feat(attr value lookup by fqn): adds GetAttributesByFqns rpc in attributes service #243 #250

jakedoublev · 2024-02-23T18:53:43Z

This includes:

FQNs RPC work (see below)
uniformity throughout the repo on FQN schema /value/<val> instead of /val/<val> as mentioned in some places
update to README.md to include this new RPC
adds fqn indexing of fixtures during provisioning of integration tests

FQNs RPC work:
Request:
grpcurl -plaintext -d '{"fqns":["https://example.com/attr/attr2/value/value1","https://example.com/attr/attr2/value/value2","https://example.com/attr/hola.md/value/value 1"]}' localhost:9000 policy.attributes.AttributesService/GetAttributesByValueFqns

Response pseudocode:

"fqnAttributeValues":{
   "https://namespace.com/attr/attribute1/value/val1": {
       "attribute": ...attribute1, // with all values
       "value": ...val1, // the value specified by the fqn
    }
}

Partially addresses #243

… from new request

… meaning to PDPs

…es from ERD

…s and index the fqns during integration test loading of fixtures

…nd the specific value named

examples/cmd/authorization.go

services/policy/attributes/attributes.go

services/policy/attributes/attributes.proto

🤖 I have created a release *beep* *boop* --- ## [0.1.0](protocol/go-v0.1.0...protocol/go/v0.1.0) (2024-04-22) ### Features * **attr value lookup by fqn:** adds GetAttributesByFqns rpc in attributes service [#243](#243) ([#250](#250)) ([b810d33](b810d33)) * **auth:** add authorization via casbin ([#417](#417)) ([292f2bd](292f2bd)) * **authorization service:** Gets the attributes from the in-memory service connection inside the GetDecisions request ([#273](#273)) ([ce57117](ce57117)) * **authorization:** entitlements ([#247](#247)) ([42c4f27](42c4f27)) * **core:** exposes new well-known configuration endpoint ([#299](#299)) ([d52cd21](d52cd21)) * **idp-add-on:** PLAT-3005 Add keycloak idp add on and idp add on protos ([#233](#233)) ([2365e61](2365e61)) * **kas:** authorization decisions ([#431](#431)) ([82e8895](82e8895)) * **PLAT-2950:** Update buf generated interface code for java ([#240](#240)) ([d7e2642](d7e2642)) * **policy object selectors:** adds initial selector protos, moves policy object type messages to top-level to avoid circular imports, and provides subject mappings in response to GetAttributeValuesByFqns ([#372](#372)) ([e9d9241](e9d9241)) * **policy subject mappings condition sets / migrations:** adds DB schema, fixes migrate down command, adds migrate up command, bumps goose ([#286](#286)) ([4d7a032](4d7a032)) * **policy:** adds support for match subject request to get entitlements without FQN scopes ([#347](#347)) ([63c34a5](63c34a5)) * **policy:** enhance and expand metadata and normalize API ([#314](#314)) ([9389f3b](9389f3b)) * **policy:** enhance subject mappings with subject condition sets ([#321](#321)) ([df692eb](df692eb)) * **policy:** list attrs by namespace ([#479](#479)) ([92d8f8c](92d8f8c)) * **policy:** list attrs by namespace name ([#487](#487)) ([04e723f](04e723f)) * **policy:** rework attribute value members ([#398](#398)) ([1cb7d0c](1cb7d0c)) * **policy:** support attribute value creation ([#454](#454)) ([432ee6b](432ee6b)) * **policy:** update fixtures, proto comments, and proto field names to reflect use of jq selector syntax within Conditions of Subject Sets ([#523](#523)) ([16f40f7](16f40f7)) ### Bug Fixes * **authorization:** remove access pdp internal AttributeInstance type and use policy proto generated struct types instead ([#485](#485)) ([8435f59](8435f59)) * **policy:** Adds policy package infix ([#280](#280)) ([57e8ef9](57e8ef9)) * **protos:** authorization service's ResourceAttribute message should map to updated platform policy schema ([#238](#238)) ([bf381dc](bf381dc)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

