diff --git a/addons/static/templates/policy_cache_transformer_persona.json b/addons/static/templates/policy_cache_transformer_persona.json index ad4be52055..7ba930c2f1 100644 --- a/addons/static/templates/policy_cache_transformer_persona.json +++ b/addons/static/templates/policy_cache_transformer_persona.json @@ -393,9 +393,7 @@ "policyType": "ACCESS", "resources": [ "entity:{entity}", - "entity:{entity}/*", "entity-type:DataDomain", - "entity-type:DataProduct", "entity-classification:*" ], "actions": ["entity-update"] @@ -551,6 +549,25 @@ "end-two-entity-type:DataProduct", "end-two-entity-classification:*" ], + "actions": ["add-relationship", "update-relationship", "remove-relationship"] + }, + { + "policyResourceCategory": "RELATIONSHIP", + "policyType": "ACCESS", + "description": "Link/unlink any Asset to this DataProduct", + + "resources": [ + "relationship-type:*", + + "end-one-entity-type:Asset", + "end-one-entity-classification:*", + "end-one-entity:*", + + "end-two-entity-type:DataProduct", + "end-two-entity-classification:*", + "end-two-entity:{entity}/*product/*" + ], + "actions": ["add-relationship", "update-relationship", "remove-relationship"] } ],