this page shows an example https authzed com doc

Question

this page shows an example < dguhr rh> https authzed com docs reference caveats schema

dguhr-rh · Answer

thanks < masd1> jftr i am particularly interested if we have access to actual values from the input request like OPA does for example here s an actual example where I think caveats could be a way to go to model these attribute filters https github com RedHatInsights playbook dispatcher authorization i know you could also model the whole intent otherwise but let s just assume I want to use caveats for this

dguhr-rh · Answer

oh i see one would need to fill the actual CheckPermissions request with a `Context` field when I see this correctly

vroldanbet · Answer

Correct caveat context is provided as part of `CheckPermissionRequest` `LookupResourcesRequest` and `LookupSubjectsRequest`

vroldanbet · Answer

it s based on `structpb` package with google which allows us to define maps to be provided on request time

dguhr-rh · Answer

yep understood great to know that you thought of lookupresources and lookupsubjects too as that might enable what I have in my mind Will come up with an example of the use case above shortly i hope