Closed DanieleIsoni closed 5 months ago
Singha2
commented
2 years ago One suggestion I would like to add if possible, make "relation" parameter optional, if not passed, return all the possible permissions.
Same API pass, resource_type=resource Returns -> [own, manage]
josephschorr
commented
2 years ago 
DonDebonair
commented
1 year ago Is this something that the AuthZed team plans to work on? At my company we're evaluating alternatives to Oso, and SpiceDB/AuthZed seem to fit the majority of the use cases and is much more flexible.
But we do have a need to show to users what permissions they have on specific resources. As I understand from this issue, this doesn't exist yet?
vroldanbet
commented
1 year ago @DonDebonair 👋🏻 it would seem like your requirement is slightly different tho?
is that correct?
DonDebonair
commented
1 year ago @vroldanbet you are absolutely right! I misread/misunderstood the original issue. I mixed up relation and subject.
So I'm indeed asking "for a given subject, what permissions does it have over a given resource"
Should I open a separate issue for that, or is this already possible and did I not look properly for it?
vroldanbet
commented
1 year ago @DonDebonair yup, feel free to open a new issue! I suspect it would be built on top of the foundations for https://github.com/authzed/spicedb/issues/621
josephschorr
commented
5 months ago Fixed by #1891
Problem
At the moment there isn't an API to retrieve all permissions that are given with a relation on a resource. Eg: given a schema like:
it would be very useful if there was an API that given
resource_type=resource, relation=ownerreturns a list of permissions[own, manage], while ifrelation=managerthe result would be[manage]Proposal
Introduce a new API does what explained in "Problem"