECOGNIZED_ENTITY_TYPE":   1,
		"VALIDATION_ERROR_UNRECOGNIZED_ACTION_ID":     2,
		"VALIDATION_ERROR_INVALID_ACTION_APPLICATION": 3,
		"VALIDATION_ERROR_TYPE_ERROR":                 4,
		"VALIDATION_ERROR_UNSPECIFIED_ENTITY":         5,
	}
)

Enum value maps for ValidationErrorKind.

View Source 
var (
	ValidationWarningKind_name = map[int32]string{
		0: "VALIDATION_WARNING_KIND_UNSPECIFIED",
		1: "VALIDATION_WARNING_MIXED_SCRIPT_STRING",
		2: "VALIDATION_WARNING_BIDI_CHARS_IN_STRING",
		3: "VALIDATION_WARNING_BIDI_CHARS_IN_IDENTIFIER",
		4: "VALIDATION_WARNING_MIXED_SCRIPT_IDENTIFIER",
		5: "VALIDATION_WARNING_CONFUSABLE_IDENTIFIER",
		6: "VALIDATION_WARNING_ENTITY_DOES_NOT_EXIST",
	}
	ValidationWarningKind_value = map[string]int32{
		"VALIDATION_WARNING_KIND_UNSPECIFIED":         0,
		"VALIDATION_WARNING_MIXED_SCRIPT_STRING":      1,
		"VALIDATION_WARNING_BIDI_CHARS_IN_STRING":     2,
		"VALIDATION_WARNING_BIDI_CHARS_IN_IDENTIFIER": 3,
		"VALIDATION_WARNING_MIXED_SCRIPT_IDENTIFIER":  4,
		"VALIDATION_WARNING_CONFUSABLE_IDENTIFIER":    5,
		"VALIDATION_WARNING_ENTITY_DOES_NOT_EXIST":    6,
	}
)

Enum value maps for ValidationWarningKind.

View Source 
var (
	// Denotes the particular RPC as being read-only.
	// This applies a tag during authorization for our authorization audit log.
	//
	// optional bool read_only = 50001;
	E_ReadOnly = &file_commonfate_authz_v1alpha1_read_only_proto_extTypes[0]
)

Extension fields to descriptorpb.MethodOptions.

View Source 
var File_commonfate_authz_v1alpha1_authz_proto protoreflect.FileDescriptor
View Source 
var File_commonfate_authz_v1alpha1_evaluation_proto protoreflect.FileDescriptor
View Source 
var File_commonfate_authz_v1alpha1_health_proto protoreflect.FileDescriptor
View Source 
var File_commonfate_authz_v1alpha1_policy_proto protoreflect.FileDescriptor
View Source 
var File_commonfate_authz_v1alpha1_read_only_proto protoreflect.FileDescriptor
View Source 
var File_commonfate_authz_v1alpha1_request_proto protoreflect.FileDescriptor
View Source 
var File_commonfate_authz_v1alpha1_schema_proto protoreflect.FileDescriptor
View Source 
var File_commonfate_authz_v1alpha1_validation_proto protoreflect.FileDescriptor

Functions

This section is empty.

Types

type Annotation 

type Annotation struct {

	// the ID of the policy with the annotation
	PolicyId string `protobuf:"bytes,1,opt,name=policy_id,json=policyId,proto3" json:"policy_id,omitempty"`
	// the key of the annotation. e.g. in @advice("something")
	// it is 'advice'.
	Key string `protobuf:"bytes,2,opt,name=key,proto3" json:"key,omitempty"`
	// the value of the annotation. e.g. in @advice("something")
	// it is 'something'
	Value string `protobuf:"bytes,3,opt,name=value,proto3" json:"value,omitempty"`
	// contains filtered or unexported fields
}

func (*Annotation) Descriptor deprecated 

func (*Annotation) Descriptor() ([]byte, []int)

Deprecated: Use Annotation.ProtoReflect.Descriptor instead.

func (*Annotation) GetKey 

func (x *Annotation) GetKey() string

func (*Annotation) GetPolicyId 

func (x *Annotation) GetPolicyId() string

func (*Annotation) GetValue 

func (x *Annotation) GetValue() string

func (*Annotation) ProtoMessage 

func (*Annotation) ProtoMessage()

func (*Annotation) ProtoReflect 

func (x *Annotation) ProtoReflect() protoreflect.Message

func (*Annotation) Reset 

func (x *Annotation) Reset()

func (*Annotation) String 

func (x *Annotation) String() string

type BatchAuthorizeRequest 

type BatchAuthorizeRequest struct {
	Requests []*Request `protobuf:"bytes,3,rep,name=requests,proto3" json:"requests,omitempty"`
	// contains filtered or unexported fields
}

func (*BatchAuthorizeRequest) Descriptor deprecated 

func (*BatchAuthorizeRequest) Descriptor() ([]byte, []int)

Deprecated: Use BatchAuthorizeRequest.ProtoReflect.Descriptor instead.

func (*BatchAuthorizeRequest) GetRequests 

func (x *BatchAuthorizeRequest) GetRequests() []*Request

func (*BatchAuthorizeRequest) ProtoMessage 

func (*BatchAuthorizeRequest) ProtoMessage()

func (*BatchAuthorizeRequest) ProtoReflect 

func (x *BatchAuthorizeRequest) ProtoReflect() protoreflect.Message

func (*BatchAuthorizeRequest) Reset 

func (x *BatchAuthorizeRequest) Reset()

func (*BatchAuthorizeRequest) String 

func (x *BatchAuthorizeRequest) String() string

type BatchAuthorizeResponse 

type BatchAuthorizeResponse struct {
	Evaluations []*Evaluation `protobuf:"bytes,1,rep,name=evaluations,proto3" json:"evaluations,omitempty"`
	// contains filtered or unexported fields
}

func (*BatchAuthorizeResponse) Descriptor deprecated 

func (*BatchAuthorizeResponse) Descriptor() ([]byte, []int)