🤖 I have created a release *beep* *boop* --- ## [0.1.0](opentdf/platform@protocol/go-v0.1.0...protocol/go/v0.1.0) (2024-04-22) ### Features * **attr value lookup by fqn:** adds GetAttributesByFqns rpc in attributes service [#243](opentdf/platform#243) ([#250](opentdf/platform#250)) ([b810d33](opentdf/platform@b810d33)) * **auth:** add authorization via casbin ([#417](opentdf/platform#417)) ([292f2bd](opentdf/platform@292f2bd)) * **authorization service:** Gets the attributes from the in-memory service connection inside the GetDecisions request ([#273](opentdf/platform#273)) ([ce57117](opentdf/platform@ce57117)) * **authorization:** entitlements ([#247](opentdf/platform#247)) ([42c4f27](opentdf/platform@42c4f27)) * **core:** exposes new well-known configuration endpoint ([#299](opentdf/platform#299)) ([d52cd21](opentdf/platform@d52cd21)) * **idp-add-on:** PLAT-3005 Add keycloak idp add on and idp add on protos ([#233](opentdf/platform#233)) ([2365e61](opentdf/platform@2365e61)) * **kas:** authorization decisions ([#431](opentdf/platform#431)) ([82e8895](opentdf/platform@82e8895)) * **PLAT-2950:** Update buf generated interface code for java ([#240](opentdf/platform#240)) ([d7e2642](opentdf/platform@d7e2642)) * **policy object selectors:** adds initial selector protos, moves policy object type messages to top-level to avoid circular imports, and provides subject mappings in response to GetAttributeValuesByFqns ([#372](opentdf/platform#372)) ([e9d9241](opentdf/platform@e9d9241)) * **policy subject mappings condition sets / migrations:** adds DB schema, fixes migrate down command, adds migrate up command, bumps goose ([#286](opentdf/platform#286)) ([4d7a032](opentdf/platform@4d7a032)) * **policy:** adds support for match subject request to get entitlements without FQN scopes ([#347](opentdf/platform#347)) ([63c34a5](opentdf/platform@63c34a5)) * **policy:** enhance and expand metadata and normalize API ([#314](opentdf/platform#314)) ([9389f3b](opentdf/platform@9389f3b)) * **policy:** enhance subject mappings with subject condition sets ([#321](opentdf/platform#321)) ([df692eb](opentdf/platform@df692eb)) * **policy:** list attrs by namespace ([#479](opentdf/platform#479)) ([92d8f8c](opentdf/platform@92d8f8c)) * **policy:** list attrs by namespace name ([#487](opentdf/platform#487)) ([04e723f](opentdf/platform@04e723f)) * **policy:** rework attribute value members ([#398](opentdf/platform#398)) ([1cb7d0c](opentdf/platform@1cb7d0c)) * **policy:** support attribute value creation ([#454](opentdf/platform#454)) ([432ee6b](opentdf/platform@432ee6b)) * **policy:** update fixtures, proto comments, and proto field names to reflect use of jq selector syntax within Conditions of Subject Sets ([#523](opentdf/platform#523)) ([16f40f7](opentdf/platform@16f40f7)) ### Bug Fixes * **authorization:** remove access pdp internal AttributeInstance type and use policy proto generated struct types instead ([#485](opentdf/platform#485)) ([8435f59](opentdf/platform@8435f59)) * **policy:** Adds policy package infix ([#280](opentdf/platform#280)) ([57e8ef9](opentdf/platform@57e8ef9)) * **protos:** authorization service's ResourceAttribute message should map to updated platform policy schema ([#238](opentdf/platform#238)) ([bf381dc](opentdf/platform@bf381dc)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

jakedoublev added 14 commits February 22, 2024 14:16

add proto for GetAttributesByFqn and generate code

117e2f2

clarify proto message name

d47fa2c

update readme list of attributes service with new rpc

2bb55c8

map fqns to attributes in a key/value dictionary returned in response…

5dcb62a

… from new request

add db handler to get the attribute by FQN and build the response map

7afd1e1

integration tests

96edeac

Merge branch 'main' into issue-243/fqn-lookup

030fdb6

wip

193f64b

update proto to reflect attribute lookup only by value which gives it…

d5a6a2d

… meaning to PDPs

remove foreign key namespace_id that does not exist on attribute_valu…

19c26d1

…es from ERD

fix example to use /value/ in fqn like the rest of our implementation…

e6f3432

…s and index the fqns during integration test loading of fixtures

Merge branch 'main' into issue-243/fqn-lookup

1914d11

checkpoint with working lookup of an attribute by value fqn

3e0fed8

add integration tests and update readme with new rpc name

4cb3d89

jakedoublev requested a review from a team as a code owner February 23, 2024 18:53

update api to provide back a map of the fqn to the entire attribute a…

2b7b62a

…nd the specific value named

jakedoublev force-pushed the issue-243/fqn-lookup branch from d737ea4 to 2b7b62a Compare February 23, 2024 19:04

pflynn-virtru reviewed Feb 23, 2024

View reviewed changes

examples/cmd/authorization.go Show resolved Hide resolved

pflynn-virtru approved these changes Feb 23, 2024

View reviewed changes

jakedoublev requested a review from jrschumacher February 23, 2024 19:19

jrschumacher changed the title ~~feat(attr value lookup by fqn): Issue 243 adds GetAttributesByFqns rpc in attributes service~~ feat(attr value lookup by fqn): adds GetAttributesByFqns rpc in attributes service #243 Feb 23, 2024

jrschumacher reviewed Feb 23, 2024

View reviewed changes

services/policy/attributes/attributes.go Show resolved Hide resolved

jrschumacher reviewed Feb 23, 2024

View reviewed changes

services/policy/attributes/attributes.proto Show resolved Hide resolved

jakedoublev mentioned this pull request Feb 23, 2024

Policy API: platform services must be able to look up full attributes by FQN #243

Closed

jakedoublev and others added 2 commits February 23, 2024 16:25

Merge branch 'main' into issue-243/fqn-lookup

f2e0f87

Merge branch 'main' into issue-243/fqn-lookup

6869e2b

jakedoublev merged commit b810d33 into main Feb 23, 2024

jakedoublev deleted the issue-243/fqn-lookup branch February 23, 2024 21:56

opentdf-automation bot mentioned this pull request Apr 18, 2024

chore(main): release protocol/go 0.1.0 #615

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat(attr value lookup by fqn): adds GetAttributesByFqns rpc in attributes service #243 #250

feat(attr value lookup by fqn): adds GetAttributesByFqns rpc in attributes service #243 #250

Uh oh!

jakedoublev commented Feb 23, 2024 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

feat(attr value lookup by fqn): adds GetAttributesByFqns rpc in attributes service #243 #250

feat(attr value lookup by fqn): adds GetAttributesByFqns rpc in attributes service #243 #250

Uh oh!

Conversation

jakedoublev commented Feb 23, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

jakedoublev commented Feb 23, 2024 •

edited

Loading