add ad policies

2026-06-26 10:32:06 +00:00 · 2023-05-04 14:46:40 +02:00
parent fd8bdad946
commit 9ba715860e
5 changed files with 38 additions and 2 deletions
@@ -0,0 +1,11 @@
+package AD.DELETE
+
+default allow := false
+
+allow {
+	input.userUuid == input.owner
+}
+
+allow {
+	input.role == "admin"
+}
@@ -0,0 +1,3 @@
+package AD.LIST
+
+default allow := true
@@ -0,0 +1,11 @@
+package AD.READ
+
+default allow := false
+
+allow {
+    input.userUuid == input.owner
+}
+
+allow {
+    input.role == "admin"
+}
@@ -0,0 +1,11 @@
+package AD.UPDATE
+
+default allow := false
+
+allow {
+	input.userUuid == input.owner
+}
+
+allow {
+	input.role == "admin"
+}
@@ -2,10 +2,10 @@ package USER.READ

 default allow := false

-allow := true {
+allow {
    input.uuid == input.owner
 }

-allow := true {
+allow {
    input.role == "admin"
 }