@backstage/plugin-permission-common
Home > @backstage/plugin-permission-common
Isomorphic types and client for Backstage permissions and authorization
Classes
|
Class |
Description |
|---|---|
|
An isomorphic client for requesting authorization for Backstage permissions. |
Enumerations
|
Enumeration |
Description |
|---|---|
|
The result of an authorization request. |
Functions
|
Function |
Description |
|---|---|
|
Utility function for creating a valid ResourcePermission, inferring the appropriate type and resource type parameter. | |
|
Utility function for creating a valid BasicPermission. | |
|
Check if a given permission is related to a create action. | |
|
Check if a given permission is related to a delete action. | |
|
Check if the two parameters are equivalent permissions. | |
|
Check if a given permission is related to a read action. | |
|
Check if a given permission is a ResourcePermission. When | |
|
Check if a given permission is related to an update action. | |
|
Convert PermissionAuthorizer to PermissionEvaluator. |
Interfaces
|
Interface |
Description |
|---|---|
|
Options for PermissionEvaluator requests. This is currently empty, as there are no longer any common options for the permission evaluator. | |
|
A client interacting with the permission backend can implement this authorizer interface. | |
|
A client interacting with the permission backend can implement this evaluator interface. |
Type Aliases
|
Type Alias |
Description |
|---|---|
|
Represents a logical AND for the provided criteria. | |
|
Represents a logical OR for the provided criteria. | |
|
Request object for PermissionEvaluator.authorize(). If a ResourcePermission is provided, it must include a corresponding | |
|
Response object for PermissionEvaluator.authorize(). | |
|
Options for authorization requests. | |
|
A standard Permission with no additional capabilities or restrictions. | |
|
A conditional decision returned by the PermissionPolicy. | |
|
A definitive decision returned by the PermissionPolicy. | |
|
This is a copy of the core DiscoveryApi, to avoid importing core. | |
|
An individual request sent to the permission backend. | |
|
A batch of requests sent to the permission backend. | |
|
An individual response from the permission backend. | |
|
A batch of responses from the permission backend. | |
|
A request with a UUID identifier, so that batched responses can be matched up with the original requests. | |
|
Response type for the .metadata endpoint in createPermissionIntegrationRouter() | |
|
Serialized permission rules, with the paramsSchema converted from a ZodSchema to a JsonSchema. | |
|
Represents a negation of the provided criteria. | |
|
A permission that can be checked through authorization. | |
|
The attributes related to a given permission; these should be generic and widely applicable to all permissions in the system. | |
|
Generic type for building Permission types. | |
|
Options for PermissionClient requests. | |
|
A condition returned with a CONDITIONAL authorization response. Conditions are a reference to a rule defined by a plugin, and parameters to apply the rule. For example, a rule might be | |
|
Composes several PermissionConditions as criteria with a nested AND/OR structure. | |
|
A batch of request or response items. | |
|
A parameter to a permission rule. | |
|
Types that can be used as parameters to permission rules. | |
|
A decision returned by the PermissionPolicy. | |
|
Request object for PermissionEvaluator.authorizeConditional(). | |
|
Response object for PermissionEvaluator.authorizeConditional(). | |
|
ResourcePermissions are Permissions that can be authorized based on characteristics of a resource such a catalog entity. |