coder
diff --git a/‎coderd/authz/authz_test.go
Lines changed: 0 additions & 629 deletions b/‎coderd/authz/authz_test.go
Lines changed: 0 additions & 629 deletions
diff --git a/‎coderd/authz/README.md renamed to ‎coderd/rbac/README.md b/‎coderd/authz/README.md renamed to ‎coderd/rbac/README.md
diff --git a/‎coderd/authz/action.go renamed to ‎coderd/rbac/action.go
Lines changed: 1 addition & 1 deletion b/‎coderd/authz/action.go renamed to ‎coderd/rbac/action.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎coderd/authz/authz.go renamed to ‎coderd/rbac/authz.go
Lines changed: 1 addition & 1 deletion b/‎coderd/authz/authz.go renamed to ‎coderd/rbac/authz.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎coderd/rbac/authz_test.go
Lines changed: 628 additions & 0 deletions b/‎coderd/rbac/authz_test.go
Lines changed: 628 additions & 0 deletions
diff --git a/‎coderd/authz/error.go renamed to ‎coderd/rbac/error.go
Lines changed: 1 addition & 1 deletion b/‎coderd/authz/error.go renamed to ‎coderd/rbac/error.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎coderd/authz/example_test.go renamed to ‎coderd/rbac/example_test.go
Lines changed: 10 additions & 10 deletions b/‎coderd/authz/example_test.go renamed to ‎coderd/rbac/example_test.go
Lines changed: 10 additions & 10 deletions
diff --git a/‎coderd/authz/object.go renamed to ‎coderd/rbac/object.go
Lines changed: 1 addition & 1 deletion b/‎coderd/authz/object.go renamed to ‎coderd/rbac/object.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎coderd/authz/policy.rego renamed to ‎coderd/rbac/policy.rego b/‎coderd/authz/policy.rego renamed to ‎coderd/rbac/policy.rego
diff --git a/‎coderd/authz/resources.go renamed to ‎coderd/rbac/resources.go
Lines changed: 1 addition & 1 deletion b/‎coderd/authz/resources.go renamed to ‎coderd/rbac/resources.go
Lines changed: 1 addition & 1 deletion
@@ -1,4 +1,4 @@
-package authz
+package rbac
 
 // Action represents the allowed actions to be done on an object.
 type Action string
 
@@ -1,4 +1,4 @@
-package authz
+package rbac
 
 import (
 	"context"
 
@@ -1,4 +1,4 @@
-package authz
+package rbac
 
 const (
 	// UnauthorizedErrorMessage is the error message that should be returned to
 
@@ -1,10 +1,10 @@
-package authz_test
+package rbac_test
 
 import (
 	"context"
 	"testing"
 
-	"github.com/coder/coder/coderd/authz"
+	"github.com/coder/coder/coderd/rbac"
 	"github.com/stretchr/testify/require"
 )
 
@@ -14,16 +14,16 @@ func TestExample(t *testing.T) {
 	t.Skip("TODO: unskip when rego is done")
 	t.Parallel()
 	ctx := context.Background()
-	authorizer, err := authz.NewAuthorizer()
+	authorizer, err := rbac.NewAuthorizer()
 	require.NoError(t, err)
 
 	// user will become an authn object, and can even be a database.User if it
 	// fulfills the interface. Until then, use a placeholder.
 	user := subject{
 		UserID: "alice",
-		Roles: []authz.Role{
-			authz.RoleOrgAdmin("default"),
-			authz.RoleMember,
+		Roles: []rbac.Role{
+			rbac.RoleOrgAdmin("default"),
+			rbac.RoleMember,
 		},
 	}
 
@@ -32,25 +32,25 @@ func TestExample(t *testing.T) {
 	//nolint:paralleltest
 	t.Run("ReadAllWorkspaces", func(t *testing.T) {
 		// To read all workspaces on the site
-		err := authorizer.Authorize(ctx, user.UserID, user.Roles, authz.ResourceWorkspace.All(), authz.ActionRead)
+		err := authorizer.Authorize(ctx, user.UserID, user.Roles, rbac.ResourceWorkspace.All(), rbac.ActionRead)
 		var _ = err
 		// require.Error(t, err, "this user cannot read all workspaces")
 	})
 
 	//nolint:paralleltest
 	t.Run("ReadOrgWorkspaces", func(t *testing.T) {
 		// To read all workspaces on the org 'default'
-		err := authorizer.Authorize(ctx, user.UserID, user.Roles, authz.ResourceWorkspace.InOrg("default"), authz.ActionRead)
+		err := authorizer.Authorize(ctx, user.UserID, user.Roles, rbac.ResourceWorkspace.InOrg("default"), rbac.ActionRead)
 		require.NoError(t, err, "this user can read all org workspaces in 'default'")
 	})
 
 	//nolint:paralleltest
 	t.Run("ReadMyWorkspace", func(t *testing.T) {
 		// Note 'database.Workspace' could fulfill the object interface and be passed in directly
-		err := authorizer.Authorize(ctx, user.UserID, user.Roles, authz.ResourceWorkspace.InOrg("default").WithOwner(user.UserID), authz.ActionRead)
+		err := authorizer.Authorize(ctx, user.UserID, user.Roles, rbac.ResourceWorkspace.InOrg("default").WithOwner(user.UserID), rbac.ActionRead)
 		require.NoError(t, err, "this user can their workspace")
 
-		err = authorizer.Authorize(ctx, user.UserID, user.Roles, authz.ResourceWorkspace.InOrg("default").WithOwner(user.UserID).WithID("1234"), authz.ActionRead)
+		err = authorizer.Authorize(ctx, user.UserID, user.Roles, rbac.ResourceWorkspace.InOrg("default").WithOwner(user.UserID).WithID("1234"), rbac.ActionRead)
 		require.NoError(t, err, "this user can read workspace '1234'")
 	})
 }
@@ -1,4 +1,4 @@
-package authz
+package rbac
 
 // Object is used to create objects for authz checks when you have none in
 // hand to run the check on.
 
@@ -1,4 +1,4 @@
-package authz
+package rbac
 
 const WildcardSymbol = "*"
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-package authz`
	`1`	`+package rbac`
`2`	`2`
`3`	`3`	`// Action represents the allowed actions to be done on an object.`
`4`	`4`	`type Action string`