otdf-python 0.1.9__py3-none-any.whl → 0.3.1__py3-none-any.whl

otdf_python_proto/authorization/authorization_pb2.py

@@ -0,0 +1,80 @@
+# -*- coding: utf-8 -*-
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# NO CHECKED-IN PROTOBUF GENCODE
+# source: authorization/authorization.proto
+# Protobuf Python Version: 6.31.1
+"""Generated protocol buffer code."""
+from google.protobuf import descriptor as _descriptor
+from google.protobuf import descriptor_pool as _descriptor_pool
+from google.protobuf import runtime_version as _runtime_version
+from google.protobuf import symbol_database as _symbol_database
+from google.protobuf.internal import builder as _builder
+_runtime_version.ValidateProtobufRuntimeVersion(
+    _runtime_version.Domain.PUBLIC,
+    6,
+    31,
+    1,
+    '',
+    'authorization/authorization.proto'
+)
+# @@protoc_insertion_point(imports)
+
+_sym_db = _symbol_database.Default()
+
+
+from google.api import annotations_pb2 as google_dot_api_dot_annotations__pb2
+from google.protobuf import any_pb2 as google_dot_protobuf_dot_any__pb2
+from policy import objects_pb2 as policy_dot_objects__pb2
+
+
+DESCRIPTOR = _descriptor_pool.Default().AddSerializedFile(b'\n!authorization/authorization.proto\x12\rauthorization\x1a\x1cgoogle/api/annotations.proto\x1a\x19google/protobuf/any.proto\x1a\x14policy/objects.proto\")\n\x05Token\x12\x0e\n\x02id\x18\x01 \x01(\tR\x02id\x12\x10\n\x03jwt\x18\x02 \x01(\tR\x03jwt\"\xc9\x03\n\x06\x45ntity\x12\x0e\n\x02id\x18\x01 \x01(\tR\x02id\x12%\n\remail_address\x18\x02 \x01(\tH\x00R\x0c\x65mailAddress\x12\x1d\n\tuser_name\x18\x03 \x01(\tH\x00R\x08userName\x12,\n\x11remote_claims_url\x18\x04 \x01(\tH\x00R\x0fremoteClaimsUrl\x12\x14\n\x04uuid\x18\x05 \x01(\tH\x00R\x04uuid\x12.\n\x06\x63laims\x18\x06 \x01(\x0b\x32\x14.google.protobuf.AnyH\x00R\x06\x63laims\x12\x35\n\x06\x63ustom\x18\x07 \x01(\x0b\x32\x1b.authorization.EntityCustomH\x00R\x06\x63ustom\x12\x1d\n\tclient_id\x18\x08 \x01(\tH\x00R\x08\x63lientId\x12:\n\x08\x63\x61tegory\x18\t \x01(\x0e\x32\x1e.authorization.Entity.CategoryR\x08\x63\x61tegory\"T\n\x08\x43\x61tegory\x12\x18\n\x14\x43\x41TEGORY_UNSPECIFIED\x10\x00\x12\x14\n\x10\x43\x41TEGORY_SUBJECT\x10\x01\x12\x18\n\x14\x43\x41TEGORY_ENVIRONMENT\x10\x02\x42\r\n\x0b\x65ntity_type\"B\n\x0c\x45ntityCustom\x12\x32\n\textension\x18\x01 \x01(\x0b\x32\x14.google.protobuf.AnyR\textension\"P\n\x0b\x45ntityChain\x12\x0e\n\x02id\x18\x01 \x01(\tR\x02id\x12\x31\n\x08\x65ntities\x18\x02 \x03(\x0b\x32\x15.authorization.EntityR\x08\x65ntities\"\xcf\x01\n\x0f\x44\x65\x63isionRequest\x12(\n\x07\x61\x63tions\x18\x01 \x03(\x0b\x32\x0e.policy.ActionR\x07\x61\x63tions\x12?\n\rentity_chains\x18\x02 \x03(\x0b\x32\x1a.authorization.EntityChainR\x0c\x65ntityChains\x12Q\n\x13resource_attributes\x18\x03 \x03(\x0b\x32 .authorization.ResourceAttributeR\x12resourceAttributes\"\xce\x02\n\x10\x44\x65\x63isionResponse\x12&\n\x0f\x65ntity_chain_id\x18\x01 \x01(\tR\rentityChainId\x12\x34\n\x16resource_attributes_id\x18\x02 \x01(\tR\x14resourceAttributesId\x12&\n\x06\x61\x63tion\x18\x03 \x01(\x0b\x32\x0e.policy.ActionR\x06\x61\x63tion\x12\x44\n\x08\x64\x65\x63ision\x18\x04 \x01(\x0e\x32(.authorization.DecisionResponse.DecisionR\x08\x64\x65\x63ision\x12 \n\x0bobligations\x18\x05 \x03(\tR\x0bobligations\"L\n\x08\x44\x65\x63ision\x12\x18\n\x14\x44\x45\x43ISION_UNSPECIFIED\x10\x00\x12\x11\n\rDECISION_DENY\x10\x01\x12\x13\n\x0f\x44\x45\x43ISION_PERMIT\x10\x02\"b\n\x13GetDecisionsRequest\x12K\n\x11\x64\x65\x63ision_requests\x18\x01 \x03(\x0b\x32\x1e.authorization.DecisionRequestR\x10\x64\x65\x63isionRequests\"f\n\x14GetDecisionsResponse\x12N\n\x12\x64\x65\x63ision_responses\x18\x01 \x03(\x0b\x32\x1f.authorization.DecisionResponseR\x11\x64\x65\x63isionResponses\"\xfa\x01\n\x16GetEntitlementsRequest\x12\x31\n\x08\x65ntities\x18\x01 \x03(\x0b\x32\x15.authorization.EntityR\x08\x65ntities\x12;\n\x05scope\x18\x02 \x01(\x0b\x32 .authorization.ResourceAttributeH\x00R\x05scope\x88\x01\x01\x12\x45\n\x1cwith_comprehensive_hierarchy\x18\x03 \x01(\x08H\x01R\x1awithComprehensiveHierarchy\x88\x01\x01\x42\x08\n\x06_scopeB\x1f\n\x1d_with_comprehensive_hierarchy\"c\n\x12\x45ntityEntitlements\x12\x1b\n\tentity_id\x18\x01 \x01(\tR\x08\x65ntityId\x12\x30\n\x14\x61ttribute_value_fqns\x18\x02 \x03(\tR\x12\x61ttributeValueFqns\"{\n\x11ResourceAttribute\x12\x34\n\x16resource_attributes_id\x18\x01 \x01(\tR\x14resourceAttributesId\x12\x30\n\x14\x61ttribute_value_fqns\x18\x02 \x03(\tR\x12\x61ttributeValueFqns\"`\n\x17GetEntitlementsResponse\x12\x45\n\x0c\x65ntitlements\x18\x01 \x03(\x0b\x32!.authorization.EntityEntitlementsR\x0c\x65ntitlements\"\xc1\x01\n\x14TokenDecisionRequest\x12(\n\x07\x61\x63tions\x18\x01 \x03(\x0b\x32\x0e.policy.ActionR\x07\x61\x63tions\x12,\n\x06tokens\x18\x02 \x03(\x0b\x32\x14.authorization.TokenR\x06tokens\x12Q\n\x13resource_attributes\x18\x03 \x03(\x0b\x32 .authorization.ResourceAttributeR\x12resourceAttributes\"n\n\x1aGetDecisionsByTokenRequest\x12P\n\x11\x64\x65\x63ision_requests\x18\x01 \x03(\x0b\x32#.authorization.TokenDecisionRequestR\x10\x64\x65\x63isionRequests\"m\n\x1bGetDecisionsByTokenResponse\x12N\n\x12\x64\x65\x63ision_responses\x18\x01 \x03(\x0b\x32\x1f.authorization.DecisionResponseR\x11\x64\x65\x63isionResponses2\x9c\x03\n\x14\x41uthorizationService\x12u\n\x0cGetDecisions\x12\".authorization.GetDecisionsRequest\x1a#.authorization.GetDecisionsResponse\"\x1c\x82\xd3\xe4\x93\x02\x16\"\x11/v1/authorization:\x01*\x12\x8d\x01\n\x13GetDecisionsByToken\x12).authorization.GetDecisionsByTokenRequest\x1a*.authorization.GetDecisionsByTokenResponse\"\x1f\x82\xd3\xe4\x93\x02\x19\"\x17/v1/token/authorization\x12}\n\x0fGetEntitlements\x12%.authorization.GetEntitlementsRequest\x1a&.authorization.GetEntitlementsResponse\"\x1b\x82\xd3\xe4\x93\x02\x15\"\x10/v1/entitlements:\x01*B{\n\x11\x63om.authorizationB\x12\x41uthorizationProtoP\x01\xa2\x02\x03\x41XX\xaa\x02\rAuthorization\xca\x02\rAuthorization\xe2\x02\x19\x41uthorization\\GPBMetadata\xea\x02\rAuthorizationb\x06proto3')
+
+_globals = globals()
+_builder.BuildMessageAndEnumDescriptors(DESCRIPTOR, _globals)
+_builder.BuildTopDescriptorsAndMessages(DESCRIPTOR, 'authorization.authorization_pb2', _globals)
+if not _descriptor._USE_C_DESCRIPTORS:
+  _globals['DESCRIPTOR']._loaded_options = None
+  _globals['DESCRIPTOR']._serialized_options = b'\n\021com.authorizationB\022AuthorizationProtoP\001\242\002\003AXX\252\002\rAuthorization\312\002\rAuthorization\342\002\031Authorization\\GPBMetadata\352\002\rAuthorization'
+  _globals['_AUTHORIZATIONSERVICE'].methods_by_name['GetDecisions']._loaded_options = None
+  _globals['_AUTHORIZATIONSERVICE'].methods_by_name['GetDecisions']._serialized_options = b'\202\323\344\223\002\026\"\021/v1/authorization:\001*'
+  _globals['_AUTHORIZATIONSERVICE'].methods_by_name['GetDecisionsByToken']._loaded_options = None
+  _globals['_AUTHORIZATIONSERVICE'].methods_by_name['GetDecisionsByToken']._serialized_options = b'\202\323\344\223\002\031\"\027/v1/token/authorization'
+  _globals['_AUTHORIZATIONSERVICE'].methods_by_name['GetEntitlements']._loaded_options = None
+  _globals['_AUTHORIZATIONSERVICE'].methods_by_name['GetEntitlements']._serialized_options = b'\202\323\344\223\002\025\"\020/v1/entitlements:\001*'
+  _globals['_TOKEN']._serialized_start=131
+  _globals['_TOKEN']._serialized_end=172
+  _globals['_ENTITY']._serialized_start=175
+  _globals['_ENTITY']._serialized_end=632
+  _globals['_ENTITY_CATEGORY']._serialized_start=533
+  _globals['_ENTITY_CATEGORY']._serialized_end=617
+  _globals['_ENTITYCUSTOM']._serialized_start=634
+  _globals['_ENTITYCUSTOM']._serialized_end=700
+  _globals['_ENTITYCHAIN']._serialized_start=702
+  _globals['_ENTITYCHAIN']._serialized_end=782
+  _globals['_DECISIONREQUEST']._serialized_start=785
+  _globals['_DECISIONREQUEST']._serialized_end=992
+  _globals['_DECISIONRESPONSE']._serialized_start=995
+  _globals['_DECISIONRESPONSE']._serialized_end=1329
+  _globals['_DECISIONRESPONSE_DECISION']._serialized_start=1253
+  _globals['_DECISIONRESPONSE_DECISION']._serialized_end=1329
+  _globals['_GETDECISIONSREQUEST']._serialized_start=1331
+  _globals['_GETDECISIONSREQUEST']._serialized_end=1429
+  _globals['_GETDECISIONSRESPONSE']._serialized_start=1431
+  _globals['_GETDECISIONSRESPONSE']._serialized_end=1533
+  _globals['_GETENTITLEMENTSREQUEST']._serialized_start=1536
+  _globals['_GETENTITLEMENTSREQUEST']._serialized_end=1786
+  _globals['_ENTITYENTITLEMENTS']._serialized_start=1788
+  _globals['_ENTITYENTITLEMENTS']._serialized_end=1887
+  _globals['_RESOURCEATTRIBUTE']._serialized_start=1889
+  _globals['_RESOURCEATTRIBUTE']._serialized_end=2012
+  _globals['_GETENTITLEMENTSRESPONSE']._serialized_start=2014
+  _globals['_GETENTITLEMENTSRESPONSE']._serialized_end=2110
+  _globals['_TOKENDECISIONREQUEST']._serialized_start=2113
+  _globals['_TOKENDECISIONREQUEST']._serialized_end=2306
+  _globals['_GETDECISIONSBYTOKENREQUEST']._serialized_start=2308
+  _globals['_GETDECISIONSBYTOKENREQUEST']._serialized_end=2418
+  _globals['_GETDECISIONSBYTOKENRESPONSE']._serialized_start=2420
+  _globals['_GETDECISIONSBYTOKENRESPONSE']._serialized_end=2529
+  _globals['_AUTHORIZATIONSERVICE']._serialized_start=2532
+  _globals['_AUTHORIZATIONSERVICE']._serialized_end=2944
+# @@protoc_insertion_point(module_scope)

otdf_python_proto/authorization/authorization_pb2.pyi

@@ -0,0 +1,161 @@
+from google.api import annotations_pb2 as _annotations_pb2
+from google.protobuf import any_pb2 as _any_pb2
+from policy import objects_pb2 as _objects_pb2
+from google.protobuf.internal import containers as _containers
+from google.protobuf.internal import enum_type_wrapper as _enum_type_wrapper
+from google.protobuf import descriptor as _descriptor
+from google.protobuf import message as _message
+from collections.abc import Iterable as _Iterable, Mapping as _Mapping
+from typing import ClassVar as _ClassVar, Optional as _Optional, Union as _Union
+
+DESCRIPTOR: _descriptor.FileDescriptor
+
+class Token(_message.Message):
+    __slots__ = ("id", "jwt")
+    ID_FIELD_NUMBER: _ClassVar[int]
+    JWT_FIELD_NUMBER: _ClassVar[int]
+    id: str
+    jwt: str
+    def __init__(self, id: _Optional[str] = ..., jwt: _Optional[str] = ...) -> None: ...
