IDQL policy validation fails for ABAC expressions

Policy validation currently returns errors for conditions with attribute based filters. For example:
A policy with condition rule such as:
 ```
"subject.roles co \"evil_genius\" or (subject.roles co editor and resource.properties.ownerID eq subject.claims.email)"
```
returns validation errors:
```
invalid condition entity type: subject.roles
invalid condition entity type: subject.roles
invalid condition entity type: resource.properties.ownerID
invalid condition entity type: subject.claims.email
```


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

IDQL policy validation fails for ABAC expressions #80

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

IDQL policy validation fails for ABAC expressions #80

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions