openrundev
diff --git a/‎internal/app/action/action.go‎
Lines changed: 8 additions & 7 deletions b/‎internal/app/action/action.go‎
Lines changed: 8 additions & 7 deletions
diff --git a/‎internal/app/app.go‎
Lines changed: 15 additions & 16 deletions b/‎internal/app/app.go‎
Lines changed: 15 additions & 16 deletions
diff --git a/‎internal/app/setup.go‎
Lines changed: 3 additions & 3 deletions b/‎internal/app/setup.go‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎internal/app/tests/app_test_helper.go‎
Lines changed: 14 additions & 13 deletions b/‎internal/app/tests/app_test_helper.go‎
Lines changed: 14 additions & 13 deletions
diff --git a/‎internal/app/tests/proxy_test.go‎
Lines changed: 41 additions & 20 deletions b/‎internal/app/tests/proxy_test.go‎
Lines changed: 41 additions & 20 deletions
diff --git a/‎internal/server/pathglob.go‎ renamed to ‎internal/rbac/pathglob.go‎
Lines changed: 1 addition & 1 deletion b/‎internal/server/pathglob.go‎ renamed to ‎internal/rbac/pathglob.go‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎internal/server/pathglob_test.go‎ renamed to ‎internal/rbac/pathglob_test.go‎
Lines changed: 1 addition & 1 deletion b/‎internal/server/pathglob_test.go‎ renamed to ‎internal/rbac/pathglob_test.go‎
Lines changed: 1 addition & 1 deletion
@@ -26,6 +26,7 @@ import (
 	"github.com/openrundev/openrun/internal/app/appfs"
 	"github.com/openrundev/openrun/internal/app/apptype"
 	"github.com/openrundev/openrun/internal/app/starlark_type"
+	"github.com/openrundev/openrun/internal/rbac"
 	"github.com/openrundev/openrun/internal/system"
 	"github.com/openrundev/openrun/internal/types"
 	"go.starlark.net/starlark"
@@ -73,15 +74,15 @@ type Action struct {
 	appPathDomain     types.AppPathDomain
 	serverConfig      *types.ServerConfig
 	permit            []string
-	authorizer        types.AuthorizerFunc // can be null
+	rbacApi           rbac.RBACAPI
 }
 
 // NewAction creates a new action
 func NewAction(logger *types.Logger, sourceFS *appfs.SourceFs, isDev bool, name, description, apath string, run, suggest starlark.Callable,
 	params []apptype.AppParam, paramValuesStr map[string]string, paramDict starlark.StringDict,
 	appPath string, styleType types.StyleType, containerProxyUrl string, hidden []string, showValidate bool,
 	auditInsert func(*types.AuditEvent) error, containerManager any, jsLibs []types.JSLibrary, appPathDomain types.AppPathDomain,
-	serverConfig *types.ServerConfig, permit []string, authorizer types.AuthorizerFunc) (*Action, error) {
+	serverConfig *types.ServerConfig, permit []string, rbacApi rbac.RBACAPI) (*Action, error) {
 
 	funcMap := system.GetFuncMap()
 
@@ -158,7 +159,7 @@ func NewAction(logger *types.Logger, sourceFS *appfs.SourceFs, isDev bool, name,
 		appPathDomain: appPathDomain,
 		serverConfig:  serverConfig,
 		permit:        permit,
-		authorizer:    authorizer,
+		rbacApi:       rbacApi,
 	}, nil
 }
 
@@ -213,8 +214,8 @@ func (a *Action) validateAction(w http.ResponseWriter, r *http.Request) {
 }
 
 func (a *Action) authorizeAction(w http.ResponseWriter, r *http.Request) bool {
-	if a.authorizer != nil && len(a.permit) > 0 {
-		authorized, err := a.authorizer(r.Context(), a.permit)
+	if a.rbacApi != nil && len(a.permit) > 0 {
+		authorized, err := a.rbacApi.AuthorizeAny(r.Context(), a.permit)
 		if err != nil {
 			http.Error(w, err.Error(), http.StatusInternalServerError)
 			return false
@@ -872,9 +873,9 @@ func (a *Action) getLinksWithQS(ctx context.Context, qs string) []ActionLink {
 	linksWithQS := make([]ActionLink, 0, len(a.Links))
 	for _, link := range a.Links {
 		authorized := true
-		if a.authorizer != nil && len(link.Permits) > 0 {
+		if a.rbacApi != nil && len(link.Permits) > 0 {
 			var err error
-			authorized, err = a.authorizer(ctx, link.Permits)
+			authorized, err = a.rbacApi.AuthorizeAny(ctx, link.Permits)
 			if err != nil {
 				a.Error().Msgf("error authorizing link %s: %s", link.Name, err)
 			}
 
