1.6 KiB
1.6 KiB
OpenFGA
The OpenFGA CLI
Writing tuples
Add user:aleksander.libaek@akerbla.no as a member of organisation group:/akerbla
$ fga tuple write user:aleksander.libaek@akerbla.no member group:/akerbla
Add as active or registered:
$ fga tuple write user:aleksander.libaek@akerbla.no active user:aleksander.libaek@akerbla.no
$ fga tuple write user:aleksander.libaek@akerbla.no registered user:aleksander.libaek@akerbla.no
A more complex write operation:
$ fga tuple write group:/stim#member view archive:23feab9e-e9af-49fd-a740-33c0b63ffd0b --condition-name term --condition-context '{"start_time": "2025-03-18T00:00:00Z", "end_time": "2025-05-01T00:00:00Z"}'
To write a group of tuples, specify a file that contains those tuples. Here with .csv file:
fga tuple write --file ohs.csv
Deleting a tuples
Delete user:aleksander.libaek@akerbla.no as a member of organisation group:/akerbla
$ fga tuple delete user:aleksander.libaek@akerbla.no member group:/akerbla
To delete a group of tuples, specify a file that contains those tuples. Here with .csv file:
$ fga tuple delete --file ohs.csv
Query objects
List all objects from an archive, with group views
$ fga query list-objects archive:40d3f9cf-90bc-4aa0-b4d3-62d066d42bd9
$ fga query list-objects 'group' view archive:fa4ecc27-ba1f-484f-a40b-8e3c1d8f5349
$ fga query list-objects 'group:/leroy' view archive:fa4ecc27-ba1f-484f-a40b-8e3c1d8f5349
$ fga query list-objects 'group:/leroy#member' view archive:fa4ecc27-ba1f-484f-a40b-8e3c1d8f5349