Deprecated: Use BatchAuthorizeResponse.ProtoReflect.Descriptor instead.

func (*BatchAuthorizeResponse) GetEvaluations 

func (x *BatchAuthorizeResponse) GetEvaluations() []*Evaluation

func (*BatchAuthorizeResponse) ProtoMessage 

func (*BatchAuthorizeResponse) ProtoMessage()

func (*BatchAuthorizeResponse) ProtoReflect 

func (x *BatchAuthorizeResponse) ProtoReflect() protoreflect.Message

func (*BatchAuthorizeResponse) Reset 

func (x *BatchAuthorizeResponse) Reset()

func (*BatchAuthorizeResponse) String 

func (x *BatchAuthorizeResponse) String() string

type CreatePolicySetRequest 

type CreatePolicySetRequest struct {
	PolicySet *PolicySetInput `protobuf:"bytes,1,opt,name=policy_set,json=policySet,proto3" json:"policy_set,omitempty"`
	// contains filtered or unexported fields
}

func (*CreatePolicySetRequest) Descriptor deprecated 

func (*CreatePolicySetRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreatePolicySetRequest.ProtoReflect.Descriptor instead.

func (*CreatePolicySetRequest) GetPolicySet 

func (x *CreatePolicySetRequest) GetPolicySet() *PolicySetInput

func (*CreatePolicySetRequest) ProtoMessage 

func (*CreatePolicySetRequest) ProtoMessage()

func (*CreatePolicySetRequest) ProtoReflect 

func (x *CreatePolicySetRequest) ProtoReflect() protoreflect.Message

func (*CreatePolicySetRequest) Reset 

func (x *CreatePolicySetRequest) Reset()

func (*CreatePolicySetRequest) String 

func (x *CreatePolicySetRequest) String() string

type CreatePolicySetResponse 

type CreatePolicySetResponse struct {
	PolicySet *PolicySet `protobuf:"bytes,1,opt,name=policy_set,json=policySet,proto3" json:"policy_set,omitempty"`
	// contains filtered or unexported fields
}

func (*CreatePolicySetResponse) Descriptor deprecated 

func (*CreatePolicySetResponse) Descriptor() ([]byte, []int)

Deprecated: Use CreatePolicySetResponse.ProtoReflect.Descriptor instead.

func (*CreatePolicySetResponse) GetPolicySet 

func (x *CreatePolicySetResponse) GetPolicySet() *PolicySet

func (*CreatePolicySetResponse) ProtoMessage 

func (*CreatePolicySetResponse) ProtoMessage()

func (*CreatePolicySetResponse) ProtoReflect 

func (x *CreatePolicySetResponse) ProtoReflect() protoreflect.Message

func (*CreatePolicySetResponse) Reset 

func (x *CreatePolicySetResponse) Reset()

func (*CreatePolicySetResponse) String 

func (x *CreatePolicySetResponse) String() string

type DebugEvaluation added in v1.10.0 

type DebugEvaluation struct {

	// version is used when serializing the DebugEvaluation message in order to ensure
	// forwards-compatibility. Version should be set to '1' when storing DebugEvaluation messages in archival storage.
	Version          uint32            `protobuf:"varint,1,opt,name=version,proto3" json:"version,omitempty"`
	Evaluation       *Evaluation       `protobuf:"bytes,2,opt,name=evaluation,proto3" json:"evaluation,omitempty"`
	DebugInformation *DebugInformation `protobuf:"bytes,3,opt,name=debug_information,json=debugInformation,proto3" json:"debug_information,omitempty"`
	// contains filtered or unexported fields
}

DebugEvaluation contains additional information about a particular authorization evaluation, allowing an administrator to debug the decision and understand why the request was allowed or denied.

func (*DebugEvaluation) Descriptor deprecated added in v1.10.0 

func (*DebugEvaluation) Descriptor() ([]byte, []int)

Deprecated: Use DebugEvaluation.ProtoReflect.Descriptor instead.

func (*DebugEvaluation) GetDebugInformation added in v1.10.0 

func (x *DebugEvaluation) GetDebugInformation() *DebugInformation

func (*DebugEvaluation) GetEvaluation added in v1.10.0 

func (x *DebugEvaluation) GetEvaluation() *Evaluation

func (*DebugEvaluation) GetVersion added in v1.10.0 

func (x *DebugEvaluation) GetVersion() uint32

func (*DebugEvaluation) ProtoMessage added in v1.10.0 

func (*DebugEvaluation) ProtoMessage()

func (*DebugEvaluation) ProtoReflect added in v1.10.0 

func (x *DebugEvaluation) ProtoReflect() protoreflect.Message

func (*DebugEvaluation) Reset added in v1.10.0 

func (x *DebugEvaluation) Reset()

func (*DebugEvaluation) String added in v1.10.0 

func (x *DebugEvaluation) String() string

type DebugInformation 

type DebugInformation struct {

	// PolicySets which contributed to the authorization decision.
	PolicySets []*PolicySet `protobuf:"bytes,1,rep,name=policy_sets,json=policySets,proto3" json:"policy_sets,omitempty"`
	// Entities which contributed to the authorization decision.
	Entities []*v1alpha1.Entity `protobuf:"bytes,2,rep,name=entities,proto3" json:"entities,omitempty"`
	// contains filtered or unexported fields
}

func (*DebugInformation) Descriptor deprecated 

func (*DebugInformation) Descriptor() ([]byte, []int)

Deprecated: Use DebugInformation.ProtoReflect.Descriptor instead.

