Sarah Funkhouser
Sarah Funkhouser
Example structure: ``` ├── datum_controlled_top_level
To enable development, we currently generate keys on startup if none are provided, instead we should fail to start if no keys are provided when not in dev: https://github.com/datumforge/datum/blob/main/cmd/serve.go#L130-L132
The existing tuple cleanup works when an object is being deleted by ID, however, on cascade deletes where a `predicate` is used, we don't have the object ID and the...
By default, a dedicated database is not created per org, but currently controlled by a field in the organization `dedicated_db`. Instead of allowing this to be set directly, this should...
- oauth2 providers should be able to be configured per-organization and enforcement settings requiring users of that organization to authenticate via that provider - "clerk -like" functionality - ability for...
As we iterate on our authz model, the mocks will only help us ensure the checks were done, they will not check that we are getting the behavior we expect....
Current implementation is a little naive and allows 1 to many owners. 1. Restrict to only a single owner allowed per org/group id in org/group membership 2. Prevent deletion of...
Right now we check to see if an error is a constraint error, e,g: ``` if generated.IsConstraintError(err) { constraintError := err.(*generated.ConstraintError) r.logger.Debugw("constraint error", "error", constraintError.Error()) return nil, constraintError } ```...
If more than 10 writes (writes + deletes) are passed to `CreateRelationshipTuples` in `[]ClientTupleKey`, these should be split into multiple requests and rollback if any write fails https://github.com/datumforge/datum/blob/7017cbec19a459b674b61a85a2713d18e88cdcb9/internal/fga/tuples.go#L95-L118 ref of...