+
+class Entity(_message.Message):
+    __slots__ = ("id", "email_address", "user_name", "remote_claims_url", "uuid", "claims", "custom", "client_id", "category")
+    class Category(int, metaclass=_enum_type_wrapper.EnumTypeWrapper):
+        __slots__ = ()
+        CATEGORY_UNSPECIFIED: _ClassVar[Entity.Category]
+        CATEGORY_SUBJECT: _ClassVar[Entity.Category]
+        CATEGORY_ENVIRONMENT: _ClassVar[Entity.Category]
+    CATEGORY_UNSPECIFIED: Entity.Category
+    CATEGORY_SUBJECT: Entity.Category
+    CATEGORY_ENVIRONMENT: Entity.Category
+    ID_FIELD_NUMBER: _ClassVar[int]
+    EMAIL_ADDRESS_FIELD_NUMBER: _ClassVar[int]
+    USER_NAME_FIELD_NUMBER: _ClassVar[int]
+    REMOTE_CLAIMS_URL_FIELD_NUMBER: _ClassVar[int]
+    UUID_FIELD_NUMBER: _ClassVar[int]
+    CLAIMS_FIELD_NUMBER: _ClassVar[int]
+    CUSTOM_FIELD_NUMBER: _ClassVar[int]
+    CLIENT_ID_FIELD_NUMBER: _ClassVar[int]
+    CATEGORY_FIELD_NUMBER: _ClassVar[int]
+    id: str
+    email_address: str
+    user_name: str
+    remote_claims_url: str
+    uuid: str
+    claims: _any_pb2.Any
+    custom: EntityCustom
+    client_id: str
+    category: Entity.Category
+    def __init__(self, id: _Optional[str] = ..., email_address: _Optional[str] = ..., user_name: _Optional[str] = ..., remote_claims_url: _Optional[str] = ..., uuid: _Optional[str] = ..., claims: _Optional[_Union[_any_pb2.Any, _Mapping]] = ..., custom: _Optional[_Union[EntityCustom, _Mapping]] = ..., client_id: _Optional[str] = ..., category: _Optional[_Union[Entity.Category, str]] = ...) -> None: ...
+
+class EntityCustom(_message.Message):
+    __slots__ = ("extension",)
+    EXTENSION_FIELD_NUMBER: _ClassVar[int]
+    extension: _any_pb2.Any
+    def __init__(self, extension: _Optional[_Union[_any_pb2.Any, _Mapping]] = ...) -> None: ...
+
+class EntityChain(_message.Message):
+    __slots__ = ("id", "entities")
+    ID_FIELD_NUMBER: _ClassVar[int]
+    ENTITIES_FIELD_NUMBER: _ClassVar[int]
+    id: str
+    entities: _containers.RepeatedCompositeFieldContainer[Entity]
+    def __init__(self, id: _Optional[str] = ..., entities: _Optional[_Iterable[_Union[Entity, _Mapping]]] = ...) -> None: ...
+
+class DecisionRequest(_message.Message):
+    __slots__ = ("actions", "entity_chains", "resource_attributes")
+    ACTIONS_FIELD_NUMBER: _ClassVar[int]
+    ENTITY_CHAINS_FIELD_NUMBER: _ClassVar[int]
+    RESOURCE_ATTRIBUTES_FIELD_NUMBER: _ClassVar[int]
+    actions: _containers.RepeatedCompositeFieldContainer[_objects_pb2.Action]
+    entity_chains: _containers.RepeatedCompositeFieldContainer[EntityChain]
+    resource_attributes: _containers.RepeatedCompositeFieldContainer[ResourceAttribute]
+    def __init__(self, actions: _Optional[_Iterable[_Union[_objects_pb2.Action, _Mapping]]] = ..., entity_chains: _Optional[_Iterable[_Union[EntityChain, _Mapping]]] = ..., resource_attributes: _Optional[_Iterable[_Union[ResourceAttribute, _Mapping]]] = ...) -> None: ...
+
+class DecisionResponse(_message.Message):
+    __slots__ = ("entity_chain_id", "resource_attributes_id", "action", "decision", "obligations")
+    class Decision(int, metaclass=_enum_type_wrapper.EnumTypeWrapper):
+        __slots__ = ()
+        DECISION_UNSPECIFIED: _ClassVar[DecisionResponse.Decision]
+        DECISION_DENY: _ClassVar[DecisionResponse.Decision]
+        DECISION_PERMIT: _ClassVar[DecisionResponse.Decision]
+    DECISION_UNSPECIFIED: DecisionResponse.Decision
+    DECISION_DENY: DecisionResponse.Decision
+    DECISION_PERMIT: DecisionResponse.Decision
+    ENTITY_CHAIN_ID_FIELD_NUMBER: _ClassVar[int]
+    RESOURCE_ATTRIBUTES_ID_FIELD_NUMBER: _ClassVar[int]
+    ACTION_FIELD_NUMBER: _ClassVar[int]
+    DECISION_FIELD_NUMBER: _ClassVar[int]
+    OBLIGATIONS_FIELD_NUMBER: _ClassVar[int]
+    entity_chain_id: str
+    resource_attributes_id: str
+    action: _objects_pb2.Action
+    decision: DecisionResponse.Decision
+    obligations: _containers.RepeatedScalarFieldContainer[str]
+    def __init__(self, entity_chain_id: _Optional[str] = ..., resource_attributes_id: _Optional[str] = ..., action: _Optional[_Union[_objects_pb2.Action, _Mapping]] = ..., decision: _Optional[_Union[DecisionResponse.Decision, str]] = ..., obligations: _Optional[_Iterable[str]] = ...) -> None: ...
