mirror of
https://github.com/fleetdm/fleet
synced 2026-05-22 00:18:27 +00:00
18faa5a06b
- Add policy.rego file defining authorization policies. - Add Go integrations to evaluate Rego policies (via OPA). - Add middleware to ensure requests without authorization check are rejected (guard against programmer error). - Add authorization checks to most service endpoints.
28 lines
573 B
Go
28 lines
573 B
Go
package test
|
|
|
|
import (
|
|
"github.com/fleetdm/fleet/server/kolide"
|
|
"github.com/fleetdm/fleet/server/ptr"
|
|
)
|
|
|
|
var (
|
|
UserNoRoles = &kolide.User{
|
|
ID: 1,
|
|
Username: "no_roles",
|
|
}
|
|
UserAdmin = &kolide.User{
|
|
ID: 2,
|
|
GlobalRole: ptr.String(kolide.RoleAdmin),
|
|
Username: "global_admin",
|
|
}
|
|
UserMaintainer = &kolide.User{
|
|
ID: 3,
|
|
GlobalRole: ptr.String(kolide.RoleMaintainer),
|
|
Username: "global_maintainer",
|
|
}
|
|
UserObserver = &kolide.User{
|
|
ID: 4,
|
|
GlobalRole: ptr.String(kolide.RoleObserver),
|
|
Username: "global_observer",
|
|
}
|
|
)
|