AgileWebs/thalos-bff
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
be41225087
thalos-bff/docs/security/permission-enforcement-map.md
José René White Enciso e2bedb3beb feat(thalos-bff): integrate identity edge contract adapters
2026-02-22 04:10:17 -06:00

380 B
Raw Blame History

Permission Enforcement Map

Enforcement Points

  • identity.token.issue evaluated via thalos-service policy contract before token issuance.
  • Session refresh guarded by edge session validation policy.

Guardrail

  • Permission checks happen at BFF entrypoints using thalos-service policy responses.
  • Authorization decisions are explicit and traceable at edge boundaries.