+
+class GetDecisionsRequest(_message.Message):
+    __slots__ = ("decision_requests",)
+    DECISION_REQUESTS_FIELD_NUMBER: _ClassVar[int]
+    decision_requests: _containers.RepeatedCompositeFieldContainer[DecisionRequest]
+    def __init__(self, decision_requests: _Optional[_Iterable[_Union[DecisionRequest, _Mapping]]] = ...) -> None: ...
+
+class GetDecisionsResponse(_message.Message):
+    __slots__ = ("decision_responses",)
+    DECISION_RESPONSES_FIELD_NUMBER: _ClassVar[int]
+    decision_responses: _containers.RepeatedCompositeFieldContainer[DecisionResponse]
+    def __init__(self, decision_responses: _Optional[_Iterable[_Union[DecisionResponse, _Mapping]]] = ...) -> None: ...
+
+class GetEntitlementsRequest(_message.Message):
+    __slots__ = ("entities", "scope", "with_comprehensive_hierarchy")
+    ENTITIES_FIELD_NUMBER: _ClassVar[int]
+    SCOPE_FIELD_NUMBER: _ClassVar[int]
+    WITH_COMPREHENSIVE_HIERARCHY_FIELD_NUMBER: _ClassVar[int]
+    entities: _containers.RepeatedCompositeFieldContainer[Entity]
+    scope: ResourceAttribute
+    with_comprehensive_hierarchy: bool
+    def __init__(self, entities: _Optional[_Iterable[_Union[Entity, _Mapping]]] = ..., scope: _Optional[_Union[ResourceAttribute, _Mapping]] = ..., with_comprehensive_hierarchy: bool = ...) -> None: ...
+
+class EntityEntitlements(_message.Message):
+    __slots__ = ("entity_id", "attribute_value_fqns")
+    ENTITY_ID_FIELD_NUMBER: _ClassVar[int]
+    ATTRIBUTE_VALUE_FQNS_FIELD_NUMBER: _ClassVar[int]
+    entity_id: str
+    attribute_value_fqns: _containers.RepeatedScalarFieldContainer[str]
+    def __init__(self, entity_id: _Optional[str] = ..., attribute_value_fqns: _Optional[_Iterable[str]] = ...) -> None: ...
+
+class ResourceAttribute(_message.Message):
+    __slots__ = ("resource_attributes_id", "attribute_value_fqns")
+    RESOURCE_ATTRIBUTES_ID_FIELD_NUMBER: _ClassVar[int]
+    ATTRIBUTE_VALUE_FQNS_FIELD_NUMBER: _ClassVar[int]
+    resource_attributes_id: str
+    attribute_value_fqns: _containers.RepeatedScalarFieldContainer[str]
+    def __init__(self, resource_attributes_id: _Optional[str] = ..., attribute_value_fqns: _Optional[_Iterable[str]] = ...) -> None: ...
+
+class GetEntitlementsResponse(_message.Message):
+    __slots__ = ("entitlements",)
+    ENTITLEMENTS_FIELD_NUMBER: _ClassVar[int]
+    entitlements: _containers.RepeatedCompositeFieldContainer[EntityEntitlements]
+    def __init__(self, entitlements: _Optional[_Iterable[_Union[EntityEntitlements, _Mapping]]] = ...) -> None: ...
+
+class TokenDecisionRequest(_message.Message):
+    __slots__ = ("actions", "tokens", "resource_attributes")
+    ACTIONS_FIELD_NUMBER: _ClassVar[int]
+    TOKENS_FIELD_NUMBER: _ClassVar[int]
+    RESOURCE_ATTRIBUTES_FIELD_NUMBER: _ClassVar[int]
+    actions: _containers.RepeatedCompositeFieldContainer[_objects_pb2.Action]
+    tokens: _containers.RepeatedCompositeFieldContainer[Token]
+    resource_attributes: _containers.RepeatedCompositeFieldContainer[ResourceAttribute]
+    def __init__(self, actions: _Optional[_Iterable[_Union[_objects_pb2.Action, _Mapping]]] = ..., tokens: _Optional[_Iterable[_Union[Token, _Mapping]]] = ..., resource_attributes: _Optional[_Iterable[_Union[ResourceAttribute, _Mapping]]] = ...) -> None: ...
+
+class GetDecisionsByTokenRequest(_message.Message):
+    __slots__ = ("decision_requests",)
+    DECISION_REQUESTS_FIELD_NUMBER: _ClassVar[int]
+    decision_requests: _containers.RepeatedCompositeFieldContainer[TokenDecisionRequest]
+    def __init__(self, decision_requests: _Optional[_Iterable[_Union[TokenDecisionRequest, _Mapping]]] = ...) -> None: ...
+
+class GetDecisionsByTokenResponse(_message.Message):
+    __slots__ = ("decision_responses",)
+    DECISION_RESPONSES_FIELD_NUMBER: _ClassVar[int]
+    decision_responses: _containers.RepeatedCompositeFieldContainer[DecisionResponse]
+    def __init__(self, decision_responses: _Optional[_Iterable[_Union[DecisionResponse, _Mapping]]] = ...) -> None: ...

otdf_python_proto/authorization/authorization_pb2_connect.py

@@ -0,0 +1,191 @@
+# Generated Connect client code
+
+from __future__ import annotations
+from collections.abc import AsyncIterator
+from collections.abc import Iterator
+from collections.abc import Iterable
+import aiohttp
+import urllib3
+import typing
+import sys
+
+from connectrpc.client_async import AsyncConnectClient
+from connectrpc.client_sync import ConnectClient
+from connectrpc.client_protocol import ConnectProtocol
+from connectrpc.client_connect import ConnectProtocolError
+from connectrpc.headers import HeaderInput
+from connectrpc.server import ClientRequest
+from connectrpc.server import ClientStream
+from connectrpc.server import ServerResponse
+from connectrpc.server import ServerStream
+from connectrpc.server_sync import ConnectWSGI
+from connectrpc.streams import StreamInput
+from connectrpc.streams import AsyncStreamOutput
+from connectrpc.streams import StreamOutput
+from connectrpc.unary import UnaryOutput
+from connectrpc.unary import ClientStreamingOutput
+
+if typing.TYPE_CHECKING:
+    # wsgiref.types was added in Python 3.11.
