Authzed schemas in CUE
# spicedbv
verdverm.com
09/13/2025, 5:56 PMRewrote my Authzed schema in CUE (essentially an alternative to
zed preview schema compile_at.zedverdverm.com
09/13/2025, 5:57 PMI also wonder now, if I can represent the schema, relations, and checks in CUE. Maybe one day I'll give it the old college try
verdverm.com
09/13/2025, 5:58 PMThere's a ton of overlap in the algebra and logical engine for resolving correctness / access
verdverm.com
09/13/2025, 6:17 PMThe main benefit I got from writing in CUE is making edits to relation lists (like adding a subject or caveat). I only have to change one place, where in .zed files, I haven't found a way to build up more granular templates like having the
<resource>_<CRUD>j
Joey
09/13/2025, 6:25 PMwe've considered adding expansions in addition to the mixin support we have
v
verdverm.com
09/13/2025, 10:59 PMyeah, repetition was a big reason to switch to CUE, templates and introspection are another, like the
#crudverdverm.com
09/16/2025, 8:21 PMI turned all my Spice to CUE lol, couldn't help myself. I'll share after I cleanup and rework the readme
verdverm.com
09/17/2025, 9:48 PMIf people are interested
- schema: https://github.com/blebbit/atproto/blob/main/packages/pds/src/authz/spicedb/schema/atproto.cue
- use case: https://github.com/blebbit/atproto/blob/main/packages/pds/src/authz/spicedb/test/cases/atbox.cue (generates a bash script around zed)
- validation: https://github.com/blebbit/atproto/blob/main/packages/pds/src/authz/spicedb/validations/atbox.cue (uses relns/checks from use case)