Scope acts the exact same as a Role with the addition that is can also apply an AllowIDList. Any resource being checked against a Scope will reject any resource that is not in the AllowIDList. To not use an AllowIDList to reject authorization, use a wildcard for the AllowIDList. Eg: 'AllowIDList: []
| 211 | // To not use an AllowIDList to reject authorization, use a wildcard for the |
| 212 | // AllowIDList. Eg: 'AllowIDList: []string{WildcardSymbol}' |
| 213 | type Scope struct { |
| 214 | Role |
| 215 | AllowIDList []AllowListElement `json:"allow_list"` |
| 216 | } |
| 217 | |
| 218 | type AllowListElement struct { |
| 219 | // ID must be a string to allow for the wildcard symbol. |
nothing calls this directly
no outgoing calls
no test coverage detected