[#18] acl: Add impersonate field to bearer token

Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-02-21 11:18:35 +03:00 · 2023-02-21 11:18:35 +03:00 · bd50db1151
commit bd50db1151
parent cbc038f84e
3 changed files with 6 additions and 0 deletions
--- a/acl/types.proto
+++ b/acl/types.proto
@ -213,6 +213,10 @@ message BearerToken {
    }
    // Token expiration and valid time period parameters
    TokenLifetime lifetime = 3 [json_name="lifetime"];
+
+    // AllowImpersonate flag to consider token signer as request owner.
+    // If this field is true extended ACL table in token body isn't processed.
+    bool allow_impersonate = 4 [json_name="allowImpersonate"];
  }
  // Bearer Token body
  Body body = 1 [json_name="body"];