UNPKG

@authzed/authzed-node

Version:

authzed client for nodejs

github.com/authzed/authzed-node

authzed/authzed-node

109 lines (96 loc) 2.87 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
import { v1 } from '@authzed/authzed-node'; // set up it on localhost like this: // const client = v1.NewClient('mytokenhere', 'localhost:50051', v1.ClientSecurity.INSECURE_LOCALHOST_ALLOWED); const client = v1.NewClient('mytokenhere'); const { promises: promiseClient } = client; // access client.promises after instantiating client const writeRequest = v1.WriteSchemaRequest.create({ schema: `definition test/user {} definition test/document { relation viewer: test/user permission view = viewer } `, }); // Write a schema. await new Promise((resolve, reject) => { client.writeSchema(writeRequest, function (err, response) { if (err) reject(err); resolve(response); }); }); // Write a relationship. const writeRelationshipRequest = v1.WriteRelationshipsRequest.create({ updates: [ v1.RelationshipUpdate.create({ relationship: v1.Relationship.create({ resource: v1.ObjectReference.create({ objectType: 'test/document', objectId: 'somedocument', }), relation: 'viewer', subject: v1.SubjectReference.create({ object: v1.ObjectReference.create({ objectType: 'test/user', objectId: 'fred', }), }), }), operation: v1.RelationshipUpdate_Operation.CREATE, }), ], }); await new Promise((resolve, reject) => { client.writeRelationships(writeRelationshipRequest, function (err, response) { if (err) reject(err); resolve(response); }); }); // Check a permission. const checkPermissionRequest = v1.CheckPermissionRequest.create({ resource: v1.ObjectReference.create({ objectType: 'test/document', objectId: 'somedocument', }), permission: 'view', subject: v1.SubjectReference.create({ object: v1.ObjectReference.create({ objectType: 'test/user', objectId: 'fred', }), }), consistency: v1.Consistency.create({ requirement: { oneofKind: 'fullyConsistent', fullyConsistent: true, }, }), }); const checkResult = await new Promise((resolve, reject) => { client.checkPermission(checkPermissionRequest, function (err, response) { if (err) reject(err); resolve(response); }); }); console.log( checkResult.permissionship === v1.CheckPermissionResponse_Permissionship.HAS_PERMISSION ); // Lookup Resources const lookupResourcesRequest = v1.LookupResourcesRequest.create({ consistency: v1.Consistency.create({ requirement: { oneofKind: 'fullyConsistent', fullyConsistent: true, }, }), resourceObjectType: 'test/document', permission: 'view', subject: v1.SubjectReference.create({ object: v1.ObjectReference.create({ objectType: 'test/user', objectId: 'fred', }), }), }); const results = await promiseClient.lookupResources(lookupResourcesRequest) console.log(results);