-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathplugin.json
More file actions
63 lines (63 loc) · 1.74 KB
/
plugin.json
File metadata and controls
63 lines (63 loc) · 1.74 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
{
"name": "workflow-plugin-authz",
"version": "1.2.0",
"author": "GoCodeAlone",
"description": "Authorization plugin for workflow engine providing RBAC, ABAC, and policy-based access control for HTTP endpoints and pipeline steps.",
"license": "MIT",
"repository": "https://github.com/GoCodeAlone/workflow-plugin-authz",
"tier": "community",
"tags": ["authorization", "rbac", "abac", "security", "access-control"],
"moduleTypes": ["authz.enforcer", "authz.policy"],
"stepTypes": ["step.authz_check", "step.authz_grant"],
"triggerTypes": [],
"workflowTypes": [],
"wiringHooks": ["authz-middleware-injection"],
"capabilities": [
{
"name": "authorization",
"role": "provider",
"priority": 10
}
],
"dependencies": [
{
"name": "workflow-plugin-http",
"constraint": ">=1.0.0"
}
],
"stepSchemas": [
{
"type": "step.authz_check",
"description": "Check if the current request is authorized for a given permission",
"configFields": [
{
"key": "permission",
"label": "Permission",
"type": "string",
"description": "The permission string to check (e.g. 'orders:read')",
"required": true
}
]
},
{
"type": "step.authz_grant",
"description": "Grant a permission to a role or user",
"configFields": [
{
"key": "role",
"label": "Role",
"type": "string",
"description": "Target role to grant permission to",
"required": true
},
{
"key": "permission",
"label": "Permission",
"type": "string",
"description": "Permission to grant",
"required": true
}
]
}
]
}