evghen1
commented
1 month ago @Catalin4513 Found that you make authorization model creation based on route calling, what wasn't a goal. Required to create/update authorization model immediately after plugin starts.
Plugin Name
backstage-plugin-openfga
🔖 Feature description
Plugin shall collect permission resources from backstage (not clear how, need investigation) and create authorization model in OpenFGA format, which will send to OpenFGA instance using connection credentials from configuration.
🎤 Context
Backstage do not have integrated RBAC or ABAC system, just permission system where possible to listen permission request and return boolean response, according to authorization rule, what is not usable from use perspective. To make it usable proposed to integrate OpenFGA and use it for define and check rules.
✌️ Possible Implementation
No response
👀 Have you spent some time to check if this feature request has been raised before?
🏢 Have you read the Code of Conduct?
Are you willing to submit PR?
None