+    if sys.version_info >= (3, 11):
+        from wsgiref.types import WSGIApplication
+    else:
+        from _typeshed.wsgi import WSGIApplication
+
+import authorization.authorization_pb2
+
+class AuthorizationServiceClient:
+    def __init__(
+        self,
+        base_url: str,
+        http_client: urllib3.PoolManager | None = None,
+        protocol: ConnectProtocol = ConnectProtocol.CONNECT_PROTOBUF,
+    ):
+        self.base_url = base_url
+        self._connect_client = ConnectClient(http_client, protocol)
+    def call_get_decisions(
+        self, req: authorization.authorization_pb2.GetDecisionsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> UnaryOutput[authorization.authorization_pb2.GetDecisionsResponse]:
+        """Low-level method to call GetDecisions, granting access to errors and metadata"""
+        url = self.base_url + "/authorization.AuthorizationService/GetDecisions"
+        return self._connect_client.call_unary(url, req, authorization.authorization_pb2.GetDecisionsResponse,extra_headers, timeout_seconds)
+
+
+    def get_decisions(
+        self, req: authorization.authorization_pb2.GetDecisionsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> authorization.authorization_pb2.GetDecisionsResponse:
+        response = self.call_get_decisions(req, extra_headers, timeout_seconds)
+        err = response.error()
+        if err is not None:
+            raise err
+        msg = response.message()
+        if msg is None:
+            raise ConnectProtocolError('missing response message')
+        return msg
+
+    def call_get_decisions_by_token(
+        self, req: authorization.authorization_pb2.GetDecisionsByTokenRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> UnaryOutput[authorization.authorization_pb2.GetDecisionsByTokenResponse]:
+        """Low-level method to call GetDecisionsByToken, granting access to errors and metadata"""
+        url = self.base_url + "/authorization.AuthorizationService/GetDecisionsByToken"
+        return self._connect_client.call_unary(url, req, authorization.authorization_pb2.GetDecisionsByTokenResponse,extra_headers, timeout_seconds)
+
+
+    def get_decisions_by_token(
+        self, req: authorization.authorization_pb2.GetDecisionsByTokenRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> authorization.authorization_pb2.GetDecisionsByTokenResponse:
+        response = self.call_get_decisions_by_token(req, extra_headers, timeout_seconds)
+        err = response.error()
+        if err is not None:
+            raise err
+        msg = response.message()
+        if msg is None:
+            raise ConnectProtocolError('missing response message')
+        return msg
+
+    def call_get_entitlements(
+        self, req: authorization.authorization_pb2.GetEntitlementsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> UnaryOutput[authorization.authorization_pb2.GetEntitlementsResponse]:
+        """Low-level method to call GetEntitlements, granting access to errors and metadata"""
+        url = self.base_url + "/authorization.AuthorizationService/GetEntitlements"
+        return self._connect_client.call_unary(url, req, authorization.authorization_pb2.GetEntitlementsResponse,extra_headers, timeout_seconds)
+
+
+    def get_entitlements(
+        self, req: authorization.authorization_pb2.GetEntitlementsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> authorization.authorization_pb2.GetEntitlementsResponse:
+        response = self.call_get_entitlements(req, extra_headers, timeout_seconds)
+        err = response.error()
+        if err is not None:
+            raise err
+        msg = response.message()
+        if msg is None:
+            raise ConnectProtocolError('missing response message')
+        return msg
+
+
+class AsyncAuthorizationServiceClient:
+    def __init__(
+        self,
+        base_url: str,
+        http_client: aiohttp.ClientSession,
+        protocol: ConnectProtocol = ConnectProtocol.CONNECT_PROTOBUF,
+    ):
+        self.base_url = base_url
+        self._connect_client = AsyncConnectClient(http_client, protocol)
+
+    async def call_get_decisions(
+        self, req: authorization.authorization_pb2.GetDecisionsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> UnaryOutput[authorization.authorization_pb2.GetDecisionsResponse]:
+        """Low-level method to call GetDecisions, granting access to errors and metadata"""
+        url = self.base_url + "/authorization.AuthorizationService/GetDecisions"
+        return await self._connect_client.call_unary(url, req, authorization.authorization_pb2.GetDecisionsResponse,extra_headers, timeout_seconds)
+
+    async def get_decisions(
+        self, req: authorization.authorization_pb2.GetDecisionsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> authorization.authorization_pb2.GetDecisionsResponse:
+        response = await self.call_get_decisions(req, extra_headers, timeout_seconds)
+        err = response.error()
+        if err is not None:
+            raise err
+        msg = response.message()
+        if msg is None:
+            raise ConnectProtocolError('missing response message')
+        return msg
+
+    async def call_get_decisions_by_token(
+        self, req: authorization.authorization_pb2.GetDecisionsByTokenRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> UnaryOutput[authorization.authorization_pb2.GetDecisionsByTokenResponse]:
+        """Low-level method to call GetDecisionsByToken, granting access to errors and metadata"""
+        url = self.base_url + "/authorization.AuthorizationService/GetDecisionsByToken"
+        return await self._connect_client.call_unary(url, req, authorization.authorization_pb2.GetDecisionsByTokenResponse,extra_headers, timeout_seconds)
+
+    async def get_decisions_by_token(
+        self, req: authorization.authorization_pb2.GetDecisionsByTokenRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> authorization.authorization_pb2.GetDecisionsByTokenResponse:
+        response = await self.call_get_decisions_by_token(req, extra_headers, timeout_seconds)
+        err = response.error()
+        if err is not None:
+            raise err
+        msg = response.message()
+        if msg is None:
+            raise ConnectProtocolError('missing response message')
+        return msg
+
+    async def call_get_entitlements(
+        self, req: authorization.authorization_pb2.GetEntitlementsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> UnaryOutput[authorization.authorization_pb2.GetEntitlementsResponse]:
+        """Low-level method to call GetEntitlements, granting access to errors and metadata"""
+        url = self.base_url + "/authorization.AuthorizationService/GetEntitlements"
+        return await self._connect_client.call_unary(url, req, authorization.authorization_pb2.GetEntitlementsResponse,extra_headers, timeout_seconds)
+
+    async def get_entitlements(
+        self, req: authorization.authorization_pb2.GetEntitlementsRequest,extra_headers: HeaderInput | None=None, timeout_seconds: float | None=None
+    ) -> authorization.authorization_pb2.GetEntitlementsResponse:
+        response = await self.call_get_entitlements(req, extra_headers, timeout_seconds)
+        err = response.error()
+        if err is not None:
+            raise err
+        msg = response.message()
+        if msg is None:
+            raise ConnectProtocolError('missing response message')
+        return msg
+
+
+@typing.runtime_checkable
+class AuthorizationServiceProtocol(typing.Protocol):
+    def get_decisions(self, req: ClientRequest[authorization.authorization_pb2.GetDecisionsRequest]) -> ServerResponse[authorization.authorization_pb2.GetDecisionsResponse]:
+        ...
