authzed 0.1.0 → 0.2.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e1495a99e8306e5ccba16daa977fa824fced295ee98913e36c73617c18def744
-  data.tar.gz: 74763f19757bce03b40e4362f89c0499f1a55661324701ad387b1a61453d0f96
+  metadata.gz: 745773cee685ac83d572bb8a772f0f25825147e9e55092aa66ee36a29a578341
+  data.tar.gz: a6a59d5a14bca9c4340717a261fa2bd59edf6f503bb4d1abba07cae496a0e0c2
 SHA512:
-  metadata.gz: 859a8f38ab1ce0cf71c06f827333facf4701520341e2d3fe50a174b7639a9c7843d93f46cfacd623eb086d28f3ec66e9cbf96a3bf977bdb914fb73d136ae4a46
-  data.tar.gz: 7147f721b18f217dcb3dbf00f6d3ba96e87d1f21ccd4c6f5b9880f23c032bc08d89aef319800fd289b74f694872c597eaa1b94b20a547eb4f49aa675ca766016
+  metadata.gz: e93362eddda43c3d16194640a7090dbbc324e44bc79f8632ab450a950b412eb0921ad17981e502864d1fec106622d7ad9d9f39c2e6ef78395ec0d6e42f81a1a5
+  data.tar.gz: 69e91b80c6c2d9c8e7934923629f063a63b41ebaed4416d89186fd3128c07d5b4d7f7249d540722cfdf1bd66d30e7a4d04cff6bddb3b615ad7f9bec8990ec325

data/README.md

@@ -14,6 +14,7 @@ This repository houses the Ruby client library for Authzed.
 Developers create a schema that models their permissions requirements and use a client library, such as this one, to apply the schema to the database, insert data into the database, and query the data to efficiently check permissions in their applications.
 
 Supported client API versions:
+- [v1](https://docs.authzed.com/reference/api#authzedapiv1)
 - [v1alpha1](https://docs.authzed.com/reference/api#authzedapiv1alpha1)
 - [v0](https://docs.authzed.com/reference/api#authzedapiv0)
 
@@ -31,10 +32,10 @@ See [CONTRIBUTING.md] for instructions on how to contribute and perform common t
 
 We highly recommend following the **[Protecting Your First App]** guide to learn the latest best practice to integrate an application with Authzed.
 
-If you're interested in examples of a specific version of the API, they can be found in their respective folders in the [examples directory].
+If you're interested in example uses of the API, see the spec files in the [spec directory].
 
 [Protecting Your First App]: https://docs.authzed.com/guides/first-app
-[examples directory]: /examples
+[spec directory]: /spec
 
 ## Basic Usage
 
@@ -61,9 +62,10 @@ In order to successfully connect, you will have to provide a [Bearer Token] with
 require 'authzed'
 
 
-client = Authzed::Api::V0::Client.new(
-    target: 'grpc.authzed.com:443',
-    interceptors: [Authzed::GrpcUtil::BearerToken.new(token: 't_your_token_here_1234567deadbeef')],
+client = Authzed::Api::V1::Client.new(
+    target: "localhost:50051",
+    credentials: :this_channel_is_insecure,
+    interceptors: [Authzed::GrpcUtil::BearerToken.new(token: "somerandomkeyhere")],
 )
 ```
 
@@ -72,15 +74,19 @@ client = Authzed::Api::V0::Client.new(
 ```rb
 require 'authzed'
 
-emilia = Authzed::Api::V0::User.new(namespace: 'blog/user', object_id: 'emilia')
-read_first_post = Authzed::Api::V0::ObjectAndRelation.new(
-    namespace: 'blog/post',
-    object_id: '1',
-    relation: 'read'
-)
