https://authzed.com logo
Title
d

derekperkins

01/02/2023, 11:41 PM
I'm looking to add Google Cloud style RPC permissions to our app. My original idea was to generate mappings inside our proto, with the fully qualified name as the id, e.g.
/nozzle.billing.v1.PlansService/ListPlans
, but it appears that isn't supported. I found this recommendation from 8 months ago to base64 encode it. Is that still the recommendation? Is there a better approach? https://discord.com/channels/844600078504951838/844600078948630559/972191542435532860
Alternatively, it would probably be easier to debug if we just did a string replacement of the periods and slashes
__nozzle_billing_v1_PlansService__ListPlans
j

Joey

01/03/2023, 12:14 AM
base64 or your encoding is the recommendation
d

derekperkins

01/03/2023, 12:15 AM
thanks. Is there an example of a GCP or AWS style IAM modeling?
j

Joey

01/03/2023, 12:19 AM
I don't believe we have an example, but https://authzed.com/blog/user-defined-roles/ might provide some insights on similar constructions
@Jake might have an example schema for IAM-like; not sure
d

derekperkins

01/03/2023, 12:20 AM
that's helpful, thanks
@derekperkins that was a fun one!
d

derekperkins

01/03/2023, 11:17 PM
@Jake thanks for putting that together, that's fantastic