You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/content/interacting/authzen.mdx
+7-7Lines changed: 7 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -52,7 +52,7 @@ All AuthZEN endpoints return an `Unimplemented` error if the experimental flag i
52
52
53
53
## Endpoints
54
54
55
-
All AuthZEN endpoints are scoped to a storeand available under `/stores/{store_id}/access/v1/`.
55
+
All AuthZEN endpoints are scoped to a store. Evaluation and search endpoints are available under `/stores/{store_id}/access/v1/`. The Get Configuration (discovery) endpoint uses a different path: `/.well-known/authzen-configuration/{store_id}`.
56
56
57
57
| Endpoint | Method | Path | Description |
58
58
|---|---|---|---|
@@ -87,7 +87,7 @@ The Evaluation endpoint determines whether a subject is authorized to perform an
87
87
88
88
**Request:**
89
89
90
-
```json
90
+
```http
91
91
POST /stores/{store_id}/access/v1/evaluation
92
92
93
93
{
@@ -155,7 +155,7 @@ The Evaluations endpoint performs batch authorization checks in a single request
155
155
156
156
**Request:**
157
157
158
-
```json
158
+
```http
159
159
POST /stores/{store_id}/access/v1/evaluations
160
160
161
161
{
@@ -235,7 +235,7 @@ This answers questions like "Who can read this document?"
235
235
236
236
**Request:**
237
237
238
-
```json
238
+
```http
239
239
POST /stores/{store_id}/access/v1/search/subject
240
240
241
241
{
@@ -270,7 +270,7 @@ This answers questions like "What documents can Anne read?"
270
270
271
271
**Request:**
272
272
273
-
```json
273
+
```http
274
274
POST /stores/{store_id}/access/v1/search/resource
275
275
276
276
{
@@ -305,7 +305,7 @@ This answers questions like "What can Anne do with this document?"
305
305
306
306
**Request:**
307
307
308
-
```json
308
+
```http
309
309
POST /stores/{store_id}/access/v1/search/action
310
310
311
311
{
@@ -426,7 +426,7 @@ The AuthZEN spec does not define a standard way to pin requests to a specific mo
426
426
427
427
### X-Request-ID header
428
428
429
-
The spec RECOMMENDS that PEPs include an `X-Request-ID` header in requests and that PDPs echo it back in responses. <ProductNameformat={ProductNameFormat.ShortForm}/> returns an `X-Request-Id` header in all responses but does not currently echo back client-provided request IDs.
429
+
The spec RECOMMENDS that PEPs include an `X-Request-ID` header in requests and that PDPs echo it back in responses. <ProductNameformat={ProductNameFormat.ShortForm}/> returns an `X-Request-ID` header in all responses but does not currently echo back client-provided request IDs.
0 commit comments