-
 # Is Emilia in the set of users that can read post #1?
-resp = client.acl_service.check(
-  Authzed::Api::V0::CheckRequest.new(test_userset: read_first_post, user: emilia)
+resp = client.permissions_service.check_permission(
+  Authzed::Api::V1::CheckPermissionRequest.new(
+    consistency: Authzed::Api::V1::Consistency.new(
+      at_least_as_fresh: Authzed::Api::V1::ZedToken.new(token: zed_token)
+    ),
+    resource: Authzed::Api::V1::ObjectReference.new(object_type: 'blog/post', object_id: '1'),
+    permission: 'read',
+    subject: Authzed::Api::V1::SubjectReference.new(
+      object: Authzed::Api::V1::ObjectReference.new(object_type: 'blog/user', object_id: 'emilia')
+    )
+  )
 )
+can_read = Authzed::Api::V1::CheckPermissionResponse::Permissionship.resolve(resp.permissionship)) ==
+  Authzed::Api::V1::CheckPermissionResponse::Permissionship::PERMISSIONSHIP_HAS_PERMISSION
 ```

data/lib/authzed/api/v0/developer_pb.rb

@@ -7,6 +7,13 @@ require 'authzed/api/v0/core_pb'
 require 'authzed/api/v0/namespace_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("authzed/api/v0/developer.proto", :syntax => :proto3) do
+    add_message "authzed.api.v0.FormatSchemaRequest" do
+      optional :schema, :string, 1, json_name: "schema"
+    end
+    add_message "authzed.api.v0.FormatSchemaResponse" do
+      optional :error, :message, 1, "authzed.api.v0.DeveloperError", json_name: "error"
+      optional :formatted_schema, :string, 2, json_name: "formattedSchema"
+    end
     add_message "authzed.api.v0.UpgradeSchemaRequest" do
       repeated :namespace_configs, :string, 1, json_name: "namespaceConfigs"
     end
@@ -42,6 +49,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     add_message "authzed.api.v0.RequestContext" do
       optional :schema, :string, 1, json_name: "schema"
       repeated :relationships, :message, 2, "authzed.api.v0.RelationTuple", json_name: "relationships"
+      repeated :legacy_ns_configs, :message, 3, "authzed.api.v0.NamespaceDefinition", json_name: "legacyNsConfigs"
     end
     add_message "authzed.api.v0.EditCheckRequest" do
       optional :context, :message, 1, "authzed.api.v0.RequestContext", json_name: "context"
@@ -102,6 +110,8 @@ end
 module Authzed
   module Api
     module V0
+      FormatSchemaRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.FormatSchemaRequest").msgclass
+      FormatSchemaResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.FormatSchemaResponse").msgclass
       UpgradeSchemaRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.UpgradeSchemaRequest").msgclass
       UpgradeSchemaResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.UpgradeSchemaResponse").msgclass
       ShareRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.ShareRequest").msgclass

data/lib/authzed/api/v0/developer_services_pb.rb

@@ -21,6 +21,7 @@ module Authzed
           rpc :Share, ::Authzed::Api::V0::ShareRequest, ::Authzed::Api::V0::ShareResponse
           rpc :LookupShared, ::Authzed::Api::V0::LookupShareRequest, ::Authzed::Api::V0::LookupShareResponse
           rpc :UpgradeSchema, ::Authzed::Api::V0::UpgradeSchemaRequest, ::Authzed::Api::V0::UpgradeSchemaResponse
+          rpc :FormatSchema, ::Authzed::Api::V0::FormatSchemaRequest, ::Authzed::Api::V0::FormatSchemaResponse
         end
 
         Stub = Service.rpc_stub_class

data/lib/authzed/api/v0/namespace_service_pb.rb

@@ -22,6 +22,12 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     add_message "authzed.api.v0.WriteConfigResponse" do
       optional :revision, :message, 1, "authzed.api.v0.Zookie", json_name: "revision"
     end
+    add_message "authzed.api.v0.DeleteConfigsRequest" do
+      repeated :namespaces, :string, 1, json_name: "namespaces"
+    end
+    add_message "authzed.api.v0.DeleteConfigsResponse" do
+      optional :revision, :message, 1, "authzed.api.v0.Zookie", json_name: "revision"
+    end
   end
 end
 
@@ -32,6 +38,8 @@ module Authzed
       ReadConfigResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.ReadConfigResponse").msgclass
       WriteConfigRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.WriteConfigRequest").msgclass
       WriteConfigResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.WriteConfigResponse").msgclass
+      DeleteConfigsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.DeleteConfigsRequest").msgclass
+      DeleteConfigsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v0.DeleteConfigsResponse").msgclass
     end
   end
 end

data/lib/authzed/api/v0/namespace_service_services_pb.rb

@@ -18,6 +18,7 @@ module Authzed
 