@@ -29,6 +29,7 @@ import (
 	"github.com/openrundev/openrun/internal/app/apptype"
 	"github.com/openrundev/openrun/internal/app/dev"
 	"github.com/openrundev/openrun/internal/app/starlark_type"
+	"github.com/openrundev/openrun/internal/rbac"
 	"github.com/openrundev/openrun/internal/system"
 	"github.com/openrundev/openrun/internal/types"
 	"go.starlark.net/starlark"
@@ -87,9 +88,8 @@ type App struct {
 	lastRequestTime atomic.Int64
 	secretEvalFunc  func([][]string, string, string) (string, error)
 	auditInsert     func(*types.AuditEvent) error
-	AppRunPath      string                // path to the app run directory
-	authorizer      types.AuthorizerFunc  // the authorizer function to use, can be null
-	customPermsFunc types.CustomPermsFunc // the custom permissions function to use, can be null
+	AppRunPath      string       // path to the app run directory
+	rbacApi         rbac.RBACAPI // the rbac api to use
 }
 
 type starlarkCacheEntry struct {
@@ -107,20 +107,19 @@ func NewApp(sourceFS *appfs.SourceFs, workFS *appfs.WorkFs, logger *types.Logger
 	plugins map[string]types.PluginSettings, appConfig types.AppConfig, notifyClose chan<- types.AppPathDomain,
 	secretEvalFunc func([][]string, string, string) (string, error),
 	auditInsert func(*types.AuditEvent) error, serverConfig *types.ServerConfig,
-	authorizer types.AuthorizerFunc, customPermsFunc types.CustomPermsFunc) (*App, error) {
+	rbacApi rbac.RBACAPI) (*App, error) {
 	newApp := &App{
-		sourceFS:        sourceFS,
-		Logger:          logger,
-		AppEntry:        appEntry,
-		systemConfig:    systemConfig,
-		starlarkCache:   map[string]*starlarkCacheEntry{},
-		notifyClose:     notifyClose,
-		secretEvalFunc:  secretEvalFunc,
-		appStyle:        &dev.AppStyle{},
-		auditInsert:     auditInsert,
-		serverConfig:    serverConfig,
-		authorizer:      authorizer,
-		customPermsFunc: customPermsFunc,
+		sourceFS:       sourceFS,
+		Logger:         logger,
+		AppEntry:       appEntry,
+		systemConfig:   systemConfig,
+		starlarkCache:  map[string]*starlarkCacheEntry{},
+		notifyClose:    notifyClose,
+		secretEvalFunc: secretEvalFunc,
+		appStyle:       &dev.AppStyle{},
+		auditInsert:    auditInsert,
+		serverConfig:   serverConfig,
+		rbacApi:        rbacApi,
 	}
 	newApp.plugins = NewAppPlugins(newApp, plugins, appEntry.Metadata.Accounts)
 	newApp.AppConfig = appConfig
 
@@ -561,7 +561,7 @@ func (a *App) addAction(count int, val starlark.Value, router *chi.Mux) (err err
 	}
 	action, err := action.NewAction(a.Logger, a.sourceFS, a.IsDev, name, description, path, run, suggest,
 		slices.Collect(maps.Values(a.paramInfo)), a.paramValuesStr, a.paramDict, a.Path, a.appStyle.GetStyleType(),
-		containerProxyUrl, hidden, showValidate, a.auditInsert, a.containerManager, a.jsLibs, a.AppPathDomain(), a.serverConfig, permit, a.authorizer)
+		containerProxyUrl, hidden, showValidate, a.auditInsert, a.containerManager, a.jsLibs, a.AppPathDomain(), a.serverConfig, permit, a.rbacApi)
 	if err != nil {
 		return fmt.Errorf("error creating action %s: %w", name, err)
 	}
@@ -861,8 +861,8 @@ func (a *App) addProxyConfig(count int, router *chi.Mux, proxyDef *starlarkstruc
 			}
 
