cedar-policy 4.10.0

Cedar is a language for defining permissions as policies, which describe who should have access to what.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22

type UserId = __cedar::String;
type GroupId = __cedar::String;

entity User, Admin = {
    "id": UserId,
    "name": __cedar::String
};

entity Group = {
    "id": GroupId,
    "members": Set<User>
};

entity Status enum ["active", "inactive"];

action read, write appliesTo {
    principal: [User, Admin],
    resource: [Group],
    context: {}
};

action manage in [read, write];