dealing with "listing" apis #13

chicco785 · 2022-01-21T11:30:12Z

Is your feature request related to a problem? Please describe.

APIs like orion have base end points for resource type that returns the whole content. Either these are blocked, unless a user has access to all entities, or content should be automatically filtered.

Describe the solution you'd like

Option 1. only who can list all resources of type entities and all resources of type entity type can access /entities and /types

Option 2. we compute the list of resources a user can access (is that possible with opa?) and manipulate request query so that data are correctly filtered based on that.

Describe alternatives you've considered

N/A

Additional context

N/A

chicco785 · 2022-01-21T12:06:49Z

not relevant for the specific case, it is possible to manipulate headers and bodies in the response:
https://www.openpolicyagent.org/docs/latest/envoy-primer/#example-policy-with-object-response

chicco785 added the enhancement New feature or request label Jan 21, 2022

chicco785 assigned chicco785 and c0c0n3 Jan 21, 2022

chicco785 assigned Cerfoglg and unassigned c0c0n3 Jan 26, 2022

chicco785 added this to the 0.4 milestone Feb 8, 2022

chicco785 modified the milestones: 0.4, 0.6 Jun 14, 2022

chicco785 modified the milestones: 0.6, 1.0 Jul 4, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

dealing with "listing" apis #13

dealing with "listing" apis #13

chicco785 commented Jan 21, 2022

chicco785 commented Jan 21, 2022

dealing with "listing" apis #13

dealing with "listing" apis #13

Comments

chicco785 commented Jan 21, 2022

chicco785 commented Jan 21, 2022