OpenFGA Github Action - Deploy
This action can be used to deploy your authorization model to an OpenFGA store.
Parameter
Required/Optional
Description
api-urlRequired
The URL to your OpenFGA server
api-tokenRequired
The token used to when preshared keys are used to authenticate the OpenFGA server
store-idRequired
The store to which the model should be deployed
model-file-pathOptional
The path to your model file relative to the root of your project
modelOptional
The model value if file is not used, Ensure it is character escaped.
formatOptional
Authorization model input format. Can be "fga" or "json", defaults to auto-detecting from the file extension
Output
Description
authorization_model_idThe ID of the deployed Authorization Model
name : Deploy Action
on :
workflow_dispatch :
jobs :
deploy :
name : Deploy Authorization Model
runs-on : ubuntu-latest
steps :
- uses : actions/checkout@v4
- name : Deploy using a file
uses : openfga/[email protected]
with :
api-url : http://localhost:8080
api-token : ${{ secrets.KEY }}
store-id : ${{ env.STORE_ID }}
model-file-path : ./example/model.fga
- name : Deploy using a string
uses : openfga/[email protected]
with :
api-url : http://localhost:8080
api-token : ${{ secrets.KEY }}
store-id : ${{ env.STORE_ID }}
format : json
model : ' {\"schema_version\":\"1.1\",\"type_definitions\":\[\{\"type\":\"user\"\},\{\"type\":\"document\",\"relations\":\{\"reader\":\{\"this\":\{\}\},\"writer\":\{\"this\":\{\}\},\"owner\":\{\"this\":\{\}\}\},\"metadata\":\{\"relations\":\{\"reader\":\{\"directly_related_user_types\":\[\{\"type\":\"user\"\}\]\},\"writer\":\{\"directly_related_user_types\":\[\{\"type\":\"user\"\}\]\},\"owner\":\{\"directly_related_user_types\":\[\{\"type\":\"user\"\}\]\}\}\}\}\]\}'
