PDP: unusable permissions response
When retrieving a role or session information, the permissions object is unusable.
Example 1: retrieving a role:
RBAC >>> GET https://didmos.satosa.latest.rustbucket.io/pdp/roles/test-role
RBAC <<< (response)
HTTP/1.1 200 OK
...
{"rolename": "test-role", "users": null, "permissions": {"0223907e-55c4-4f59-a28c-4e7afb3e9820-permission": {"operations": ["edit"]}, "0277feb1-09f9-4133-a247-ea27b0d8db70-permission": {"operations": ["edit"]}, ...
Example 2: retrieving a session:
RBAC >>> GET https://didmos.satosa.latest.rustbucket.io/pdp/sessions/test-session
RBAC <<< (response)
HTTP/1.1 200 OK
...
{"sessionkey": "test-session", "userid": "3a2560e8-f088-4b46-98df-5ad4c5362703", "roles": ["test-role"], "permissions": {"0223907e-55c4-4f59-a28c-4e7afb3e9820-permission": {"operations": ["edit"]}, ...
- Expected: The keys for the
permissions
object should be resource names. - Actual: Keys are returned as some form of UUID with a suffix, making them unusable.