Connectum API Reference / @connectum/auth / ResolvedMethodAuth
Interface: ResolvedMethodAuth
Defined in: packages/auth/src/proto/reader.ts:20
Resolved authorization configuration for a single RPC method.
Result of merging service-level defaults with method-level overrides.
Properties
internal
readonlyinternal:boolean
Defined in: packages/auth/src/proto/reader.ts:28
Whether the method is internal (service-to-service): skip end-user (JWT) authentication, but require an internal trust marker established by createInternalAuthInterceptor. Distinct from public. See ADR-029.
policy
readonlypolicy:"allow"|"deny"|undefined
Defined in: packages/auth/src/proto/reader.ts:30
Authorization policy: "allow", "deny", or undefined (use interceptor default).
public
readonlypublic:boolean
Defined in: packages/auth/src/proto/reader.ts:22
Whether the method is public (skip authn + authz).
requires
readonlyrequires: {roles: readonlystring[];scopes: readonlystring[]; } |undefined
Defined in: packages/auth/src/proto/reader.ts:32
Required roles and scopes, or undefined if none specified.
