-
### Problem
We currently support jwt as an Entity type in the authorization service. But efforts to support entity resolution for the jwt entity type uncovered possible issues in the current design/f…
-
Add CLI commands for CRUD of **resource-mappings**. Commands:
- create
- get
- list
- update [^1] [^2]
- delete [^3]
## Acceptance Criteria
- add CRUD commands
- use flags to drive prope…
-
It should fail on failures to its `needs`
-
We recently added FQNs to the policy schema of the platform via https://github.com/opentdf/platform/issues/95. There are multiple needs in `authorization` service (and likely other services in the fut…
-
The decision was made to re-name the repo to `opentdf/platform`. This will require us to update import statements in our code after conversion along with the `go.mod` files.
-
When updating an attribute value it is prompting for the attribute id, but the value id is provided.
```
go run main.go policy attributes values update --id 5963b20e-0932-405a-88e4-6171870edbd5 --…
-
# Background
ABAC policy enforcement within the Platform is modeled using the constructs of an Entity Chain requesting access to a Resource for one or more Action(s). The response includes a decis…
-
The issue came up today with how to determine if we call the grpc endpoint or the http endpoint for kas based on the url in a manifests key access object.
Having two ports makes this difficult. If…
-
When creating and listing resources we don't get the `id` of the resource back. This poses a problem with `GetAttribute` and `UpdateAttribute` and `DeleteAttribute` which expects the resource `id`.
…
-
During the update process, should attribute values be able to have all properties changed?
- What happens if an attribute value is moved to a new attribute?
- `USA` moved from `relto` to `rels`
…