Given an entity, add the ability to search for all entities that it has a grant to

[mooreds]

Given an entity, add the ability to search for all entities that it has a grant to

Problem

Given an entity, we have the ability to find all entities or users that have grants to it.

It would be great to be able to find all the entities that it has a grant to. This would allow for easy bidirectional modeling.

Consider a doctor and a patient. We want to be able to find all the doctor's patients and all the patient's doctors. Right now, if we have granted 'is_provider' from the doctor to the patient and we have the patient, we can find the doctor. But we can't see all the patients that the doctor has been granted 'is_provider' to. That is not a query we can run.

Solution

Add a way to search that takes an entityId and returns all of the entities that it has grants to.

Alternatives/workarounds

Create two sets of grants, one down the tree and one up the tree. In the doctor/patient case above, create a 'patient_of' permission and grant it to the doctor from the patient entity.

Additional context

Came up when modelling permissions for a possible customer.

Community guidelines

All issues filed in this repository must abide by the FusionAuth community guidelines.

How to vote

Please give us a thumbs up or thumbs down as a reaction to help us prioritize this feature. Feel free to comment if you have a particular need or comment on how this feature should work.