func (*DebugInformation) GetEntities 

func (x *DebugInformation) GetEntities() []*v1alpha1.Entity

func (*DebugInformation) GetPolicySets added in v1.10.0 

func (x *DebugInformation) GetPolicySets() []*PolicySet

func (*DebugInformation) ProtoMessage 

func (*DebugInformation) ProtoMessage()

func (*DebugInformation) ProtoReflect 

func (x *DebugInformation) ProtoReflect() protoreflect.Message

func (*DebugInformation) Reset 

func (x *DebugInformation) Reset()

func (*DebugInformation) String 

func (x *DebugInformation) String() string

type Decision 

type Decision int32
const (
	Decision_DECISION_UNSPECIFIED Decision = 0
	// Access is allowed.
	Decision_DECISION_ALLOW Decision = 2
	// Access is denied.
	Decision_DECISION_DENY Decision = 4
)

func (Decision) Descriptor 

func (Decision) Descriptor() protoreflect.EnumDescriptor

func (Decision) Enum 

func (x Decision) Enum() *Decision

func (Decision) EnumDescriptor deprecated 

func (Decision) EnumDescriptor() ([]byte, []int)

Deprecated: Use Decision.Descriptor instead.

func (Decision) Number 

func (x Decision) Number() protoreflect.EnumNumber

func (Decision) String 

func (x Decision) String() string

func (Decision) Type 

func (Decision) Type() protoreflect.EnumType

type DeletePolicySetRequest 

type DeletePolicySetRequest struct {
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeletePolicySetRequest) Descriptor deprecated 

func (*DeletePolicySetRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeletePolicySetRequest.ProtoReflect.Descriptor instead.

func (*DeletePolicySetRequest) GetId 

func (x *DeletePolicySetRequest) GetId() string

func (*DeletePolicySetRequest) ProtoMessage 

func (*DeletePolicySetRequest) ProtoMessage()

func (*DeletePolicySetRequest) ProtoReflect 

func (x *DeletePolicySetRequest) ProtoReflect() protoreflect.Message

func (*DeletePolicySetRequest) Reset 

func (x *DeletePolicySetRequest) Reset()

func (*DeletePolicySetRequest) String 

func (x *DeletePolicySetRequest) String() string

type DeletePolicySetResponse 

type DeletePolicySetResponse struct {
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeletePolicySetResponse) Descriptor deprecated 

func (*DeletePolicySetResponse) Descriptor() ([]byte, []int)

Deprecated: Use DeletePolicySetResponse.ProtoReflect.Descriptor instead.

func (*DeletePolicySetResponse) GetId 

func (x *DeletePolicySetResponse) GetId() string

func (*DeletePolicySetResponse) ProtoMessage 

func (*DeletePolicySetResponse) ProtoMessage()

func (*DeletePolicySetResponse) ProtoReflect 

func (x *DeletePolicySetResponse) ProtoReflect() protoreflect.Message

func (*DeletePolicySetResponse) Reset 

func (x *DeletePolicySetResponse) Reset()

func (*DeletePolicySetResponse) String 

func (x *DeletePolicySetResponse) String() string

type Diagnostics 

type Diagnostics struct {
	Reason      []string      `protobuf:"bytes,1,rep,name=reason,proto3" json:"reason,omitempty"`
	Errors      []string      `protobuf:"bytes,2,rep,name=errors,proto3" json:"errors,omitempty"`
	Annotations []*Annotation `protobuf:"bytes,3,rep,name=annotations,proto3" json:"annotations,omitempty"`
	// contains filtered or unexported fields
}

func (*Diagnostics) Descriptor deprecated 

func (*Diagnostics) Descriptor() ([]byte, []int)

Deprecated: Use Diagnostics.ProtoReflect.Descriptor instead.

func (*Diagnostics) GetAnnotations 

func (x *Diagnostics) GetAnnotations() []*Annotation

func (*Diagnostics) GetErrors 

func (x *Diagnostics) GetErrors() []string

func (*Diagnostics) GetReason 

func (x *Diagnostics) GetReason() []string

func (*Diagnostics) ProtoMessage 

func (*Diagnostics) ProtoMessage()

func (*Diagnostics) ProtoReflect 

func (x *Diagnostics) ProtoReflect() protoreflect.Message

func (*Diagnostics) Reset 

func (x *Diagnostics) Reset()

func (*Diagnostics) String 

func (x *Diagnostics) String() string

type Evaluation 

type Evaluation struct {
	Id          string       `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	Request     *Request     `protobuf:"bytes,2,opt,name=request,proto3" json:"request,omitempty"`
	Decision    Decision     `protobuf:"varint,3,opt,name=decision,proto3,enum=commonfate.authz.v1alpha1.Decision" json:"decision,omitempty"`
	Diagnostics *Diagnostics `protobuf:"bytes,4,opt,name=diagnostics,proto3" json:"diagnostics,omitempty"`
	// The client-side identifier for the request specified in AuthorizationRequest.
	ClientKey   string                 `protobuf:"bytes,5,opt,name=client_key,json=clientKey,proto3" json:"client_key,omitempty"`
	EvaluatedAt *timestamppb.Timestamp `protobuf:"bytes,6,opt,name=evaluated_at,json=evaluatedAt,proto3" json:"evaluated_at,omitempty"`
	// the duration that it took to make the authorization decision
	EvaluationDuration *durationpb.Duration `protobuf:"bytes,7,opt,name=evaluation_duration,json=evaluationDuration,proto3" json:"evaluation_duration,omitempty"`
	// A boolean value indicating whether access is allowed or denied.
	// This is emitted in addition to the 'decision' field to simplify interpreting
	// audit log events, as 'decision' is serialized as an integer.
	Allowed bool `protobuf:"varint,8,opt,name=allowed,proto3" json:"allowed,omitempty"`
	// contains filtered or unexported fields
}

func (*Evaluation) Descriptor deprecated 

func (*Evaluation) Descriptor() ([]byte, []int)

Deprecated: Use Evaluation.ProtoReflect.Descriptor instead.

