This repository houses an ABAC-style Aserto policy for the PeopleFinder sample.
src
contains all the policy files.
src/.manifest
contains the policy roots - in this case, peoplefinder
. If you change the name of the package
definitions in the .rego
files, make sure that the first component of the package name is reflected in this list.
src/policies
contains the policy modules associated with the peoplefinder sample:
- get.rego -
peoplefinder.GET.api.users
- policy forGET /api/users
- post.rego -
peoplefinder.POST.api.users
- policy forPOST /api/users
- __id/delete.rego -
peoplefinder.DELETE.api.users.__id
- policy forDELETE /api/users/{id}
- __id/get.rego -
peoplefinder.GET.api.users.__id
- policy forGET /api/users/{id}
- __id/post.rego -
peoplefinder.POST.api.users.__id
- policy forPOST /api/users/{id}
- __id/put.rego -
peoplefinder.PUT.api.users.__id
- policy forPUT /api/users/{id}
git tag {version} && git push --tags
will invoke the actions to create a new release (a policy bundle that can be delivered to the Aserto authorizer)
e.g. git tag v0.0.1 && git push --tags
will create a new release with v0.0.1.