$ go get github.com/zeiss/fiber-authz- OpenFGA
- Team-based access control
- Role-based access control
- Noop (for testing)
Any authorization model can be implemented by implementing the Authorizer interface.
Using OpenAPI Extensions individual operations can be protected with OpenFGA.
x-fiber-authz-fga:
user:
namespace: user
auth_type: oidc
relation:
name: admin
object:
namespace: system
components:
- in: params
name: teamIdThere are three parts to the OpenAPI extension:
user- The user namespace and authentication type.relation- The relation name.object- The object namespace and components.
Then there are components to construct the relation or object.
in- The location of the component (e.g.path).name- The name of the component (e.g.teamId).type- The type of the component (e.g.string).
See examples to understand the provided interfaces.
![@dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=64&v=4){kind=small}
![@github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=64&v=4){kind=small}