+    def get_decisions_by_token(self, req: ClientRequest[authorization.authorization_pb2.GetDecisionsByTokenRequest]) -> ServerResponse[authorization.authorization_pb2.GetDecisionsByTokenResponse]:
+        ...
+    def get_entitlements(self, req: ClientRequest[authorization.authorization_pb2.GetEntitlementsRequest]) -> ServerResponse[authorization.authorization_pb2.GetEntitlementsResponse]:
+        ...
+
+AUTHORIZATION_SERVICE_PATH_PREFIX = "/authorization.AuthorizationService"
+
+def wsgi_authorization_service(implementation: AuthorizationServiceProtocol) -> WSGIApplication:
+    app = ConnectWSGI()
+    app.register_unary_rpc("/authorization.AuthorizationService/GetDecisions", implementation.get_decisions, authorization.authorization_pb2.GetDecisionsRequest)
+    app.register_unary_rpc("/authorization.AuthorizationService/GetDecisionsByToken", implementation.get_decisions_by_token, authorization.authorization_pb2.GetDecisionsByTokenRequest)
+    app.register_unary_rpc("/authorization.AuthorizationService/GetEntitlements", implementation.get_entitlements, authorization.authorization_pb2.GetEntitlementsRequest)
+    return app

otdf_python_proto/authorization/v2/authorization_pb2.py

@@ -0,0 +1,105 @@
+# -*- coding: utf-8 -*-
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# NO CHECKED-IN PROTOBUF GENCODE
+# source: authorization/v2/authorization.proto
+# Protobuf Python Version: 6.31.1
+"""Generated protocol buffer code."""
+from google.protobuf import descriptor as _descriptor
+from google.protobuf import descriptor_pool as _descriptor_pool
+from google.protobuf import runtime_version as _runtime_version
+from google.protobuf import symbol_database as _symbol_database
+from google.protobuf.internal import builder as _builder
+_runtime_version.ValidateProtobufRuntimeVersion(
+    _runtime_version.Domain.PUBLIC,
+    6,
+    31,
+    1,
+    '',
+    'authorization/v2/authorization.proto'
+)
+# @@protoc_insertion_point(imports)
+
+_sym_db = _symbol_database.Default()
+
+
+from buf.validate import validate_pb2 as buf_dot_validate_dot_validate__pb2
+from entity import entity_pb2 as entity_dot_entity__pb2
+from google.protobuf import wrappers_pb2 as google_dot_protobuf_dot_wrappers__pb2
+from policy import objects_pb2 as policy_dot_objects__pb2
+
+
+DESCRIPTOR = _descriptor_pool.Default().AddSerializedFile(b'\n$authorization/v2/authorization.proto\x12\x10\x61uthorization.v2\x1a\x1b\x62uf/validate/validate.proto\x1a\x13\x65ntity/entity.proto\x1a\x1egoogle/protobuf/wrappers.proto\x1a\x14policy/objects.proto\"\x9a\x03\n\x10\x45ntityIdentifier\x12\xa2\x01\n\x0c\x65ntity_chain\x18\x01 \x01(\x0b\x32\x13.entity.EntityChainBh\xbaHe\xba\x01\x62\n\x15\x65ntity_chain_required\x12\x19\x65ntities must be provided\x1a.has(this.entities) && this.entities.size() > 0H\x00R\x0b\x65ntityChain\x12O\n\x1dregistered_resource_value_fqn\x18\x02 \x01(\tB\n\xbaH\x07r\x05\x10\x01\x88\x01\x01H\x00R\x1aregisteredResourceValueFqn\x12{\n\x05token\x18\x03 \x01(\x0b\x32\r.entity.TokenBT\xbaHQ\xba\x01N\n\x0etoken_required\x12\x16token must be provided\x1a$has(this.jwt) && this.jwt.size() > 0H\x00R\x05tokenB\x13\n\nidentifier\x12\x05\xbaH\x02\x08\x01\"\x81\x03\n\x12\x45ntityEntitlements\x12!\n\x0c\x65phemeral_id\x18\x01 \x01(\tR\x0b\x65phemeralId\x12\x8b\x01\n\x1f\x61\x63tions_per_attribute_value_fqn\x18\x02 \x03(\x0b\x32\x45.authorization.v2.EntityEntitlements.ActionsPerAttributeValueFqnEntryR\x1b\x61\x63tionsPerAttributeValueFqn\x1a\x37\n\x0b\x41\x63tionsList\x12(\n\x07\x61\x63tions\x18\x01 \x03(\x0b\x32\x0e.policy.ActionR\x07\x61\x63tions\x1a\x80\x01\n ActionsPerAttributeValueFqnEntry\x12\x10\n\x03key\x18\x01 \x01(\tR\x03key\x12\x46\n\x05value\x18\x02 \x01(\x0b\x32\x30.authorization.v2.EntityEntitlements.ActionsListR\x05value:\x02\x38\x01\"\xa6\x03\n\x08Resource\x12!\n\x0c\x65phemeral_id\x18\x01 \x01(\tR\x0b\x65phemeralId\x12\xf2\x01\n\x10\x61ttribute_values\x18\x02 \x01(\x0b\x32*.authorization.v2.Resource.AttributeValuesB\x98\x01\xbaH\x94\x01\xba\x01\x90\x01\n\x19\x61ttribute_values_required\x12\x38if provided, resource.attribute_values must not be empty\x1a\x39this.fqns.size() > 0 && this.fqns.all(item, item.isUri())H\x00R\x0f\x61ttributeValues\x12O\n\x1dregistered_resource_value_fqn\x18\x03 \x01(\tB\n\xbaH\x07r\x05\x10\x01\x88\x01\x01H\x00R\x1aregisteredResourceValueFqn\x1a%\n\x0f\x41ttributeValues\x12\x12\n\x04\x66qns\x18\x01 \x03(\tR\x04\x66qnsB\n\n\x08resource\"~\n\x10ResourceDecision\x12\x32\n\x15\x65phemeral_resource_id\x18\x01 \x01(\tR\x13\x65phemeralResourceId\x12\x36\n\x08\x64\x65\x63ision\x18\x02 \x01(\x0e\x32\x1a.authorization.v2.DecisionR\x08\x64\x65\x63ision\"\xc4\x02\n\x12GetDecisionRequest\x12W\n\x11\x65ntity_identifier\x18\x01 \x01(\x0b\x32\".authorization.v2.EntityIdentifierB\x06\xbaH\x03\xc8\x01\x01R\x10\x65ntityIdentifier\x12.