Skip to content

Connectum API Reference / @connectum/auth / ResolvedMethodAuth

Interface: ResolvedMethodAuth

Defined in: packages/auth/src/proto/reader.ts:20

Resolved authorization configuration for a single RPC method.

Result of merging service-level defaults with method-level overrides.

Properties

internal

readonly internal: boolean

Defined in: packages/auth/src/proto/reader.ts:28

Whether the method is internal (service-to-service): skip end-user (JWT) authentication, but require an internal trust marker established by createInternalAuthInterceptor. Distinct from public. See ADR-029.


policy

readonly policy: "allow" | "deny" | undefined

Defined in: packages/auth/src/proto/reader.ts:30

Authorization policy: "allow", "deny", or undefined (use interceptor default).


public

readonly public: boolean

Defined in: packages/auth/src/proto/reader.ts:22

Whether the method is public (skip authn + authz).


requires

readonly requires: { roles: readonly string[]; scopes: readonly string[]; } | undefined

Defined in: packages/auth/src/proto/reader.ts:32

Required roles and scopes, or undefined if none specified.