Trait GateBackend

Source

pub trait GateBackend: Send + Sync {
    // Required method
    fn check(
        &self,
        agent_id: &str,
        action: &str,
        context: &Value,
    ) -> GateDecision;
}

Expand description

Trait for gate backends that make access-control decisions.

Implementations include:

CapabilityGate — wraps the existing CapabilityChecker for binary Permit/Deny decisions.
TileZeroGate (behind tilezero feature) — three-way Permit/Defer/Deny with cryptographic receipts.

Required Methods§

Source

fn check(&self, agent_id: &str, action: &str, context: &Value) -> GateDecision

Check whether an agent is allowed to perform an action.

§Arguments

agent_id - The agent requesting the action.
action - The action being attempted (e.g. “tool.shell_exec”, “ipc.send”, “service.access”).
context - Additional context for the decision (tool args, target PID, etc.).

Implementors§

Source §

impl GateBackend for CapabilityGate

Source §

impl GateBackend for GovernanceGate

Source §

GateBackend

Trait GateBackend Copy item path

Required Methods§

fn check(&self, agent_id: &str, action: &str, context: &Value) -> GateDecision

§Arguments

Implementors§

impl GateBackend for CapabilityGate

impl GateBackend for GovernanceGate

impl GateBackend for TileZeroGate

Trait GateBackend