Skip to content

Commit

Permalink
Datamesh bootstrap policies
Browse files Browse the repository at this point in the history 
(cherry picked from commit fe989db)
  • Loading branch information
@nikhilbonte21
nikhilbonte21 committed Mar 12, 2024
1 parent 57e56f6 commit 00b8e0e
Show file tree
Hide file tree
Showing 2 changed files with 262 additions and 0 deletions.
143 changes: 143 additions & 0 deletions addons/policies/bootstrap_entity_policies.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2859,6 +2859,149 @@
"entity-update"
]
}
},
{
"typeName": "AuthPolicy",
"attributes":
{
"name": "CRUD_DATA_MESH_ENTITIES",
"qualifiedName": "CRUD_DATA_MESH_ENTITIES",
"description": "Allows user to perform crud operation on data mesh assets",
"policyCategory": "bootstrap",
"policySubCategory": "default",
"policyServiceName": "atlas",
"policyType": "allow",
"policyPriority": 0,
"policyUsers":
[],
"policyGroups":
[],
"policyRoles":
[
"$admin",
"$api-token-default-access"
],
"policyResourceCategory": "ENTITY",
"policyResources":
[
"entity-type:DataDomain",
"entity-classification:*",
"entity:*"
],
"policyActions":
[
"entity-create",
"entity-read",
"entity-update",
"entity-delete"
]
}
},
{
"typeName": "AuthPolicy",
"attributes":
{
"name": "DATA_MESH_CLASSIFICATION",
"qualifiedName": "DATA_MESH_CLASSIFICATION",
"description": "Allows tagging data mesh assets",
"policyCategory": "bootstrap",
"policySubCategory": "default",
"policyServiceName": "atlas",
"policyType": "allow",
"policyPriority": 0,
"policyUsers":
[],
"policyGroups":
[],
"policyRoles":
[
"$admin",
"$api-token-default-access"
],
"policyResourceCategory": "ENTITY",
"policyResources":
[
"entity-type:DataDomain",
"entity-type:DataProduct",
"entity-classification:*",
"entity:*"
],
"policyActions":
[
"entity-add-classification",
"entity-update-classification",
"entity-remove-classification"
]
}
},
{
"typeName": "AuthPolicy",
"attributes":
{
"name": "READ_DATA_MESH_ENTITIES",
"qualifiedName": "READ_DATA_MESH_ENTITIES",
"description": "Allows user to perform to do read operation on data mesh assets",
"policyCategory": "bootstrap",
"policySubCategory": "default",
"policyServiceName": "atlas",
"policyType": "allow",
"policyPriority": 0,
"policyUsers":
[],
"policyGroups":
[],
"policyRoles":
[
"$member",
"$guest"
],
"policyResourceCategory": "ENTITY",
"policyResources":
[
"entity-type:DataDomain",
"entity-classification:*",
"entity:*"
],
"policyActions":
[
"entity-read"
]
}
},
{
"typeName": "AuthPolicy",
"attributes":
{
"name": "CUD_DATA_PRODUCT_ENTITY",
"qualifiedName": "CUD_DATA_PRODUCT_ENTITY",
"description": "Allows user to perform cud operation on DataProduct assets.",
"policyCategory": "bootstrap",
"policySubCategory": "default",
"policyServiceName": "atlas",
"policyType": "allow",
"policyPriority": 0,
"policyUsers":
[],
"policyGroups":
[],
"policyRoles":
[
"$admin",
"$api-token-default-access"
],
"policyResourceCategory": "ENTITY",
"policyResources":
[
"entity-type:DataProduct",
"entity:*"
],
"policyActions":
[
"entity-create",
"entity-update",
"entity-delete"
]
}
}
]
}
119 changes: 119 additions & 0 deletions addons/policies/bootstrap_relationship_policies.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -641,6 +641,125 @@
"remove-relationship"
]
}
},
{
"typeName": "AuthPolicy",
"attributes":
{
"name": "LINK_MESH_DATA_DOMAIN_TO_DATA_PRODUCT",
"qualifiedName": "LINK_MESH_DATA_DOMAIN_TO_DATA_PRODUCT",
"policyCategory": "bootstrap",
"policySubCategory": "default",
"policyServiceName": "atlas",
"policyType": "allow",
"policyPriority": 0,
"policyUsers":
[],
"policyGroups":
[],
"policyRoles":
[
"$admin",
"$api-token-default-access"
],
"policyResourceCategory": "RELATIONSHIP",
"policyResources":
[
"end-one-entity-classification:*",
"end-two-entity-classification:*",
"end-one-entity:*",
"end-two-entity:*",
"end-one-entity-type:DataDomain",
"end-two-entity-type:DataProduct",
"relationship-type:*"
],
"policyActions":
[
"add-relationship",
"update-relationship",
"remove-relationship"
]
}
},
{
"typeName": "AuthPolicy",
"attributes":
{
"name": "LINK_MESH_DATA_DOMAIN_TO_DATA_DOMAIN",
"qualifiedName": "LINK_MESH_DATA_DOMAIN_TO_DATA_DOMAIN",
"policyCategory": "bootstrap",
"policySubCategory": "default",
"policyServiceName": "atlas",
"policyType": "allow",
"policyPriority": 0,
"policyUsers":
[],
"policyGroups":
[],
"policyRoles":
[
"$admin",
"$api-token-default-access"
],
"policyResourceCategory": "RELATIONSHIP",
"policyResources":
[
"end-one-entity-classification:*",
"end-two-entity-classification:*",
"end-one-entity:*",
"end-two-entity:*",
"end-one-entity-type:DataDomain",
"end-two-entity-type:DataDomain",
"relationship-type:*"
],
"policyActions":
[
"add-relationship",
"update-relationship",
"remove-relationship"
]
}
},
{
"typeName": "AuthPolicy",
"attributes":
{
"name": "LINK_RESOURCES_TO_DATA_MESH",
"qualifiedName": "LINK_RESOURCES_TO_DATA_MESH",
"policyCategory": "bootstrap",
"policySubCategory": "default",
"policyServiceName": "atlas",
"policyType": "allow",
"policyPriority": 0,
"policyUsers":
[],
"policyGroups":
[],
"policyRoles":
[
"$admin",
"$api-token-default-access"
],
"policyResourceCategory": "RELATIONSHIP",
"policyResources":
[
"end-one-entity-classification:*",
"end-two-entity-classification:*",
"end-one-entity:*",
"end-two-entity:*",
"end-one-entity-type:DataDomain",
"end-one-entity-type:DataProduct",
"end-two-entity-type:Readme",
"end-two-entity-type:Link",
"relationship-type:*"
],
"policyActions":
[
"add-relationship",
"update-relationship",
"remove-relationship"
]
}
}
]
}

0 comments on commit 00b8e0e

Please sign in to comment.