-
Notifications
You must be signed in to change notification settings - Fork 75
Cedarling Build Plan
Oleh edited this page Nov 20, 2024
·
19 revisions
Each of these should be a single PR
Defineinit
,authz
, andlog
interfaces which returnTrue
Log Startup messageRead bootrap propertiesPolicy Store: Parse Schema - both valid and invalidPolicy Store: Parse Policies - both valid and invalidParse access_token -- create access token and Workload entityEvaluate positive authz request if Workload is allowed and return resultParse id_token -- create id_token and User entity (or update User entity if it exists)Parse userinfo_token -- create userinfo and User entity (or update User entity)Evaluate positive authz request if User is allowed and return resultEvaluate negative authz request if User is not allowed and diagnostics are returnedEvaluate negative authz request if Workload is not allowed and diagnostics are returnedTest all authz combinations of results are correct: (user ok, workload ok), (user ok, workload not ok), (user not ok, workload ok), (user not ok, workload not ok), also added for role- WASM binding