Skip to content

Instantly share code, notes, and snippets.

@mkraft

mkraft/model.fga

Last active September 13, 2024 00:20
Show Gist options
  • Save mkraft/79df0794e2db11a783f70845e0fe3c92 to your computer and use it in GitHub Desktop.
Save mkraft/79df0794e2db11a783f70845e0fe3c92 to your computer and use it in GitHub Desktop.
Download ZIP
OpenFGA Docker + CLI Quick Demo
Raw
readme.md

Spin-up an ephemeral docker instance.

docker pull openfga/openfga && docker run -p 8080:8080 -p 8081:8081 -p 3000:3000 openfga/openfga run

In another terminal, create a store.

fga store create --name "FGA Demo Store"

Make note of your store ID for use in following commands, for example:

export STORE_ID=01J7MBWN53GQ7PD1JKFEBE83NQ

Write the model.

fga --store-id=$STORE_ID model write --file model.fga

Write a tuple for jack.

fga tuple write --store-id=$STORE_ID user:jack owner document:foobar

And perform some checks for jack, noting that because he is an owner he's also a writer and editor.

fga query check --store-id=$STORE_ID user:jack owner document:foobar
fga query check --store-id=$STORE_ID user:jack writer document:foobar
fga query check --store-id=$STORE_ID user:jack reader document:foobar

Write a tuple for jane.

fga tuple write --store-id=$STORE_ID user:jane reader document:foobar

And perform some checks, noting that she's only a reader.

fga query check --store-id=$STORE_ID user:jane owner document:foobar
fga query check --store-id=$STORE_ID user:jane writer document:foobar
fga query check --store-id=$STORE_ID user:jane reader document:foobar
Raw
model.fga
model
schema 1.1
type user
type document
relations
define reader: [user] or writer
define writer: [user] or owner
define owner: [user]
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment