Expand description
Permission Recommendations
This module analyzes existing permission tuples and access patterns to suggest optimizations, identify redundant permissions, and detect over-permissive grants.
§Features
- Detect redundant permissions (can be simplified via hierarchy)
- Identify unused or rarely-used permissions
- Suggest tuple consolidations
- Recommend role-based patterns
- Find over-permissive grants
§Example
ⓘ
use oxify_authz::recommendations::{RecommendationEngine, RecommendationConfig};
let config = RecommendationConfig::default();
let mut engine = RecommendationEngine::new(config);
// Analyze tuples
engine.add_tuple(&tuple);
engine.record_access("user:alice", "doc:123", "read");
// Get recommendations
let recommendations = engine.generate_recommendations();
for rec in recommendations {
println!("{}: {}", rec.priority, rec.description);
}Structs§
- Recommendation
- A recommendation for permission optimization
- Recommendation
Config - Configuration for recommendation engine
- Recommendation
Engine - Main recommendation engine
- Usage
Stats - Usage statistics for a tuple
Enums§
- Priority
- Priority level for recommendations
- Recommendation
Type - Type of recommendation