func (*Evaluation) GetAllowed added in v1.24.0 

func (x *Evaluation) GetAllowed() bool

func (*Evaluation) GetClientKey 

func (x *Evaluation) GetClientKey() string

func (*Evaluation) GetDecision 

func (x *Evaluation) GetDecision() Decision

func (*Evaluation) GetDiagnostics 

func (x *Evaluation) GetDiagnostics() *Diagnostics

func (*Evaluation) GetEvaluatedAt 

func (x *Evaluation) GetEvaluatedAt() *timestamppb.Timestamp

func (*Evaluation) GetEvaluationDuration added in v1.10.0 

func (x *Evaluation) GetEvaluationDuration() *durationpb.Duration

func (*Evaluation) GetId 

func (x *Evaluation) GetId() string

func (*Evaluation) GetRequest 

func (x *Evaluation) GetRequest() *Request

func (*Evaluation) ProtoMessage 

func (*Evaluation) ProtoMessage()

func (*Evaluation) ProtoReflect 

func (x *Evaluation) ProtoReflect() protoreflect.Message

func (*Evaluation) Reset 

func (x *Evaluation) Reset()

func (*Evaluation) String 

func (x *Evaluation) String() string

type GetPolicySetRequest 

type GetPolicySetRequest struct {

	// The token for the next page.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*GetPolicySetRequest) Descriptor deprecated 

func (*GetPolicySetRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetPolicySetRequest.ProtoReflect.Descriptor instead.

func (*GetPolicySetRequest) GetId 

func (x *GetPolicySetRequest) GetId() string

func (*GetPolicySetRequest) ProtoMessage 

func (*GetPolicySetRequest) ProtoMessage()

func (*GetPolicySetRequest) ProtoReflect 

func (x *GetPolicySetRequest) ProtoReflect() protoreflect.Message

func (*GetPolicySetRequest) Reset 

func (x *GetPolicySetRequest) Reset()

func (*GetPolicySetRequest) String 

func (x *GetPolicySetRequest) String() string

type GetPolicySetResponse 

type GetPolicySetResponse struct {
	PolicySet *PolicySet `protobuf:"bytes,1,opt,name=policy_set,json=policySet,proto3" json:"policy_set,omitempty"`
	// contains filtered or unexported fields
}

func (*GetPolicySetResponse) Descriptor deprecated 

func (*GetPolicySetResponse) Descriptor() ([]byte, []int)

Deprecated: Use GetPolicySetResponse.ProtoReflect.Descriptor instead.

func (*GetPolicySetResponse) GetPolicySet 

func (x *GetPolicySetResponse) GetPolicySet() *PolicySet

func (*GetPolicySetResponse) ProtoMessage 

func (*GetPolicySetResponse) ProtoMessage()

func (*GetPolicySetResponse) ProtoReflect 

func (x *GetPolicySetResponse) ProtoReflect() protoreflect.Message

func (*GetPolicySetResponse) Reset 

func (x *GetPolicySetResponse) Reset()

func (*GetPolicySetResponse) String 

func (x *GetPolicySetResponse) String() string

type GetSchemaJSONStringRequest added in v1.14.0 

type GetSchemaJSONStringRequest struct {
	// contains filtered or unexported fields
}

func (*GetSchemaJSONStringRequest) Descriptor deprecated added in v1.14.0 

func (*GetSchemaJSONStringRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetSchemaJSONStringRequest.ProtoReflect.Descriptor instead.

func (*GetSchemaJSONStringRequest) ProtoMessage added in v1.14.0 

func (*GetSchemaJSONStringRequest) ProtoMessage()

func (*GetSchemaJSONStringRequest) ProtoReflect added in v1.14.0 

func (x *GetSchemaJSONStringRequest) ProtoReflect() protoreflect.Message

func (*GetSchemaJSONStringRequest) Reset added in v1.14.0 

func (x *GetSchemaJSONStringRequest) Reset()

func (*GetSchemaJSONStringRequest) String added in v1.14.0 

func (x *GetSchemaJSONStringRequest) String() string

type GetSchemaJSONStringResponse added in v1.14.0 

type GetSchemaJSONStringResponse struct {
	Schema string `protobuf:"bytes,1,opt,name=schema,proto3" json:"schema,omitempty"`
	// contains filtered or unexported fields
}

func (*GetSchemaJSONStringResponse) Descriptor deprecated added in v1.14.0 

func (*GetSchemaJSONStringResponse) Descriptor() ([]byte, []int)

Deprecated: Use GetSchemaJSONStringResponse.ProtoReflect.Descriptor instead.

func (*GetSchemaJSONStringResponse) GetSchema added in v1.14.0 

func (x *GetSchemaJSONStringResponse) GetSchema() string

func (*GetSchemaJSONStringResponse) ProtoMessage added in v1.14.0 

func (*GetSchemaJSONStringResponse) ProtoMessage()

func (*GetSchemaJSONStringResponse) ProtoReflect added in v1.14.0 

func (x *GetSchemaJSONStringResponse) ProtoReflect() protoreflect.Message

func (*GetSchemaJSONStringResponse) Reset added in v1.14.0 

func (x *GetSchemaJSONStringResponse) Reset()

func (*GetSchemaJSONStringResponse) String added in v1.14.0 

func (x *GetSchemaJSONStringResponse) String() string

type HealthCheckRequest 

type HealthCheckRequest struct {
	// contains filtered or unexported fields
}

func (*HealthCheckRequest) Descriptor deprecated 

func (*HealthCheckRequest) Descriptor() ([]byte, []int)

Deprecated: Use HealthCheckRequest.ProtoReflect.Descriptor instead.

func (*HealthCheckRequest) ProtoMessage 

func (*HealthCheckRequest) ProtoMessage()

func (*HealthCheckRequest) ProtoReflect 

func (x *HealthCheckRequest) ProtoReflect() protoreflect.Message

func (*HealthCheckRequest) Reset 

func (x *HealthCheckRequest) Reset()

func (*HealthCheckRequest) String 

func (x *HealthCheckRequest) String() string

type HealthCheckResponse 

type HealthCheckResponse struct {
	// contains filtered or unexported fields
}

func (*HealthCheckResponse) Descriptor deprecated 

func (*HealthCheckResponse) Descriptor() ([]byte, []int)