           rpc :ReadConfig, ::Authzed::Api::V0::ReadConfigRequest, ::Authzed::Api::V0::ReadConfigResponse
           rpc :WriteConfig, ::Authzed::Api::V0::WriteConfigRequest, ::Authzed::Api::V0::WriteConfigResponse
+          rpc :DeleteConfigs, ::Authzed::Api::V0::DeleteConfigsRequest, ::Authzed::Api::V0::DeleteConfigsResponse
         end
 
         Stub = Service.rpc_stub_class

data/lib/authzed/api/v1/client.rb

@@ -0,0 +1,37 @@
+require 'grpc'
+
+module Authzed
+  module Api
+    module V1
+      class Client
+        attr_reader :permissions_service, :schema_service, :watch_service
+
+        def initialize(target:, credentials: nil, interceptors: [], options: {}, timeout: nil)
+          creds = credentials || GRPC::Core::ChannelCredentials.new
+
+          @permissions_service = Authzed::Api::V1::PermissionsService::Stub.new(
+            target,
+            creds,
+            timeout: timeout,
+            interceptors: interceptors,
+            channel_args: options,
+          )
+          @schema_service = Authzed::Api::V1::SchemaService::Stub.new(
+            target,
+            creds,
+            timeout: timeout,
+            interceptors: interceptors,
+            channel_args: options,
+          )
+          @watch_service = Authzed::Api::V1::WatchService::Stub.new(
+            target,
+            creds,
+            timeout: timeout,
+            interceptors: interceptors,
+            channel_args: options,
+          )
+        end
+      end
+    end
+  end
+end

data/lib/authzed/api/v1/core_pb.rb

@@ -0,0 +1,73 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: authzed/api/v1/core.proto
+
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("authzed/api/v1/core.proto", :syntax => :proto3) do
+    add_message "authzed.api.v1.Relationship" do
+      optional :resource, :message, 1, "authzed.api.v1.ObjectReference", json_name: "resource"
+      optional :relation, :string, 2, json_name: "relation"
+      optional :subject, :message, 3, "authzed.api.v1.SubjectReference", json_name: "subject"
+    end
+    add_message "authzed.api.v1.SubjectReference" do
+      optional :object, :message, 1, "authzed.api.v1.ObjectReference", json_name: "object"
+      optional :optional_relation, :string, 2, json_name: "optionalRelation"
+    end
+    add_message "authzed.api.v1.ObjectReference" do
+      optional :object_type, :string, 1, json_name: "objectType"
+      optional :object_id, :string, 2, json_name: "objectId"
+    end
+    add_message "authzed.api.v1.ZedToken" do
+      optional :token, :string, 1, json_name: "token"
+    end
+    add_message "authzed.api.v1.RelationshipUpdate" do
+      optional :operation, :enum, 1, "authzed.api.v1.RelationshipUpdate.Operation", json_name: "operation"
+      optional :relationship, :message, 2, "authzed.api.v1.Relationship", json_name: "relationship"
+    end
+    add_enum "authzed.api.v1.RelationshipUpdate.Operation" do
+      value :OPERATION_UNSPECIFIED, 0
+      value :OPERATION_CREATE, 1
+      value :OPERATION_TOUCH, 2
+      value :OPERATION_DELETE, 3
+    end
+    add_message "authzed.api.v1.PermissionRelationshipTree" do
+      optional :expanded_object, :message, 3, "authzed.api.v1.ObjectReference", json_name: "expandedObject"
+      optional :expanded_relation, :string, 4, json_name: "expandedRelation"
+      oneof :tree_type do
+        optional :intermediate, :message, 1, "authzed.api.v1.AlgebraicSubjectSet", json_name: "intermediate"
+        optional :leaf, :message, 2, "authzed.api.v1.DirectSubjectSet", json_name: "leaf"
+      end
+    end
+    add_message "authzed.api.v1.AlgebraicSubjectSet" do
+      optional :operation, :enum, 1, "authzed.api.v1.AlgebraicSubjectSet.Operation", json_name: "operation"
+      repeated :children, :message, 2, "authzed.api.v1.PermissionRelationshipTree", json_name: "children"
+    end
+    add_enum "authzed.api.v1.AlgebraicSubjectSet.Operation" do
+      value :OPERATION_UNSPECIFIED, 0
+      value :OPERATION_UNION, 1
+      value :OPERATION_INTERSECTION, 2
+      value :OPERATION_EXCLUSION, 3
+    end
+    add_message "authzed.api.v1.DirectSubjectSet" do
+      repeated :subjects, :message, 1, "authzed.api.v1.SubjectReference", json_name: "subjects"
+    end
+  end
+end
+
+module Authzed
+  module Api
+    module V1
+      Relationship = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.Relationship").msgclass
+      SubjectReference = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.SubjectReference").msgclass
+      ObjectReference = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ObjectReference").msgclass
+      ZedToken = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ZedToken").msgclass
+      RelationshipUpdate = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.RelationshipUpdate").msgclass
+      RelationshipUpdate::Operation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.RelationshipUpdate.Operation").enummodule
+      PermissionRelationshipTree = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.PermissionRelationshipTree").msgclass
+      AlgebraicSubjectSet = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.AlgebraicSubjectSet").msgclass
+      AlgebraicSubjectSet::Operation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.AlgebraicSubjectSet.Operation").enummodule
+      DirectSubjectSet = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.DirectSubjectSet").msgclass
+    end
+  end
+end

data/lib/authzed/api/v1/permission_service_pb.rb

@@ -0,0 +1,123 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: authzed/api/v1/permission_service.proto
+
+require 'google/protobuf'
+
+require 'authzed/api/v1/core_pb'
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("authzed/api/v1/permission_service.proto", :syntax => :proto3) do
+    add_message "authzed.api.v1.Consistency" do
+      oneof :requirement do
+        optional :minimize_latency, :bool, 1, json_name: "minimizeLatency"
+        optional :at_least_as_fresh, :message, 2, "authzed.api.v1.ZedToken", json_name: "atLeastAsFresh"
+        optional :at_exact_snapshot, :message, 3, "authzed.api.v1.ZedToken", json_name: "atExactSnapshot"
+        optional :fully_consistent, :bool, 4, json_name: "fullyConsistent"
+      end
+    end
+    add_message "authzed.api.v1.RelationshipFilter" do
+      optional :resource_type, :string, 1, json_name: "resourceType"
+      optional :optional_resource_id, :string, 2, json_name: "optionalResourceId"
+      optional :optional_relation, :string, 3, json_name: "optionalRelation"
+      optional :optional_subject_filter, :message, 4, "authzed.api.v1.SubjectFilter", json_name: "optionalSubjectFilter"
+    end
+    add_message "authzed.api.v1.SubjectFilter" do
+      optional :subject_type, :string, 1, json_name: "subjectType"
+      optional :optional_subject_id, :string, 2, json_name: "optionalSubjectId"
+      optional :optional_relation, :message, 3, "authzed.api.v1.SubjectFilter.RelationFilter", json_name: "optionalRelation"
+    end
+    add_message "authzed.api.v1.SubjectFilter.RelationFilter" do
+      optional :relation, :string, 1, json_name: "relation"
+    end
+    add_message "authzed.api.v1.ReadRelationshipsRequest" do
+      optional :consistency, :message, 1, "authzed.api.v1.Consistency", json_name: "consistency"
+      optional :relationship_filter, :message, 2, "authzed.api.v1.RelationshipFilter", json_name: "relationshipFilter"
+    end
+    add_message "authzed.api.v1.ReadRelationshipsResponse" do
+      optional :read_at, :message, 1, "authzed.api.v1.ZedToken", json_name: "readAt"
+      optional :relationship, :message, 2, "authzed.api.v1.Relationship", json_name: "relationship"
+    end
+    add_message "authzed.api.v1.Precondition" do
+      optional :operation, :enum, 1, "authzed.api.v1.Precondition.Operation", json_name: "operation"
+      optional :filter, :message, 2, "authzed.api.v1.RelationshipFilter", json_name: "filter"
+    end
+    add_enum "authzed.api.v1.Precondition.Operation" do
+      value :OPERATION_UNSPECIFIED, 0
+      value :OPERATION_MUST_NOT_MATCH, 1
+      value :OPERATION_MUST_MATCH, 2
+    end
+    add_message "authzed.api.v1.WriteRelationshipsRequest" do
+      repeated :updates, :message, 1, "authzed.api.v1.RelationshipUpdate", json_name: "updates"
+      repeated :optional_preconditions, :message, 2, "authzed.api.v1.Precondition", json_name: "optionalPreconditions"
+    end
+    add_message "authzed.api.v1.WriteRelationshipsResponse" do
+      optional :written_at, :message, 1, "authzed.api.v1.ZedToken", json_name: "writtenAt"
+    end
+    add_message "authzed.api.v1.DeleteRelationshipsRequest" do
+      optional :relationship_filter, :message, 1, "authzed.api.v1.RelationshipFilter", json_name: "relationshipFilter"
+      repeated :optional_preconditions, :message, 2, "authzed.api.v1.Precondition", json_name: "optionalPreconditions"
+    end
+    add_message "authzed.api.v1.DeleteRelationshipsResponse" do
+      optional :deleted_at, :message, 1, "authzed.api.v1.ZedToken", json_name: "deletedAt"
+    end
+    add_message "authzed.api.v1.CheckPermissionRequest" do
+      optional :consistency, :message, 1, "authzed.api.v1.Consistency", json_name: "consistency"
+      optional :resource, :message, 2, "authzed.api.v1.ObjectReference", json_name: "resource"
+      optional :permission, :string, 3, json_name: "permission"
+      optional :subject, :message, 4, "authzed.api.v1.SubjectReference", json_name: "subject"
+    end
+    add_message "authzed.api.v1.CheckPermissionResponse" do
+      optional :checked_at, :message, 1, "authzed.api.v1.ZedToken", json_name: "checkedAt"
+      optional :permissionship, :enum, 2, "authzed.api.v1.CheckPermissionResponse.Permissionship", json_name: "permissionship"
+    end
+    add_enum "authzed.api.v1.CheckPermissionResponse.Permissionship" do
+      value :PERMISSIONSHIP_UNSPECIFIED, 0
+      value :PERMISSIONSHIP_NO_PERMISSION, 1
+      value :PERMISSIONSHIP_HAS_PERMISSION, 2
+    end
+    add_message "authzed.api.v1.ExpandPermissionTreeRequest" do
+      optional :consistency, :message, 1, "authzed.api.v1.Consistency", json_name: "consistency"
+      optional :resource, :message, 2, "authzed.api.v1.ObjectReference", json_name: "resource"
+      optional :permission, :string, 3, json_name: "permission"
+    end
+    add_message "authzed.api.v1.ExpandPermissionTreeResponse" do
+      optional :expanded_at, :message, 1, "authzed.api.v1.ZedToken", json_name: "expandedAt"
+      optional :tree_root, :message, 2, "authzed.api.v1.PermissionRelationshipTree", json_name: "treeRoot"
+    end
+    add_message "authzed.api.v1.LookupResourcesRequest" do
+      optional :consistency, :message, 1, "authzed.api.v1.Consistency", json_name: "consistency"
+      optional :resource_object_type, :string, 2, json_name: "resourceObjectType"
+      optional :permission, :string, 3, json_name: "permission"
+      optional :subject, :message, 4, "authzed.api.v1.SubjectReference", json_name: "subject"
+    end
+    add_message "authzed.api.v1.LookupResourcesResponse" do
+      optional :looked_up_at, :message, 1, "authzed.api.v1.ZedToken", json_name: "lookedUpAt"
+      optional :resource_object_id, :string, 2, json_name: "resourceObjectId"
+    end
+  end
+end
+
+module Authzed
+  module Api
+    module V1
+      Consistency = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.Consistency").msgclass
+      RelationshipFilter = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.RelationshipFilter").msgclass
+      SubjectFilter = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.SubjectFilter").msgclass
+      SubjectFilter::RelationFilter = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.SubjectFilter.RelationFilter").msgclass
+      ReadRelationshipsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ReadRelationshipsRequest").msgclass
+      ReadRelationshipsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ReadRelationshipsResponse").msgclass
+      Precondition = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.Precondition").msgclass
+      Precondition::Operation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.Precondition.Operation").enummodule
+      WriteRelationshipsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.WriteRelationshipsRequest").msgclass
+      WriteRelationshipsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.WriteRelationshipsResponse").msgclass
+      DeleteRelationshipsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.DeleteRelationshipsRequest").msgclass
+      DeleteRelationshipsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.DeleteRelationshipsResponse").msgclass
+      CheckPermissionRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.CheckPermissionRequest").msgclass
+      CheckPermissionResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.CheckPermissionResponse").msgclass
+      CheckPermissionResponse::Permissionship = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.CheckPermissionResponse.Permissionship").enummodule
+      ExpandPermissionTreeRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ExpandPermissionTreeRequest").msgclass
+      ExpandPermissionTreeResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ExpandPermissionTreeResponse").msgclass
+      LookupResourcesRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.LookupResourcesRequest").msgclass
+      LookupResourcesResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.LookupResourcesResponse").msgclass
+    end
+  end
+end

data/lib/authzed/api/v1/permission_service_services_pb.rb

@@ -0,0 +1,47 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: authzed/api/v1/permission_service.proto for package 'authzed.api.v1'
+
+require 'grpc'
+require 'authzed/api/v1/permission_service_pb'
+
+module Authzed
+  module Api
+    module V1
+      module PermissionsService
+        # PermissionsService is used to perform permissions and relationship
+        # operations.
+        class Service
+
+          include ::GRPC::GenericService
+
+          self.marshal_class_method = :encode
+          self.unmarshal_class_method = :decode
+          self.service_name = 'authzed.api.v1.PermissionsService'
+
+          # ReadRelationships reads a set of the relationships matching one or more
+          # filters.
+          rpc :ReadRelationships, ::Authzed::Api::V1::ReadRelationshipsRequest, stream(::Authzed::Api::V1::ReadRelationshipsResponse)
+          # WriteRelationships writes and/or deletes a set of specified relationships,
+          # with an optional set of precondition relationships that must exist before
+          # the operation can commit.
+          rpc :WriteRelationships, ::Authzed::Api::V1::WriteRelationshipsRequest, ::Authzed::Api::V1::WriteRelationshipsResponse
+          # DeleteRelationships deletes relationships matching one or more filters, in
+          # bulk.
+          rpc :DeleteRelationships, ::Authzed::Api::V1::DeleteRelationshipsRequest, ::Authzed::Api::V1::DeleteRelationshipsResponse
+          # CheckPermission checks whether a subject has a particular permission or is
+          # a member of a particular relation, on a given resource.
+          rpc :CheckPermission, ::Authzed::Api::V1::CheckPermissionRequest, ::Authzed::Api::V1::CheckPermissionResponse
+          # ExpandPermissionTree expands the relationships reachable from a particular
+          # permission or relation of a given resource.
+          rpc :ExpandPermissionTree, ::Authzed::Api::V1::ExpandPermissionTreeRequest, ::Authzed::Api::V1::ExpandPermissionTreeResponse
+          # LookupResources returns the IDs of all resources on which the specified
+          # subject has permission or on which the specified subject is a member of the
+          # relation.
+          rpc :LookupResources, ::Authzed::Api::V1::LookupResourcesRequest, stream(::Authzed::Api::V1::LookupResourcesResponse)
+        end
+
+        Stub = Service.rpc_stub_class
+      end
+    end
+  end
+end

data/lib/authzed/api/v1/schema_pb.rb

@@ -0,0 +1,30 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: authzed/api/v1/schema.proto
+
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("authzed/api/v1/schema.proto", :syntax => :proto3) do
+    add_message "authzed.api.v1.ReadSchemaRequest" do
+    end
+    add_message "authzed.api.v1.ReadSchemaResponse" do
+      optional :schema_text, :string, 1, json_name: "schemaText"
+    end
+    add_message "authzed.api.v1.WriteSchemaRequest" do
+      optional :schema, :string, 1, json_name: "schema"
+    end
+    add_message "authzed.api.v1.WriteSchemaResponse" do
+    end
+  end
+end
+
+module Authzed
+  module Api
+    module V1
+      ReadSchemaRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ReadSchemaRequest").msgclass
+      ReadSchemaResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.ReadSchemaResponse").msgclass
+      WriteSchemaRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.WriteSchemaRequest").msgclass
+      WriteSchemaResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.WriteSchemaResponse").msgclass
+    end
+  end
+end

data/lib/authzed/api/v1/schema_services_pb.rb

@@ -0,0 +1,34 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: authzed/api/v1/schema.proto for package 'authzed.api.v1'
+
+require 'grpc'
+require 'authzed/api/v1/schema_pb'
+
+module Authzed
+  module Api
+    module V1
+      module SchemaService
+        # SchemaService implements operations on a Permissions System's Schema.
+        class Service
+
+          include ::GRPC::GenericService
+
+          self.marshal_class_method = :encode
+          self.unmarshal_class_method = :decode
+          self.service_name = 'authzed.api.v1.SchemaService'
+
+          # Read returns the current Object Definitions for a Permissions System.
