open-consul/contributing/acl/acl-entity-relationship.mmd

erDiagram

    Token
    Policy
    Role
    ServiceIdentity
    NodeIdentity
    AuthMethod
    BindingRule
    Rule
    // TODO: rules are made up of resources and x (enforcement decision or permission?)
    // TODO: add Authorizer and Enforcement Decision

    Policy ||--|{ Rule: grants
    Role ||--|{ Policy: includes
    Role }|--|{ ServiceIdentity: includes
    Role }|--|{ NodeIdentity: includes

    Token }|--|{ Policy: includes
    Token }|--|{ Role: includes
    Token }|--|{ ServiceIdentity: includes
    Token }|--|{ NodeIdentity: includes

    AuthMethod ||--|{ BindingRule: defines
    AuthMethod ||--|{ Token: creates

    ServiceIdentity ||--|{ Rule: implies
    NodeIdentity ||--|{ Rule: implies
contributing: start an outline for more docs Add diagrams for rpc routing and acl entity relationship contributing: create directory structure for new docs WIP diagram for catalog entities Add overview diagram Co-Authored-By: Kelly Devlin <kdevlin@hashicorp.com> 2021-04-26 18:58:44 +00:00			`erDiagram`

			`Token`
			`Policy`
			`Role`
			`ServiceIdentity`
			`NodeIdentity`
			`AuthMethod`
			`BindingRule`
			`Rule`
			`// TODO: rules are made up of resources and x (enforcement decision or permission?)`
			`// TODO: add Authorizer and Enforcement Decision`

			`Policy \|\|--\|{ Rule: grants`
			`Role \|\|--\|{ Policy: includes`
			`Role }\|--\|{ ServiceIdentity: includes`
			`Role }\|--\|{ NodeIdentity: includes`

			`Token }\|--\|{ Policy: includes`
			`Token }\|--\|{ Role: includes`
			`Token }\|--\|{ ServiceIdentity: includes`
			`Token }\|--\|{ NodeIdentity: includes`

			`AuthMethod \|\|--\|{ BindingRule: defines`
			`AuthMethod \|\|--\|{ Token: creates`

			`ServiceIdentity \|\|--\|{ Rule: implies`
			`NodeIdentity \|\|--\|{ Rule: implies`