barycenter

CloudNebulaProject/barycenter

Fork 0

mirror of https://github.com/CloudNebulaProject/barycenter.git synced 2026-04-10 21:20:41 +00:00

Commit graph

Author	SHA1	Message	Date
Till Wegmueller	89a7902116	Run Clippy fix Signed-off-by: Till Wegmueller <toasterson@gmail.com>	2026-02-08 20:31:48 +01:00
Till Wegmueller	4f0dac7645	Fix formatting Signed-off-by: Till Wegmueller <toasterson@gmail.com>	2026-02-08 20:30:52 +01:00
Till Wegmueller	e0ca87f867	Implement file-driven authorization policy service (ReBAC + ABAC) Add a Zanzibar-style relationship-based access control engine with OPA-style ABAC condition evaluation. Policies, roles, resources, and grants are defined in KDL files loaded from a configured directory at startup. Exposes a read-only REST API (POST /v1/check, /v1/expand, GET /healthz) on a dedicated port when authz.enabled = true. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-08 18:34:14 +01:00

Author

SHA1

Message

Date

Till Wegmueller

89a7902116

Run Clippy fix

Signed-off-by: Till Wegmueller <toasterson@gmail.com>

2026-02-08 20:31:48 +01:00

Till Wegmueller

4f0dac7645

Fix formatting

Signed-off-by: Till Wegmueller <toasterson@gmail.com>

2026-02-08 20:30:52 +01:00

Till Wegmueller

e0ca87f867

Implement file-driven authorization policy service (ReBAC + ABAC)

Add a Zanzibar-style relationship-based access control engine with
OPA-style ABAC condition evaluation. Policies, roles, resources, and
grants are defined in KDL files loaded from a configured directory at
startup. Exposes a read-only REST API (POST /v1/check, /v1/expand,
GET /healthz) on a dedicated port when authz.enabled = true.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-08 18:34:14 +01:00

3 commits