author 0.1.0

Auth[entic|oris]ation
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38

use std::hash::Hash;
use thiserror::Error;

pub mod rbac;

#[derive(Error, Debug)]
pub enum Error {
    #[error("Forbidden")]
    Forbidden,
}

pub struct ProtectedResource<R> {
    resource: R,
}

// pub trait Object {
//     type Identifier: Hash + Eq;
//
//     fn identifier(&self) -> Self::Identifier;
// }

pub trait Resource {
    type Action: Hash + Eq;

    //fn authorise<Subj>(&self, subject: &Subj, action: &Self::Action) -> Result<(), Error>;
}

pub trait Subject {}

pub trait Policy<Res, Subj>
where
    Res: Resource,
    Subj: Subject,
{
    fn authorise(&self, resource: &Res, subject: &Subj, action: &Res::Action) -> Result<(), Error> {
        Err(Error::Forbidden)
    }
}