\n\x06\x61\x63tion\x18\x02 \x01(\x0b\x32\x0e.policy.ActionB\x06\xbaH\x03\xc8\x01\x01R\x06\x61\x63tion\x12>\n\x08resource\x18\x03 \x01(\x0b\x32\x1a.authorization.v2.ResourceB\x06\xbaH\x03\xc8\x01\x01R\x08resource:e\xbaHb\x1a`\n)get_decision_request.action_name_required\x12\x1c\x61\x63tion.name must be provided\x1a\x15has(this.action.name)\"U\n\x13GetDecisionResponse\x12>\n\x08\x64\x65\x63ision\x18\x01 \x01(\x0b\x32\".authorization.v2.ResourceDecisionR\x08\x64\x65\x63ision\"\xde\x02\n\x1fGetDecisionMultiResourceRequest\x12W\n\x11\x65ntity_identifier\x18\x01 \x01(\x0b\x32\".authorization.v2.EntityIdentifierB\x06\xbaH\x03\xc8\x01\x01R\x10\x65ntityIdentifier\x12.\n\x06\x61\x63tion\x18\x02 \x01(\x0b\x32\x0e.policy.ActionB\x06\xbaH\x03\xc8\x01\x01R\x06\x61\x63tion\x12\x45\n\tresources\x18\x03 \x03(\x0b\x32\x1a.authorization.v2.ResourceB\x0b\xbaH\x08\x92\x01\x02\x08\x01\xc8\x01\x01R\tresources:k\xbaHh\x1a\x66\n/get_decision_multi_request.action_name_required\x12\x1c\x61\x63tion.name must be provided\x1a\x15has(this.action.name)\"\xb6\x01\n GetDecisionMultiResourceResponse\x12?\n\rall_permitted\x18\x01 \x01(\x0b\x32\x1a.google.protobuf.BoolValueR\x0c\x61llPermitted\x12Q\n\x12resource_decisions\x18\x02 \x03(\x0b\x32\".authorization.v2.ResourceDecisionR\x11resourceDecisions\"x\n\x16GetDecisionBulkRequest\x12^\n\x11\x64\x65\x63ision_requests\x18\x01 \x03(\x0b\x32\x31.authorization.v2.GetDecisionMultiResourceRequestR\x10\x64\x65\x63isionRequests\"|\n\x17GetDecisionBulkResponse\x12\x61\n\x12\x64\x65\x63ision_responses\x18\x01 \x03(\x0b\x32\x32.authorization.v2.GetDecisionMultiResourceResponseR\x11\x64\x65\x63isionResponses\"\xd9\x01\n\x16GetEntitlementsRequest\x12W\n\x11\x65ntity_identifier\x18\x01 \x01(\x0b\x32\".authorization.v2.EntityIdentifierB\x06\xbaH\x03\xc8\x01\x01R\x10\x65ntityIdentifier\x12\x45\n\x1cwith_comprehensive_hierarchy\x18\x02 \x01(\x08H\x00R\x1awithComprehensiveHierarchy\x88\x01\x01\x42\x1f\n\x1d_with_comprehensive_hierarchy\"c\n\x17GetEntitlementsResponse\x12H\n\x0c\x65ntitlements\x18\x01 \x03(\x0b\x32$.authorization.v2.EntityEntitlementsR\x0c\x65ntitlements*L\n\x08\x44\x65\x63ision\x12\x18\n\x14\x44\x45\x43ISION_UNSPECIFIED\x10\x00\x12\x11\n\rDECISION_DENY\x10\x01\x12\x13\n\x0f\x44\x45\x43ISION_PERMIT\x10\x02\x32\xce\x03\n\x14\x41uthorizationService\x12\\\n\x0bGetDecision\x12$.authorization.v2.GetDecisionRequest\x1a%.authorization.v2.GetDecisionResponse\"\x00\x12\x83\x01\n\x18GetDecisionMultiResource\x12\x31.authorization.v2.GetDecisionMultiResourceRequest\x1a\x32.authorization.v2.GetDecisionMultiResourceResponse\"\x00\x12h\n\x0fGetDecisionBulk\x12(.authorization.v2.GetDecisionBulkRequest\x1a).authorization.v2.GetDecisionBulkResponse\"\x00\x12h\n\x0fGetEntitlements\x12(.authorization.v2.GetEntitlementsRequest\x1a).authorization.v2.GetEntitlementsResponse\"\x00\x42\x8b\x01\n\x14\x63om.authorization.v2B\x12\x41uthorizationProtoP\x01\xa2\x02\x03\x41XX\xaa\x02\x10\x41uthorization.V2\xca\x02\x10\x41uthorization\\V2\xe2\x02\x1c\x41uthorization\\V2\\GPBMetadata\xea\x02\x11\x41uthorization::V2b\x06proto3')
+
+_globals = globals()
+_builder.BuildMessageAndEnumDescriptors(DESCRIPTOR, _globals)
+_builder.BuildTopDescriptorsAndMessages(DESCRIPTOR, 'authorization.v2.authorization_pb2', _globals)
+if not _descriptor._USE_C_DESCRIPTORS:
+  _globals['DESCRIPTOR']._loaded_options = None
+  _globals['DESCRIPTOR']._serialized_options = b'\n\024com.authorization.v2B\022AuthorizationProtoP\001\242\002\003AXX\252\002\020Authorization.V2\312\002\020Authorization\\V2\342\002\034Authorization\\V2\\GPBMetadata\352\002\021Authorization::V2'
+  _globals['_ENTITYIDENTIFIER'].oneofs_by_name['identifier']._loaded_options = None
+  _globals['_ENTITYIDENTIFIER'].oneofs_by_name['identifier']._serialized_options = b'\272H\002\010\001'
+  _globals['_ENTITYIDENTIFIER'].fields_by_name['entity_chain']._loaded_options = None
+  _globals['_ENTITYIDENTIFIER'].fields_by_name['entity_chain']._serialized_options = b'\272He\272\001b\n\025entity_chain_required\022\031entities must be provided\032.has(this.entities) && this.entities.size() > 0'
+  _globals['_ENTITYIDENTIFIER'].fields_by_name['registered_resource_value_fqn']._loaded_options = None
+  _globals['_ENTITYIDENTIFIER'].fields_by_name['registered_resource_value_fqn']._serialized_options = b'\272H\007r\005\020\001\210\001\001'
+  _globals['_ENTITYIDENTIFIER'].fields_by_name['token']._loaded_options = None
+  _globals['_ENTITYIDENTIFIER'].fields_by_name['token']._serialized_options = b'\272HQ\272\001N\n\016token_required\022\026token must be provided\032$has(this.jwt) && this.jwt.size() > 0'
+  _globals['_ENTITYENTITLEMENTS_ACTIONSPERATTRIBUTEVALUEFQNENTRY']._loaded_options = None
+  _globals['_ENTITYENTITLEMENTS_ACTIONSPERATTRIBUTEVALUEFQNENTRY']._serialized_options = b'8\001'
