Nick
02/04/2022, 1:57 PMdefinition group {
relation user: user
relation parent: group
permission member= user + parent
}
definition process {
relation parent: process
relation reader : user | group#member
relation organization: organization
relation writer: user | group#member
relation property : property
relation has_child : process
relation deny_reader: user | group#member
permission read = (reader + parent-> read + organization-> read) - deny_reader
permission write = writer + parent-> write + organization-> write
}
definition user {}
I'm trying to write the relationship process:1#reader@group:1#member through the GRPC endpoint
I however can't find the correct notation for the Subject/SubjectReference
I've tried
SubjectId: 1#member SubjectType:group
ObjectId: 1 objectType: process
relation: reader
This however gives an error "subject group:1#member is not allowed for the resource process:1"
What would be the correct subjectreference to create the relationship?