 			customPerms := make([]string, 0)
-			if a.customPermsFunc != nil {
-				customPerms, err = a.customPermsFunc(r.Context())
+			if a.rbacApi != nil {
+				customPerms, err = a.rbacApi.GetCustomPermissions(r.Context())
 			}
 			// Add the user and custom permissions to the request headers
 			r.Header.Set(types.OPENRUN_HEADER_PERMS, strings.Join(customPerms, ","))
 
@@ -14,6 +14,7 @@ import (
 
 	"github.com/openrundev/openrun/internal/app"
 	"github.com/openrundev/openrun/internal/app/appfs"
+	"github.com/openrundev/openrun/internal/rbac"
 	"github.com/openrundev/openrun/internal/system"
 	"github.com/openrundev/openrun/internal/types"
 
@@ -22,54 +23,54 @@ import (
 )
 
 func CreateDevModeTestApp(logger *types.Logger, fileData map[string]string) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, true, nil, nil, nil, "app_dev_testapp", types.AppSettings{}, nil, nil, nil, nil)
+	return CreateTestAppInt(logger, "/test", fileData, true, nil, nil, nil, "app_dev_testapp", types.AppSettings{}, nil, nil, nil)
 }
 
 func CreateTestApp(logger *types.Logger, fileData map[string]string) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, nil, nil, nil, nil)
+	return CreateTestAppInt(logger, "/test", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, nil, nil, nil)
 }
 
 func CreateTestAppConfig(logger *types.Logger, fileData map[string]string, appConfig types.AppConfig) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, nil, &appConfig, nil, nil)
+	return CreateTestAppInt(logger, "/test", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, nil, &appConfig, nil)
 }
 
 func CreateTestAppParams(logger *types.Logger, fileData map[string]string, params map[string]string) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, params, nil, nil, nil)
+	return CreateTestAppInt(logger, "/test", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, params, nil, nil)
 }
 
 func CreateTestAppRoot(logger *types.Logger, fileData map[string]string) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, nil, nil, nil, nil)
+	return CreateTestAppInt(logger, "/", fileData, false, nil, nil, nil, "app_prd_testapp", types.AppSettings{}, nil, nil, nil)
 }
 
 func CreateTestAppPlugin(logger *types.Logger, fileData map[string]string,
 	plugins []string, permissions []types.Permission, pluginConfig map[string]types.PluginSettings) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, false, plugins, permissions, pluginConfig, "app_prd_testapp", types.AppSettings{}, nil, nil, nil, nil)
+	return CreateTestAppInt(logger, "/test", fileData, false, plugins, permissions, pluginConfig, "app_prd_testapp", types.AppSettings{}, nil, nil, nil)
 }
 
 func CreateTestAppPluginRoot(logger *types.Logger, fileData map[string]string,
 	plugins []string, permissions []types.Permission, pluginConfig map[string]types.PluginSettings) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/", fileData, false, plugins, permissions, pluginConfig, "app_prd_testapp", types.AppSettings{}, nil, nil, nil, nil)
+	return CreateTestAppInt(logger, "/", fileData, false, plugins, permissions, pluginConfig, "app_prd_testapp", types.AppSettings{}, nil, nil, nil)
 }
 
 func CreateDevAppPlugin(logger *types.Logger, fileData map[string]string, plugins []string,
 	permissions []types.Permission, pluginConfig map[string]types.PluginSettings) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, true, plugins, permissions, pluginConfig, "app_dev_testapp", types.AppSettings{}, nil, nil, nil, nil)
+	return CreateTestAppInt(logger, "/test", fileData, true, plugins, permissions, pluginConfig, "app_dev_testapp", types.AppSettings{}, nil, nil, nil)
 }
 