+  _globals['_RESOURCE'].fields_by_name['attribute_values']._loaded_options = None
+  _globals['_RESOURCE'].fields_by_name['attribute_values']._serialized_options = b'\272H\224\001\272\001\220\001\n\031attribute_values_required\0228if provided, resource.attribute_values must not be empty\0329this.fqns.size() > 0 && this.fqns.all(item, item.isUri())'
+  _globals['_RESOURCE'].fields_by_name['registered_resource_value_fqn']._loaded_options = None
+  _globals['_RESOURCE'].fields_by_name['registered_resource_value_fqn']._serialized_options = b'\272H\007r\005\020\001\210\001\001'
+  _globals['_GETDECISIONREQUEST'].fields_by_name['entity_identifier']._loaded_options = None
+  _globals['_GETDECISIONREQUEST'].fields_by_name['entity_identifier']._serialized_options = b'\272H\003\310\001\001'
+  _globals['_GETDECISIONREQUEST'].fields_by_name['action']._loaded_options = None
+  _globals['_GETDECISIONREQUEST'].fields_by_name['action']._serialized_options = b'\272H\003\310\001\001'
+  _globals['_GETDECISIONREQUEST'].fields_by_name['resource']._loaded_options = None
+  _globals['_GETDECISIONREQUEST'].fields_by_name['resource']._serialized_options = b'\272H\003\310\001\001'
+  _globals['_GETDECISIONREQUEST']._loaded_options = None
+  _globals['_GETDECISIONREQUEST']._serialized_options = b'\272Hb\032`\n)get_decision_request.action_name_required\022\034action.name must be provided\032\025has(this.action.name)'
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST'].fields_by_name['entity_identifier']._loaded_options = None
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST'].fields_by_name['entity_identifier']._serialized_options = b'\272H\003\310\001\001'
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST'].fields_by_name['action']._loaded_options = None
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST'].fields_by_name['action']._serialized_options = b'\272H\003\310\001\001'
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST'].fields_by_name['resources']._loaded_options = None
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST'].fields_by_name['resources']._serialized_options = b'\272H\010\222\001\002\010\001\310\001\001'
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST']._loaded_options = None
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST']._serialized_options = b'\272Hh\032f\n/get_decision_multi_request.action_name_required\022\034action.name must be provided\032\025has(this.action.name)'
+  _globals['_GETENTITLEMENTSREQUEST'].fields_by_name['entity_identifier']._loaded_options = None
+  _globals['_GETENTITLEMENTSREQUEST'].fields_by_name['entity_identifier']._serialized_options = b'\272H\003\310\001\001'
+  _globals['_DECISION']._serialized_start=3037
+  _globals['_DECISION']._serialized_end=3113
+  _globals['_ENTITYIDENTIFIER']._serialized_start=163
+  _globals['_ENTITYIDENTIFIER']._serialized_end=573
+  _globals['_ENTITYENTITLEMENTS']._serialized_start=576
+  _globals['_ENTITYENTITLEMENTS']._serialized_end=961
+  _globals['_ENTITYENTITLEMENTS_ACTIONSLIST']._serialized_start=775
+  _globals['_ENTITYENTITLEMENTS_ACTIONSLIST']._serialized_end=830
+  _globals['_ENTITYENTITLEMENTS_ACTIONSPERATTRIBUTEVALUEFQNENTRY']._serialized_start=833
+  _globals['_ENTITYENTITLEMENTS_ACTIONSPERATTRIBUTEVALUEFQNENTRY']._serialized_end=961
+  _globals['_RESOURCE']._serialized_start=964
+  _globals['_RESOURCE']._serialized_end=1386
+  _globals['_RESOURCE_ATTRIBUTEVALUES']._serialized_start=1337
+  _globals['_RESOURCE_ATTRIBUTEVALUES']._serialized_end=1374
+  _globals['_RESOURCEDECISION']._serialized_start=1388
+  _globals['_RESOURCEDECISION']._serialized_end=1514
+  _globals['_GETDECISIONREQUEST']._serialized_start=1517
+  _globals['_GETDECISIONREQUEST']._serialized_end=1841
+  _globals['_GETDECISIONRESPONSE']._serialized_start=1843
+  _globals['_GETDECISIONRESPONSE']._serialized_end=1928
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST']._serialized_start=1931
+  _globals['_GETDECISIONMULTIRESOURCEREQUEST']._serialized_end=2281
+  _globals['_GETDECISIONMULTIRESOURCERESPONSE']._serialized_start=2284
+  _globals['_GETDECISIONMULTIRESOURCERESPONSE']._serialized_end=2466
+  _globals['_GETDECISIONBULKREQUEST']._serialized_start=2468
+  _globals['_GETDECISIONBULKREQUEST']._serialized_end=2588
+  _globals['_GETDECISIONBULKRESPONSE']._serialized_start=2590
+  _globals['_GETDECISIONBULKRESPONSE']._serialized_end=2714
+  _globals['_GETENTITLEMENTSREQUEST']._serialized_start=2717
+  _globals['_GETENTITLEMENTSREQUEST']._serialized_end=2934
+  _globals['_GETENTITLEMENTSRESPONSE']._serialized_start=2936
+  _globals['_GETENTITLEMENTSRESPONSE']._serialized_end=3035
+  _globals['_AUTHORIZATIONSERVICE']._serialized_start=3116
+  _globals['_AUTHORIZATIONSERVICE']._serialized_end=3578
+# @@protoc_insertion_point(module_scope)