Deprecated: Use HealthCheckResponse.ProtoReflect.Descriptor instead.

func (*HealthCheckResponse) ProtoMessage 

func (*HealthCheckResponse) ProtoMessage()

func (*HealthCheckResponse) ProtoReflect 

func (x *HealthCheckResponse) ProtoReflect() protoreflect.Message

func (*HealthCheckResponse) Reset 

func (x *HealthCheckResponse) Reset()

func (*HealthCheckResponse) String 

func (x *HealthCheckResponse) String() string

type ListPolicySetsRequest 

type ListPolicySetsRequest struct {

	// The token for the next page.
	PageToken string `protobuf:"bytes,4,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// contains filtered or unexported fields
}

func (*ListPolicySetsRequest) Descriptor deprecated 

func (*ListPolicySetsRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListPolicySetsRequest.ProtoReflect.Descriptor instead.

func (*ListPolicySetsRequest) GetPageToken 

func (x *ListPolicySetsRequest) GetPageToken() string

func (*ListPolicySetsRequest) ProtoMessage 

func (*ListPolicySetsRequest) ProtoMessage()

func (*ListPolicySetsRequest) ProtoReflect 

func (x *ListPolicySetsRequest) ProtoReflect() protoreflect.Message

func (*ListPolicySetsRequest) Reset 

func (x *ListPolicySetsRequest) Reset()

func (*ListPolicySetsRequest) String 

func (x *ListPolicySetsRequest) String() string

type ListPolicySetsResponse 

type ListPolicySetsResponse struct {
	PolicySets    []*PolicySet `protobuf:"bytes,1,rep,name=policy_sets,json=policySets,proto3" json:"policy_sets,omitempty"`
	NextPageToken string       `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

func (*ListPolicySetsResponse) Descriptor deprecated 

func (*ListPolicySetsResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListPolicySetsResponse.ProtoReflect.Descriptor instead.

func (*ListPolicySetsResponse) GetNextPageToken 

func (x *ListPolicySetsResponse) GetNextPageToken() string

func (*ListPolicySetsResponse) GetPolicySets 

func (x *ListPolicySetsResponse) GetPolicySets() []*PolicySet

func (*ListPolicySetsResponse) ProtoMessage 

func (*ListPolicySetsResponse) ProtoMessage()

func (*ListPolicySetsResponse) ProtoReflect 

func (x *ListPolicySetsResponse) ProtoReflect() protoreflect.Message

func (*ListPolicySetsResponse) Reset 

func (x *ListPolicySetsResponse) Reset()

func (*ListPolicySetsResponse) String 

func (x *ListPolicySetsResponse) String() string

type Policy 

type Policy struct {

	// ID of the policy.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Cedar code for the policy set.
	Text string `protobuf:"bytes,2,opt,name=text,proto3" json:"text,omitempty"`
	// contains filtered or unexported fields
}

func (*Policy) Descriptor deprecated 

func (*Policy) Descriptor() ([]byte, []int)

Deprecated: Use Policy.ProtoReflect.Descriptor instead.

func (*Policy) GetId 

func (x *Policy) GetId() string

func (*Policy) GetText 

func (x *Policy) GetText() string

func (*Policy) ProtoMessage 

func (*Policy) ProtoMessage()

func (*Policy) ProtoReflect 

func (x *Policy) ProtoReflect() protoreflect.Message

func (*Policy) Reset 

func (x *Policy) Reset()

func (*Policy) String 

func (x *Policy) String() string

type PolicySet 

type PolicySet struct {

	// ID of the policy set.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// The policies contained in the policy set.
	Policies []*Policy `protobuf:"bytes,2,rep,name=policies,proto3" json:"policies,omitempty"`
	// The source code for the policy set.
	Text string `protobuf:"bytes,3,opt,name=text,proto3" json:"text,omitempty"`
	// contains filtered or unexported fields
}

func (*PolicySet) Descriptor deprecated 

func (*PolicySet) Descriptor() ([]byte, []int)

Deprecated: Use PolicySet.ProtoReflect.Descriptor instead.

func (*PolicySet) GetId 

func (x *PolicySet) GetId() string

func (*PolicySet) GetPolicies 

func (x *PolicySet) GetPolicies() []*Policy

func (*PolicySet) GetText 

func (x *PolicySet) GetText() string

func (*PolicySet) ProtoMessage 

func (*PolicySet) ProtoMessage()

func (*PolicySet) ProtoReflect 

func (x *PolicySet) ProtoReflect() protoreflect.Message

func (*PolicySet) Reset 

func (x *PolicySet) Reset()

func (*PolicySet) String 

func (x *PolicySet) String() string

type PolicySetInput 

type PolicySetInput struct {

	// ID of the policy.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Cedar code for the policy set.
	Text string `protobuf:"bytes,2,opt,name=text,proto3" json:"text,omitempty"`
	// contains filtered or unexported fields
}

func (*PolicySetInput) Descriptor deprecated 

func (*PolicySetInput) Descriptor() ([]byte, []int)

Deprecated: Use PolicySetInput.ProtoReflect.Descriptor instead.

