/
example.js
83 lines (74 loc) · 2.03 KB
/
example.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
import { v1 } from '@authzed/authzed-node';
const client = v1.NewClient('mytokenhere');
const writeRequest = v1.WriteSchemaRequest.create({
schema: `definition test/user {}
definition test/document {
relation viewer: test/user
permission view = viewer
}
`,
});
// Write a schema.
await new Promise((resolve, reject) => {
client.writeSchema(writeRequest, function (err, response) {
if (err) reject(err);
resolve(response);
});
});
// Write a relationship.
const writeRelationshipRequest = v1.WriteRelationshipsRequest.create({
updates: [
v1.RelationshipUpdate.create({
relationship: v1.Relationship.create({
resource: v1.ObjectReference.create({
objectType: 'test/document',
objectId: 'somedocument',
}),
relation: 'viewer',
subject: v1.SubjectReference.create({
object: v1.ObjectReference.create({
objectType: 'test/user',
objectId: 'fred',
}),
}),
}),
operation: v1.RelationshipUpdate_Operation.CREATE,
}),
],
});
await new Promise((resolve, reject) => {
client.writeRelationships(writeRelationshipRequest, function (err, response) {
if (err) reject(err);
resolve(response);
});
});
// Check a permission.
const checkPermissionRequest = v1.CheckPermissionRequest.create({
resource: v1.ObjectReference.create({
objectType: 'test/document',
objectId: 'somedocument',
}),
permission: 'view',
subject: v1.SubjectReference.create({
object: v1.ObjectReference.create({
objectType: 'test/user',
objectId: 'fred',
}),
}),
consistency: v1.Consistency.create({
requirement: {
oneofKind: 'fullyConsistent',
fullyConsistent: true,
},
}),
});
const checkResult = await new Promise((resolve, reject) => {
client.checkPermission(checkPermissionRequest, function (err, response) {
if (err) reject(err);
resolve(response);
});
});
console.log(
checkResult.permissionship ===
v1.CheckPermissionResponse_Permissionship.HAS_PERMISSION
);