Struct caprock_claim

Struct Documentation

struct caprock_claim

A caprock_claim is an authorization tuple in the specifiation, and consists of an (optional) subject who is to be authorized, a predicate that describes the imparted privileges, and an optional object on which the privileges are granted.

The subject may be omitted, in which case global privileges on the object are granted.

The object may be omitted, in which case the predicate does not grant privileges, but is a verified statement about the subject.

The object may also be a CAPROCK_CLAIMS_WILDCARD, in which case the claim is made about all objects, future and past, that the issuer has any authority over.

Predicates may not be omitted. You also may not omit both the subject and the object at the same time.

Public Members

char const *subject

The subject pointer and subject_size describe the subject.

size_t subject_size
char const *predicate

Same as subject, but for the predicate.

size_t predicate_size
char const *object

Same as subject, but for the object.

size_t object_size