+          #
+          # Errors include:
+          # - INVALID_ARGUMENT: a provided value has failed to semantically validate
+          # - NOT_FOUND: no schema has been defined
+          rpc :ReadSchema, ::Authzed::Api::V1::ReadSchemaRequest, ::Authzed::Api::V1::ReadSchemaResponse
+          # Write overwrites the current Object Definitions for a Permissions System.
+          rpc :WriteSchema, ::Authzed::Api::V1::WriteSchemaRequest, ::Authzed::Api::V1::WriteSchemaResponse
+        end
+
+        Stub = Service.rpc_stub_class
+      end
+    end
+  end
+end

data/lib/authzed/api/v1/watch_service_pb.rb

@@ -0,0 +1,27 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: authzed/api/v1/watch_service.proto
+
+require 'google/protobuf'
+
+require 'authzed/api/v1/core_pb'
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("authzed/api/v1/watch_service.proto", :syntax => :proto3) do
+    add_message "authzed.api.v1.WatchRequest" do
+      repeated :object_types, :string, 1, json_name: "objectTypes"
+      optional :optional_start_cursor, :message, 2, "authzed.api.v1.ZedToken", json_name: "optionalStartCursor"
+    end
+    add_message "authzed.api.v1.WatchResponse" do
+      repeated :updates, :message, 1, "authzed.api.v1.RelationshipUpdate", json_name: "updates"
+      optional :changes_through, :message, 2, "authzed.api.v1.ZedToken", json_name: "changesThrough"
+    end
+  end
+end
+
+module Authzed
+  module Api
+    module V1
+      WatchRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.WatchRequest").msgclass
+      WatchResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("authzed.api.v1.WatchResponse").msgclass
+    end
+  end
+end

data/lib/authzed/api/v1/watch_service_services_pb.rb

@@ -0,0 +1,26 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: authzed/api/v1/watch_service.proto for package 'authzed.api.v1'
+
+require 'grpc'
+require 'authzed/api/v1/watch_service_pb'
+
+module Authzed
+  module Api
+    module V1
+      module WatchService
+        class Service
+
+          include ::GRPC::GenericService
+
+          self.marshal_class_method = :encode
+          self.unmarshal_class_method = :decode
+          self.service_name = 'authzed.api.v1.WatchService'
+
+          rpc :Watch, ::Authzed::Api::V1::WatchRequest, stream(::Authzed::Api::V1::WatchResponse)
+        end
+
+        Stub = Service.rpc_stub_class
+      end
+    end
+  end
+end

data/lib/authzed.rb

@@ -12,6 +12,10 @@ require 'authzed/api/v0/client'
 require 'authzed/api/v1alpha1/schema_pb'
 require 'authzed/api/v1alpha1/schema_services_pb'
 require 'authzed/api/v1alpha1/client'
+require 'authzed/api/v1/schema_services_pb'
+require 'authzed/api/v1/watch_service_services_pb'
+require 'authzed/api/v1/permission_service_services_pb'
+require 'authzed/api/v1/client'
 require 'grpcutil/bearer_token'
 
 module Authzed

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: authzed
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.1
 platform: ruby
 authors:
 - Authzed
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-08-25 00:00:00.000000000 Z
+date: 2021-10-26 00:00:00.000000000 Z
 dependencies: []
 description: Authzed is the best way to build robust and scalable permissions systems.
   See https://authzed.com for more details.
@@ -31,6 +31,14 @@ files:
 - lib/authzed/api/v0/namespace_service_services_pb.rb
 - lib/authzed/api/v0/watch_service_pb.rb
 - lib/authzed/api/v0/watch_service_services_pb.rb
+- lib/authzed/api/v1/client.rb
+- lib/authzed/api/v1/core_pb.rb
+- lib/authzed/api/v1/permission_service_pb.rb
+- lib/authzed/api/v1/permission_service_services_pb.rb
+- lib/authzed/api/v1/schema_pb.rb
+- lib/authzed/api/v1/schema_services_pb.rb
+- lib/authzed/api/v1/watch_service_pb.rb
+- lib/authzed/api/v1/watch_service_services_pb.rb
 - lib/authzed/api/v1alpha1/client.rb
 - lib/authzed/api/v1alpha1/schema_pb.rb
 - lib/authzed/api/v1alpha1/schema_services_pb.rb