Hey everyone :sunny:
Me an my team are just taking...
# ory-networks
strong-controller-46383
03/13/2023, 1:49 PMHey everyone ☀️
Me an my team are just taking the first steps with Ory and are wondering what the best practices and recommendations are for keeping our “permission rules” under version control in git and then uploading them whenever changes are made and merged using the CLI. Thanks 🙏
h
high-optician-2097
03/13/2023, 2:24 PM
Hey Maria, that’s a great question. Looping in @magnificent-energy-493
m
magnificent-energy-493
03/13/2023, 2:44 PM
The way I do it in my projects:
Copy code
export project_id=
export project_name= Copy code
ory get permission-config $project_id --format json-pretty > ory-permission-config-$project_name.json Copy code
import { Namespace, SubjectSet, Context } from "@ory/keto-namespace-types"
class User implements Namespace { }
class Blog implements Namespace {
related: {
viewers: User[]
}
permits = {
view: (ctx: Context): boolean =>
this.related.viewers.includes(ctx.subject)
}
} Copy code
{
"limit": {},
"namespaces": {
"location": "<base64://somevalue>"
}
} Copy code
ory update permission-config $project_id --file ory-permission-config-$project_name.jsons
strong-controller-46383
03/13/2023, 3:15 PMThanks Vincent, this does indeed look like a doable approach and more or less in line with what we were hoping for 🙏
strong-controller-46383
03/13/2023, 3:16 PMI think we can probably extend it to do something similar for the Relationship tuples and the identity schema. Just to ensure we have everything in version control
👍 2
m
magnificent-energy-493
03/13/2023, 5:32 PM
Yea I use the same approach for the identity-config, identity-schema and also jsonnets for social logins and webhooks.
gratitude thank you 1
w
wide-nightfall-69566
03/15/2023, 8:10 AMHi @magnificent-energy-493 I have a following question. We want to implement this process into github actions. Currently I face the issue about
ory auth33 Views