func (*PolicySetInput) GetId 

func (x *PolicySetInput) GetId() string

func (*PolicySetInput) GetText 

func (x *PolicySetInput) GetText() string

func (*PolicySetInput) ProtoMessage 

func (*PolicySetInput) ProtoMessage()

func (*PolicySetInput) ProtoReflect 

func (x *PolicySetInput) ProtoReflect() protoreflect.Message

func (*PolicySetInput) Reset 

func (x *PolicySetInput) Reset()

func (*PolicySetInput) String 

func (x *PolicySetInput) String() string

type Request 

type Request struct {
	Principal *v1alpha1.EID `protobuf:"bytes,1,opt,name=principal,proto3" json:"principal,omitempty"`
	Action    *v1alpha1.EID `protobuf:"bytes,2,opt,name=action,proto3" json:"action,omitempty"`
	Resource  *v1alpha1.EID `protobuf:"bytes,3,opt,name=resource,proto3" json:"resource,omitempty"`
	// A client side identifier for the authorization request.
	// The client_key will be included in the corresponding evaluation for the
	// particular request made.
	//
	// Useful when calling BatchAuthorize to match the evaluations with the requests.
	ClientKey string `protobuf:"bytes,4,opt,name=client_key,json=clientKey,proto3" json:"client_key,omitempty"`
	// Entities to 'overlay' temporarily on the entities stored in the authz service.
	OverlayEntities []*v1alpha1.Entity `protobuf:"bytes,5,rep,name=overlay_entities,json=overlayEntities,proto3" json:"overlay_entities,omitempty"`
	// Parent/child relationships to 'overlay' temporarily on the entities stored in the authz service.
	OverlayChildren []*v1alpha1.ChildRelation `protobuf:"bytes,6,rep,name=overlay_children,json=overlayChildren,proto3" json:"overlay_children,omitempty"`
	// Tags associated with the authorization evaluation.
	// Common Fate uses this to add attributes like the Access Request ID
	// to the evaluation.
	//
	// Tags are *not* used to make authorization decisions but rather is used to aid in observability
	// and debugging of authorization decisions.
	Tags []*Tag `protobuf:"bytes,8,rep,name=tags,proto3" json:"tags,omitempty"`
	// contains filtered or unexported fields
}

func (*Request) Descriptor deprecated 

func (*Request) Descriptor() ([]byte, []int)

Deprecated: Use Request.ProtoReflect.Descriptor instead.

func (*Request) GetAction 

func (x *Request) GetAction() *v1alpha1.EID

func (*Request) GetClientKey 

func (x *Request) GetClientKey() string

func (*Request) GetOverlayChildren 

func (x *Request) GetOverlayChildren() []*v1alpha1.ChildRelation

func (*Request) GetOverlayEntities 

func (x *Request) GetOverlayEntities() []*v1alpha1.Entity

func (*Request) GetPrincipal 

func (x *Request) GetPrincipal() *v1alpha1.EID

func (*Request) GetResource 

func (x *Request) GetResource() *v1alpha1.EID

func (*Request) GetTags added in v1.12.0 

func (x *Request) GetTags() []*Tag

func (*Request) ProtoMessage 

func (*Request) ProtoMessage()

func (*Request) ProtoReflect 

func (x *Request) ProtoReflect() protoreflect.Message

func (*Request) Reset 

func (x *Request) Reset()

func (*Request) String 

func (x *Request) String() string

type SourceRange added in v1.14.0 

type SourceRange struct {
	Start uint32 `protobuf:"varint,1,opt,name=start,proto3" json:"start,omitempty"`
	End   uint32 `protobuf:"varint,2,opt,name=end,proto3" json:"end,omitempty"`
	// contains filtered or unexported fields
}

The range in the policy definition which contains the error

func (*SourceRange) Descriptor deprecated added in v1.14.0 

func (*SourceRange) Descriptor() ([]byte, []int)

Deprecated: Use SourceRange.ProtoReflect.Descriptor instead.

func (*SourceRange) GetEnd added in v1.14.0 

func (x *SourceRange) GetEnd() uint32

func (*SourceRange) GetStart added in v1.14.0 

func (x *SourceRange) GetStart() uint32

func (*SourceRange) ProtoMessage added in v1.14.0 

func (*SourceRange) ProtoMessage()

func (*SourceRange) ProtoReflect added in v1.14.0 

func (x *SourceRange) ProtoReflect() protoreflect.Message

func (*SourceRange) Reset added in v1.14.0 

func (x *SourceRange) Reset()

func (*SourceRange) String added in v1.14.0 

func (x *SourceRange) String() string

type Tag added in v1.12.0 

type Tag struct {
	Key   string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
	Value string `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
	// contains filtered or unexported fields
}

func (*Tag) Descriptor deprecated added in v1.12.0 

func (*Tag) Descriptor() ([]byte, []int)

Deprecated: Use Tag.ProtoReflect.Descriptor instead.

func (*Tag) GetKey added in v1.12.0 

func (x *Tag) GetKey() string

func (*Tag) GetValue added in v1.12.0 

func (x *Tag) GetValue() string

func (*Tag) ProtoMessage added in v1.12.0 

func (*Tag) ProtoMessage()

func (*Tag) ProtoReflect added in v1.12.0 

func (x *Tag) ProtoReflect() protoreflect.Message

func (*Tag) Reset added in v1.12.0 

func (x *Tag) Reset()

func (*Tag) String added in v1.12.0 

func (x *Tag) String() string

type UpdatePolicySetRequest 

type UpdatePolicySetRequest struct {
	PolicySet *PolicySetInput `protobuf:"bytes,1,opt,name=policy_set,json=policySet,proto3" json:"policy_set,omitempty"`
	// contains filtered or unexported fields
}

func (*UpdatePolicySetRequest) Descriptor deprecated 

func (*UpdatePolicySetRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdatePolicySetRequest.ProtoReflect.Descriptor instead.

func (*UpdatePolicySetRequest) GetPolicySet 

func (x *UpdatePolicySetRequest) GetPolicySet() *PolicySetInput

func (*UpdatePolicySetRequest) ProtoMessage 

func (*UpdatePolicySetRequest) ProtoMessage()

func (*UpdatePolicySetRequest) ProtoReflect 

func (x *UpdatePolicySetRequest) ProtoReflect() protoreflect.Message

func (*UpdatePolicySetRequest) Reset 

func (x *UpdatePolicySetRequest) Reset()

func (*UpdatePolicySetRequest) String 

func (x *UpdatePolicySetRequest) String() string

type UpdatePolicySetResponse 

type UpdatePolicySetResponse struct {
	PolicySet *PolicySet `protobuf:"bytes,1,opt,name=policy_set,json=policySet,proto3" json:"policy_set,omitempty"`
	// contains filtered or unexported fields
}

func (*UpdatePolicySetResponse) Descriptor deprecated 

func (*UpdatePolicySetResponse) Descriptor() ([]byte, []int)

