From ae8419233cfc5de5c353b1e8058945621fe22856 Mon Sep 17 00:00:00 2001
From: Elizabeth Healy <ehealy@virtru.com>
Date: Thu, 15 Aug 2024 12:59:57 -0400
Subject: [PATCH 1/2] Update casbin.go

---
 service/internal/auth/casbin.go | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/service/internal/auth/casbin.go b/service/internal/auth/casbin.go
index 5e15e7ef75..7f4efbe2b8 100644
--- a/service/internal/auth/casbin.go
+++ b/service/internal/auth/casbin.go
@@ -76,6 +76,10 @@ p,	role:admin,		/subject-mappings*,													*,			allow
 p,	role:admin,		/resource-mappings*,												*,			allow
 p,	role:admin,		/key-access-servers*,												*,			allow
 p,	role:admin,		/kas/v2/rewrap,						  				        *,      allow
+p,	role:admin,		/v1/entitlements,						  				        *,      allow
+p,	role:admin,		/v1/authorization,						  				        *,      allow
+p,	role:admin,		/v1/token/authorization,						  				        *,      allow
+
 
 ## Role: Standard
 ## gRPC routes

From c0a7ada9c43424b11720cd6998f1c77a3036d2b6 Mon Sep 17 00:00:00 2001
From: Elizabeth Healy <ehealy@virtru.com>
Date: Thu, 15 Aug 2024 13:02:25 -0400
Subject: [PATCH 2/2] add to org admin

---
 service/internal/auth/casbin.go | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/service/internal/auth/casbin.go b/service/internal/auth/casbin.go
index 7f4efbe2b8..7e3cf518c2 100644
--- a/service/internal/auth/casbin.go
+++ b/service/internal/auth/casbin.go
@@ -60,6 +60,9 @@ p,	role:org-admin,		/resource-mappings*,										*,			allow
 p,	role:org-admin,		/key-access-servers*,										*,			allow
 p,	role:org-admin, 	/kas/v2/rewrap,						  		        *,      allow
 p,	role:org-admin,		/unsafe*,										            *,			allow
+p,	role:org-admin,		/v1/entitlements,						  				        *,      allow
+p,	role:org-admin,		/v1/authorization,						  				        *,      allow
+p,	role:org-admin,		/v1/token/authorization,						  				        *,      allow
 
 # Role: Admin
 ## gRPC routes