mirror of
https://github.com/valitydev/bouncer.git
synced 2024-11-06 02:15:18 +00:00
4b86d8e48f
* Make fsync repeat interval configurable as usual. * Dig into logger internals to sync w/ handler reliably * Upgrade to opa 0.26.0-debug service image in tests * Bump to rbkmoney/image-build-erlang@61a001b |
||
|---|---|---|
| build_utils@e1318727d4 | ||
| config | ||
| src | ||
| test | ||
| .gitignore | ||
| .gitmodules | ||
| docker-compose.sh | ||
| Dockerfile.sh | ||
| Jenkinsfile | ||
| Makefile | ||
| README.md | ||
| rebar.config | ||
| rebar.lock | ||
Bouncer
Does someone look like a troublemaker?
Primary Arbiter thrift service implementation.
In a nutshell this service maps incoming contexts into OPA input documents and asks OPA to compute a judgement allowing, restricting or forbidding actions under given input context.
From the service's point of view a ruleset id is a path to OPA document that define a subdocument named judgement with a rudimentary schema. See https://github.com/rbkmoney/bouncer-policies#authoring for more detailed information.
Things to keep in mind
- When upgrading service to a newer Erlang OTP release please be aware of potential breakages in
bouncer_audit_lognot strictly related to usual API deprecations and removals which is an essintial part of a release. That is because this module relies on some OTP libraries' interal implementation details. See module-level notes for additional details.