AgileWebs/thalos-dal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
586924837a
thalos-dal/docs/dal/identity-provider-boundaries.md
José René White Enciso 2d3f939e8f feat(thalos-dal): add provider-routed identity adapters
2026-02-25 13:13:56 -06:00

873 B
Raw Blame History

Identity Provider Boundaries

Ownership

  • IUserDataProvider: user aggregate persistence provider boundary.
  • IRoleDataProvider: role aggregate persistence provider boundary.
  • IPermissionDataProvider: permission aggregate provider boundary.
  • IModuleDataProvider: module aggregate provider boundary.
  • ITenantDataProvider: tenant aggregate provider boundary.
  • IIdentityRepository: DAL composition boundary for policy, token, and permission-set reads.
  • IIdentityDalGrpcContractAdapter: gRPC translation boundary for DAL contracts.

Rules

  • Providers isolate datastore-specific behavior.
  • Provider boundaries remain internal to Thalos DAL.
  • DAL interfaces expose only transport-neutral contracts and read ports.
  • Identity abstractions remain Thalos-owned.
  • Runtime provider routes currently support:
    • InternalJwt
    • AzureAd
    • Google