brainos-identity 0.5.0

Principal, tier, and authorization for Brain OS

Coverage
61.19%
41 out of 67 items documented1 out of 27 items with examples
Size
Source code size: 87.72 kB This is the summed size of all the files inside the crates.io package for this release.
Documentation size: 1.48 MB This is the summed size of all files generated by rustdoc for all configured targets
Ø build duration
this release: 13s Average build duration of successful builds.
all releases: 13s Average build duration of successful builds in releases after 2024-10-23.
Links
Homepage
keshavashiya/brain
35 3 0
crates.io
Dependencies
Versions
- 0.5.0 (2026-06-10)
Owners

Brain Identity & Principal

[Principal] — who is asking (user_id + agent_id + scopes + tier).
[Tier] — ordered authorization level: Read < Write < Execute < Destructive < External.
[IdentityStore] — async trait that resolves principals and authorizes actions. Receives an [AuthorizationRequest] (not a verb string) so path-scope checks can read modifiers["path"] / modifiers["cwd"] without depending on the higher-level IntentToken type.
[ModifierConstraint] — per-principal, per-(verb, modifier) allowlist; the general form of the built-in path_allowlist and the enforcement substrate for capability-scoped Skill Packs.
[ConfigIdentityStore] — default in-memory implementation backed by the identity: section of ~/.brain/config.yaml.