Hi folks, I’ve put together an updated RFC[1] on refactoring the PolarisAuthorizer SPI and would appreciate community review and feedback.
The RFC builds on the recent community sprint discussion[2] and pivots slightly from the previous RFC[3] to propose an incremental path to better support external PDP-backed authorizers, while keeping existing RBAC behavior and resolver semantics intact. It also outlines a multi-phase implementation plan and calls out a few longer-term questions around evolving the SPI from here. I'm looking forward to your feedback! Once it is reviewed and if there is support for this RFC in the mailing list, I'd like to proceed to break up the proposal into individual PRs corresponding to each implementation phase and start contributing incremental changes. Thanks, Sung [1] RFC: https://docs.google.com/document/d/1OaiQG_C4-yUe0ihaDBxtw_mEcOOzUBnWPazzVbjQi5U/edit?tab=t.0 [2] Community Sprint Notes: https://docs.google.com/document/d/1cUg4HnUGDN0JKMr0JWQTaKkgzSXENHZ4VMuyRfJ9oTQ/edit?tab=t.lzwxdgyu5e82#heading=h.jax6biqfrx3x [3] Previous RFC (Withdrawn): https://docs.google.com/document/d/1vV4p35feUqrEuG4ciZ2ccPJTli1tR4c9YD4M_2Bi0Wc/edit?tab=t.0