Deprecated: Use UpdatePolicySetResponse.ProtoReflect.Descriptor instead.

func (*UpdatePolicySetResponse) GetPolicySet 

func (x *UpdatePolicySetResponse) GetPolicySet() *PolicySet

func (*UpdatePolicySetResponse) ProtoMessage 

func (*UpdatePolicySetResponse) ProtoMessage()

func (*UpdatePolicySetResponse) ProtoReflect 

func (x *UpdatePolicySetResponse) ProtoReflect() protoreflect.Message

func (*UpdatePolicySetResponse) Reset 

func (x *UpdatePolicySetResponse) Reset()

func (*UpdatePolicySetResponse) String 

func (x *UpdatePolicySetResponse) String() string

type ValidatePolicySetTextRequest added in v1.14.0 

type ValidatePolicySetTextRequest struct {
	PolicySetText string `protobuf:"bytes,1,opt,name=policy_set_text,json=policySetText,proto3" json:"policy_set_text,omitempty"`
	// contains filtered or unexported fields
}

func (*ValidatePolicySetTextRequest) Descriptor deprecated added in v1.14.0 

func (*ValidatePolicySetTextRequest) Descriptor() ([]byte, []int)

Deprecated: Use ValidatePolicySetTextRequest.ProtoReflect.Descriptor instead.

func (*ValidatePolicySetTextRequest) GetPolicySetText added in v1.14.0 

func (x *ValidatePolicySetTextRequest) GetPolicySetText() string

func (*ValidatePolicySetTextRequest) ProtoMessage added in v1.14.0 

func (*ValidatePolicySetTextRequest) ProtoMessage()

func (*ValidatePolicySetTextRequest) ProtoReflect added in v1.14.0 

func (x *ValidatePolicySetTextRequest) ProtoReflect() protoreflect.Message

func (*ValidatePolicySetTextRequest) Reset added in v1.14.0 

func (x *ValidatePolicySetTextRequest) Reset()

func (*ValidatePolicySetTextRequest) String added in v1.14.0 

func (x *ValidatePolicySetTextRequest) String() string

type ValidatePolicySetTextResponse added in v1.14.0 

type ValidatePolicySetTextResponse struct {
	Result *ValidationResult `protobuf:"bytes,1,opt,name=result,proto3" json:"result,omitempty"`
	// contains filtered or unexported fields
}

func (*ValidatePolicySetTextResponse) Descriptor deprecated added in v1.14.0 

func (*ValidatePolicySetTextResponse) Descriptor() ([]byte, []int)

Deprecated: Use ValidatePolicySetTextResponse.ProtoReflect.Descriptor instead.

func (*ValidatePolicySetTextResponse) GetResult added in v1.14.0 

func (x *ValidatePolicySetTextResponse) GetResult() *ValidationResult

func (*ValidatePolicySetTextResponse) ProtoMessage added in v1.14.0 

func (*ValidatePolicySetTextResponse) ProtoMessage()

func (*ValidatePolicySetTextResponse) ProtoReflect added in v1.14.0 

func (x *ValidatePolicySetTextResponse) ProtoReflect() protoreflect.Message

func (*ValidatePolicySetTextResponse) Reset added in v1.14.0 

func (x *ValidatePolicySetTextResponse) Reset()

func (*ValidatePolicySetTextResponse) String added in v1.14.0 

func (x *ValidatePolicySetTextResponse) String() string

type ValidationError added in v1.14.0 

type ValidationError struct {
	PolicyId string `protobuf:"bytes,1,opt,name=policy_id,json=policyId,proto3" json:"policy_id,omitempty"`
	Message  string `protobuf:"bytes,2,opt,name=message,proto3" json:"message,omitempty"`
	// contains filtered or unexported fields
}

func (*ValidationError) Descriptor deprecated added in v1.14.0 

func (*ValidationError) Descriptor() ([]byte, []int)

Deprecated: Use ValidationError.ProtoReflect.Descriptor instead.

func (*ValidationError) GetMessage added in v1.14.0 

func (x *ValidationError) GetMessage() string

func (*ValidationError) GetPolicyId added in v1.14.0 

func (x *ValidationError) GetPolicyId() string

func (*ValidationError) ProtoMessage added in v1.14.0 

func (*ValidationError) ProtoMessage()

func (*ValidationError) ProtoReflect added in v1.14.0 

func (x *ValidationError) ProtoReflect() protoreflect.Message

func (*ValidationError) Reset added in v1.14.0 

func (x *ValidationError) Reset()

func (*ValidationError) String added in v1.14.0 

func (x *ValidationError) String() string

type ValidationErrorKind added in v1.14.0 

type ValidationErrorKind int32
const (
	ValidationErrorKind_VALIDATION_ERROR_KIND_UNSPECIFIED ValidationErrorKind = 0
	// A policy contains an entity type that is not declared in the schema.
	ValidationErrorKind_VALIDATION_ERROR_UNRECOGNIZED_ENTITY_TYPE ValidationErrorKind = 1
	// A policy contains an action that is not declared in the schema.
	ValidationErrorKind_VALIDATION_ERROR_UNRECOGNIZED_ACTION_ID ValidationErrorKind = 2
	// There is no action satisfying the action head constraint that can be
	// applied to a principal and resources that both satisfy their respective
	// head conditions.
	ValidationErrorKind_VALIDATION_ERROR_INVALID_ACTION_APPLICATION ValidationErrorKind = 3
	// The type checker found an error.
	ValidationErrorKind_VALIDATION_ERROR_TYPE_ERROR ValidationErrorKind = 4
	// An unspecified entity was used in a policy.
	ValidationErrorKind_VALIDATION_ERROR_UNSPECIFIED_ENTITY ValidationErrorKind = 5
)

func (ValidationErrorKind) Descriptor added in v1.14.0 

func (ValidationErrorKind) Descriptor() protoreflect.EnumDescriptor

func (ValidationErrorKind) Enum added in v1.14.0 

func (x ValidationErrorKind) Enum() *ValidationErrorKind

func (ValidationErrorKind) EnumDescriptor deprecated added in v1.14.0 

func (ValidationErrorKind) EnumDescriptor() ([]byte, []int)

