Interfaces

PermissionPolicyOptions

Interface: PermissionPolicyOptions

Defined in: src/security/PermissionPolicy.ts:66

Properties

activeRole

readonly activeRole: string

Defined in: src/security/PermissionPolicy.ts:78

Which role is active for this policy instance. Calls to .isAllowed(toolId) check against this role's allowlist. Use .withActiveRole(name) to derive a sibling policy with a different active role.


roles

readonly roles: RoleAllowlist

Defined in: src/security/PermissionPolicy.ts:71

The role allowlist. Each role maps to the tool ids it can invoke. Tool ids match the name field of Tool.schema.name exactly.

On this page