 func CreateTestAppPluginId(logger *types.Logger, fileData map[string]string,
 	plugins []string, permissions []types.Permission, pluginConfig map[string]types.PluginSettings, id string, settings types.AppSettings) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, false, plugins, permissions, pluginConfig, id, settings, nil, nil, nil, nil)
+	return CreateTestAppInt(logger, "/test", fileData, false, plugins, permissions, pluginConfig, id, settings, nil, nil, nil)
 }
 
 func CreateTestAppAuthorizer(logger *types.Logger, fileData map[string]string,
-	plugins []string, permissions []types.Permission, pluginConfig map[string]types.PluginSettings, authorizer types.AuthorizerFunc, customPermsFunc types.CustomPermsFunc) (*app.App, *appfs.WorkFs, error) {
-	return CreateTestAppInt(logger, "/test", fileData, false, plugins, permissions, pluginConfig, "app_prd_testapp", types.AppSettings{}, nil, nil, authorizer, customPermsFunc)
+	plugins []string, permissions []types.Permission, pluginConfig map[string]types.PluginSettings, rbacApi rbac.RBACAPI) (*app.App, *appfs.WorkFs, error) {
+	return CreateTestAppInt(logger, "/test", fileData, false, plugins, permissions, pluginConfig, "app_prd_testapp", types.AppSettings{}, nil, nil, rbacApi)
 }
 
 func CreateTestAppInt(logger *types.Logger, path string, fileData map[string]string, isDev bool,
 	plugins []string, permissions []types.Permission, pluginConfig map[string]types.PluginSettings,
 	id string, settings types.AppSettings, params map[string]string, appConfig *types.AppConfig,
-	authorizer types.AuthorizerFunc, customPermsFunc types.CustomPermsFunc) (*app.App, *appfs.WorkFs, error) {
+	rbacApi rbac.RBACAPI) (*app.App, *appfs.WorkFs, error) {
 	systemConfig := types.SystemConfig{TailwindCSSCommand: "", AllowedEnv: []string{"HOME"}}
 	var fs appfs.ReadableFS
 	if isDev {
@@ -113,7 +114,7 @@ func CreateTestAppInt(logger *types.Logger, path string, fileData map[string]str
 	workFS := appfs.NewWorkFs("", &TestWriteFS{TestReadFS: &TestReadFS{fileData: map[string]string{}}})
 	a, err := app.NewApp(sourceFS, workFS, logger,
 		createTestAppEntry(id, path, isDev, metadata), &systemConfig, pluginConfig, *appConfig,
-		nil, secretManager.AppEvalTemplate, nil, &types.ServerConfig{}, authorizer, customPermsFunc)
+		nil, secretManager.AppEvalTemplate, nil, &types.ServerConfig{}, rbacApi)
 	if err != nil {
 		return nil, nil, err
 	}
 
@@ -15,6 +15,23 @@ import (
 	"github.com/openrundev/openrun/internal/types"
 )
 
+// testRBAC is a minimal RBACAPI implementation for tests
+type testRBAC struct {
+	perms []string
+}
+
+func (t *testRBAC) AuthorizeAny(ctx context.Context, permissions []string) (bool, error) {
+	return true, nil
+}
+
+func (t *testRBAC) Authorize(ctx context.Context, permission types.RBACPermission, isAppLevelPermission bool) (bool, error) {
+	return true, nil
+}
+
+func (t *testRBAC) GetCustomPermissions(ctx context.Context) ([]string, error) {
+	return t.perms, nil
+}
+
 func TestProxyBasics(t *testing.T) {
 	testServer := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		if r.URL.Path != "/abc" {
@@ -677,21 +694,23 @@ permissions=[
 )`, testServer.URL),
 	}
 
-	// Create custom authorizer and perms func
-	authorizer := func(ctx context.Context, permissions []string) (bool, error) {
-		// Always allow
-		return true, nil
-	}
+	/*
+		// Create custom authorizer and perms func
+		_ := func(ctx context.Context, permissions []string) (bool, error) {
+			// Always allow
+			return true, nil
+		}
 