Deprecated: Use ValidationErrorKind.Descriptor instead.

func (ValidationErrorKind) Number added in v1.14.0 

func (x ValidationErrorKind) Number() protoreflect.EnumNumber

func (ValidationErrorKind) String added in v1.14.0 

func (x ValidationErrorKind) String() string

func (ValidationErrorKind) Type added in v1.14.0 

func (ValidationErrorKind) Type() protoreflect.EnumType

type ValidationResult added in v1.14.0 

type ValidationResult struct {
	Errors   []*ValidationError   `protobuf:"bytes,1,rep,name=errors,proto3" json:"errors,omitempty"`
	Warnings []*ValidationWarning `protobuf:"bytes,2,rep,name=warnings,proto3" json:"warnings,omitempty"`
	// contains filtered or unexported fields
}

func (*ValidationResult) Descriptor deprecated added in v1.14.0 

func (*ValidationResult) Descriptor() ([]byte, []int)

Deprecated: Use ValidationResult.ProtoReflect.Descriptor instead.

func (*ValidationResult) GetErrors added in v1.14.0 

func (x *ValidationResult) GetErrors() []*ValidationError

func (*ValidationResult) GetWarnings added in v1.14.0 

func (x *ValidationResult) GetWarnings() []*ValidationWarning

func (*ValidationResult) ProtoMessage added in v1.14.0 

func (*ValidationResult) ProtoMessage()

func (*ValidationResult) ProtoReflect added in v1.14.0 

func (x *ValidationResult) ProtoReflect() protoreflect.Message

func (*ValidationResult) Reset added in v1.14.0 

func (x *ValidationResult) Reset()

func (*ValidationResult) String added in v1.14.0 

func (x *ValidationResult) String() string

type ValidationWarning added in v1.14.0 

type ValidationWarning struct {
	PolicyId string `protobuf:"bytes,1,opt,name=policy_id,json=policyId,proto3" json:"policy_id,omitempty"`
	Message  string `protobuf:"bytes,2,opt,name=message,proto3" json:"message,omitempty"`
	// contains filtered or unexported fields
}

func (*ValidationWarning) Descriptor deprecated added in v1.14.0 

func (*ValidationWarning) Descriptor() ([]byte, []int)

Deprecated: Use ValidationWarning.ProtoReflect.Descriptor instead.

func (*ValidationWarning) GetMessage added in v1.14.0 

func (x *ValidationWarning) GetMessage() string

func (*ValidationWarning) GetPolicyId added in v1.14.0 

func (x *ValidationWarning) GetPolicyId() string

func (*ValidationWarning) ProtoMessage added in v1.14.0 

func (*ValidationWarning) ProtoMessage()

func (*ValidationWarning) ProtoReflect added in v1.14.0 

func (x *ValidationWarning) ProtoReflect() protoreflect.Message

func (*ValidationWarning) Reset added in v1.14.0 

func (x *ValidationWarning) Reset()

func (*ValidationWarning) String added in v1.14.0 

func (x *ValidationWarning) String() string

type ValidationWarningKind added in v1.14.0 

type ValidationWarningKind int32
const (
	ValidationWarningKind_VALIDATION_WARNING_KIND_UNSPECIFIED ValidationWarningKind = 0
	// A string contains mixed scripts. Different scripts can contain visually similar characters which may be confused for each other.
	ValidationWarningKind_VALIDATION_WARNING_MIXED_SCRIPT_STRING ValidationWarningKind = 1
	// A string contains BIDI control characters. These can be used to create crafted pieces of code that obfuscate true control flow.
	ValidationWarningKind_VALIDATION_WARNING_BIDI_CHARS_IN_STRING ValidationWarningKind = 2
	// An id contains BIDI control characters. These can be used to create crafted pieces of code that obfuscate true control flow.
	ValidationWarningKind_VALIDATION_WARNING_BIDI_CHARS_IN_IDENTIFIER ValidationWarningKind = 3
	// An id contains mixed scripts. This can cause characters to be confused for each other.
	ValidationWarningKind_VALIDATION_WARNING_MIXED_SCRIPT_IDENTIFIER ValidationWarningKind = 4
	// An id contains characters that fall outside of the General Security Profile for Identifiers. We recommend adhering to this if possible. See Unicode® Technical Standard #39 for more info.
	ValidationWarningKind_VALIDATION_WARNING_CONFUSABLE_IDENTIFIER ValidationWarningKind = 5
	// An entity referenced in a policy does not exist.
	ValidationWarningKind_VALIDATION_WARNING_ENTITY_DOES_NOT_EXIST ValidationWarningKind = 6
)

func (ValidationWarningKind) Descriptor added in v1.14.0 

func (ValidationWarningKind) Descriptor() protoreflect.EnumDescriptor

func (ValidationWarningKind) Enum added in v1.14.0 

func (x ValidationWarningKind) Enum() *ValidationWarningKind

func (ValidationWarningKind) EnumDescriptor deprecated added in v1.14.0 

func (ValidationWarningKind) EnumDescriptor() ([]byte, []int)

Deprecated: Use ValidationWarningKind.Descriptor instead.

func (ValidationWarningKind) Number added in v1.14.0 

func (x ValidationWarningKind) Number() protoreflect.EnumNumber

func (ValidationWarningKind) String added in v1.14.0 

func (x ValidationWarningKind) String() string

func (ValidationWarningKind) Type added in v1.14.0 

func (ValidationWarningKind) Type() protoreflect.EnumType

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.