@backstage/plugin-permission-common
Home > @backstage/plugin-permission-common
Isomorphic types and client for Backstage permissions and authorization
Classes
Class |
Description |
---|---|
An isomorphic client for requesting authorization for Backstage permissions. |
Enumerations
Enumeration |
Description |
---|---|
The result of an authorization request. |
Functions
Function |
Description |
---|---|
Utility function for creating a valid ResourcePermission, inferring the appropriate type and resource type parameter. | |
Utility function for creating a valid BasicPermission. | |
Check if a given permission is related to a create action. | |
Check if a given permission is related to a delete action. | |
Check if the two parameters are equivalent permissions. | |
Check if a given permission is related to a read action. | |
Check if a given permission is a ResourcePermission. When | |
Check if a given permission is related to an update action. | |
Convert PermissionAuthorizer to PermissionEvaluator. |
Interfaces
Interface |
Description |
---|---|
Options for PermissionEvaluator requests. This is currently empty, as there are no longer any common options for the permission evaluator. | |
A client interacting with the permission backend can implement this authorizer interface. | |
A client interacting with the permission backend can implement this evaluator interface. |
Type Aliases
Type Alias |
Description |
---|---|
Represents a logical AND for the provided criteria. | |
Represents a logical OR for the provided criteria. | |
Request object for PermissionEvaluator.authorize(). If a ResourcePermission is provided, it must include a corresponding | |
Response object for PermissionEvaluator.authorize(). | |
Options for authorization requests. | |
A standard Permission with no additional capabilities or restrictions. | |
A conditional decision returned by the PermissionPolicy. | |
A definitive decision returned by the PermissionPolicy. | |
This is a copy of the core DiscoveryApi, to avoid importing core. | |
An individual request sent to the permission backend. | |
A batch of requests sent to the permission backend. | |
An individual response from the permission backend. | |
A batch of responses from the permission backend. | |
A request with a UUID identifier, so that batched responses can be matched up with the original requests. | |
Response type for the .metadata endpoint in createPermissionIntegrationRouter() | |
Serialized permission rules, with the paramsSchema converted from a ZodSchema to a JsonSchema. | |
Represents a negation of the provided criteria. | |
A permission that can be checked through authorization. | |
The attributes related to a given permission; these should be generic and widely applicable to all permissions in the system. | |
Generic type for building Permission types. | |
Options for PermissionClient requests. | |
A condition returned with a CONDITIONAL authorization response. Conditions are a reference to a rule defined by a plugin, and parameters to apply the rule. For example, a rule might be | |
Composes several PermissionConditions as criteria with a nested AND/OR structure. | |
A batch of request or response items. | |
A parameter to a permission rule. | |
Types that can be used as parameters to permission rules. | |
A decision returned by the PermissionPolicy. | |
Request object for PermissionEvaluator.authorizeConditional(). | |
Response object for PermissionEvaluator.authorizeConditional(). | |
ResourcePermissions are Permissions that can be authorized based on characteristics of a resource such a catalog entity. |