-	customPermsFunc := func(ctx context.Context) ([]string, error) {
-		// Return custom permissions
-		return []string{"read:data", "write:data", "admin"}, nil
-	}
+		_ := func(ctx context.Context) ([]string, error) {
+			// Return custom permissions
+			return []string{"read:data", "write:data", "admin"}, nil
+		}
+	*/
 
 	a, _, err := CreateTestAppAuthorizer(logger, fileData, []string{"proxy.in"},
 		[]types.Permission{
 			{Plugin: "proxy.in", Method: "config"},
-		}, map[string]types.PluginSettings{}, authorizer, customPermsFunc)
+		}, map[string]types.PluginSettings{}, &testRBAC{perms: []string{"read:data", "write:data", "admin"}})
 	if err != nil {
 		t.Fatalf("Error %s", err)
 	}
@@ -733,21 +752,23 @@ permissions=[
 )`, testServer.URL),
 	}
 
-	// Create custom authorizer that sets a user in context
-	authorizer := func(ctx context.Context, permissions []string) (bool, error) {
-		// Always allow
-		return true, nil
-	}
+	/*
+		// Create custom authorizer that sets a user in context
+		authorizer := func(ctx context.Context, permissions []string) (bool, error) {
+			// Always allow
+			return true, nil
+		}
 
-	customPermsFunc := func(ctx context.Context) ([]string, error) {
-		// Return empty custom permissions
-		return []string{}, nil
-	}
+		customPermsFunc := func(ctx context.Context) ([]string, error) {
+			// Return empty custom permissions
+			return []string{}, nil
+		}
+	*/
 
 	a, _, err := CreateTestAppAuthorizer(logger, fileData, []string{"proxy.in"},
 		[]types.Permission{
 			{Plugin: "proxy.in", Method: "config"},
-		}, map[string]types.PluginSettings{}, authorizer, customPermsFunc)
+		}, map[string]types.PluginSettings{}, &testRBAC{perms: []string{}})
 	if err != nil {
 		t.Fatalf("Error %s", err)
 	}
 
@@ -1,7 +1,7 @@
 // Copyright (c) ClaceIO, LLC
 // SPDX-License-Identifier: Apache-2.0
 
-package server
+package rbac
 
 import (
 	"fmt"
 
@@ -1,7 +1,7 @@
 // Copyright (c) ClaceIO, LLC
 // SPDX-License-Identifier: Apache-2.0
 
-package server
+package rbac
 
 import (
 	"fmt"
Original file line number	Diff line number	Diff line change
`@@ -561,7 +561,7 @@ func (a App) addAction(count int, val starlark.Value, router chi.Mux) (err err`
`561`	`561`	`}`
`562`	`562`	`action, err := action.NewAction(a.Logger, a.sourceFS, a.IsDev, name, description, path, run, suggest,`
`563`	`563`	`slices.Collect(maps.Values(a.paramInfo)), a.paramValuesStr, a.paramDict, a.Path, a.appStyle.GetStyleType(),`
`564`		`- containerProxyUrl, hidden, showValidate, a.auditInsert, a.containerManager, a.jsLibs, a.AppPathDomain(), a.serverConfig, permit, a.authorizer)`
	`564`	`+ containerProxyUrl, hidden, showValidate, a.auditInsert, a.containerManager, a.jsLibs, a.AppPathDomain(), a.serverConfig, permit, a.rbacApi)`
`565`	`565`	`if err != nil {`
`566`	`566`	`return fmt.Errorf("error creating action %s: %w", name, err)`
`567`	`567`	`}`
`@@ -861,8 +861,8 @@ func (a App) addProxyConfig(count int, router chi.Mux, proxyDef *starlarkstruc`
`861`	`861`	`}`
`862`	`862`
`863`	`863`	`customPerms := make([]string, 0)`
`864`		`- if a.customPermsFunc != nil {`
`865`		`- customPerms, err = a.customPermsFunc(r.Context())`
	`864`	`+ if a.rbacApi != nil {`
	`865`	`+ customPerms, err = a.rbacApi.GetCustomPermissions(r.Context())`
`866`	`866`	`}`
`867`	`867`	`// Add the user and custom permissions to the request headers`
`868`	`868`	`r.Header.Set(types.OPENRUN_HEADER_PERMS, strings.Join(customPerms, ","))`