mirror of
https://github.com/mainflux/mainflux.git
synced 2025-04-27 13:48:49 +08:00
27d4646db4
* MF-1443 - add policies Signed-off-by: Burak Sekili <buraksekili@gmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * fix users create Signed-off-by: Burak Sekili <buraksekili@gmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * MF-1454 - Add Policies for sharing a Thing (#1463) * MF-1454 - Add policies for sharing a Thing Signed-off-by: Burak Sekili <buraksekili@gmail.com> * Add a test case for sharing thing and update mock of AddPolicy Signed-off-by: Burak Sekili <buraksekili@gmail.com> * Update ShareThing parameter naming Signed-off-by: Burak Sekili <buraksekili@gmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * MF-1454 - Policy Removal (#1466) * Add DeletePolicy gRPC endpoint in auth package Signed-off-by: Burak Sekili <buraksekili@gmail.com> * Update default admin creation Signed-off-by: Burak Sekili <buraksekili@gmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Add policy addition endpoint (#1479) * NOISSUE - Add policy addition endpoint Signed-off-by: Burak Sekili <buraksekili@gmail.com> * Update name of the method Signed-off-by: Burak Sekili <buraksekili@gmail.com> remove build tag Signed-off-by: Burak Sekili <buraksekili@gmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Add tests for AddPolicies (#1480) * NOISSUE - Add tests for adding policy and update authz check Signed-off-by: Burak Sekili <buraksekili@gmail.com> * Add more tests and update request body validation Signed-off-by: Burak Sekili <buraksekili@gmail.com> * Update test case structure and utilize mock prefix for test ids Signed-off-by: Burak Sekili <buraksekili@gmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * MF-1454 - Add initial policies for Group access control (#1467) Signed-off-by: Burak Sekili <buraksekili@gmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * Resolve PR comments Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> Co-authored-by: Author: Burak Sekili <buraksekili@gmail.com>
119 lines
2.3 KiB
Protocol Buffer
119 lines
2.3 KiB
Protocol Buffer
// Copyright (c) Mainflux
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
syntax = "proto3";
|
|
|
|
package mainflux;
|
|
|
|
import "google/protobuf/empty.proto";
|
|
|
|
service ThingsService {
|
|
rpc CanAccessByKey(AccessByKeyReq) returns (ThingID) {}
|
|
rpc IsChannelOwner(ChannelOwnerReq) returns (google.protobuf.Empty) {}
|
|
rpc CanAccessByID(AccessByIDReq) returns (google.protobuf.Empty) {}
|
|
rpc Identify(Token) returns (ThingID) {}
|
|
}
|
|
|
|
service AuthService {
|
|
rpc Issue(IssueReq) returns (Token) {}
|
|
rpc Identify(Token) returns (UserIdentity) {}
|
|
rpc Authorize(AuthorizeReq) returns (AuthorizeRes) {}
|
|
rpc AddPolicy(AddPolicyReq) returns (AddPolicyRes) {}
|
|
rpc DeletePolicy(DeletePolicyReq) returns (DeletePolicyRes) {}
|
|
rpc Assign(Assignment) returns(google.protobuf.Empty) {}
|
|
rpc Members(MembersReq) returns (MembersRes) {}
|
|
}
|
|
|
|
message AccessByKeyReq {
|
|
string token = 1;
|
|
string chanID = 2;
|
|
}
|
|
|
|
message ChannelOwnerReq {
|
|
string owner = 1;
|
|
string chanID = 2;
|
|
}
|
|
|
|
message ThingID {
|
|
string value = 1;
|
|
}
|
|
|
|
message ChannelID {
|
|
string value = 1;
|
|
}
|
|
|
|
message AccessByIDReq {
|
|
string thingID = 1;
|
|
string chanID = 2;
|
|
}
|
|
|
|
// If a token is not carrying any information itself, the type
|
|
// field can be used to determine how to validate the token.
|
|
// Also, different tokens can be encoded in different ways.
|
|
message Token {
|
|
string value = 1;
|
|
}
|
|
|
|
message UserIdentity {
|
|
string id = 1;
|
|
string email = 2;
|
|
}
|
|
|
|
message IssueReq {
|
|
string id = 1;
|
|
string email = 2;
|
|
uint32 type = 3;
|
|
}
|
|
|
|
message AuthorizeReq {
|
|
string sub = 1;
|
|
string obj = 2;
|
|
string act = 3;
|
|
}
|
|
|
|
message AuthorizeRes {
|
|
bool authorized = 1;
|
|
}
|
|
|
|
message AddPolicyReq {
|
|
string sub = 1;
|
|
string obj = 2;
|
|
string act = 3;
|
|
}
|
|
|
|
message AddPolicyRes {
|
|
bool authorized = 1;
|
|
}
|
|
|
|
message DeletePolicyReq {
|
|
string sub = 1;
|
|
string obj = 2;
|
|
string act = 3;
|
|
}
|
|
|
|
message DeletePolicyRes {
|
|
bool deleted = 1;
|
|
}
|
|
|
|
message Assignment {
|
|
string token = 1;
|
|
string groupID = 2;
|
|
string memberID = 3;
|
|
}
|
|
|
|
message MembersReq {
|
|
string token = 1;
|
|
string groupID = 2;
|
|
uint64 offset = 3;
|
|
uint64 limit = 4;
|
|
string type = 5;
|
|
}
|
|
|
|
message MembersRes {
|
|
uint64 total = 1;
|
|
uint64 offset = 2;
|
|
uint64 limit = 3;
|
|
string type = 4;
|
|
repeated string members = 5;
|
|
}
|