feat(files): per-volume in-app policy enforcement#197
feat(files): per-volume in-app policy enforcement#197atilafassina wants to merge 14 commits intomainfrom
Conversation
pkosiec
left a comment
pkosiec
left a comment
There was a problem hiding this comment.
Great work! Overall LGTM, pls see my small comments on the proposal and here - they might affect some methods naming etc.
Disclaimer: unfortunately I wasn't able to test it, I'll run it next week 👍 Unless you could record a short, raw demo video showcasing how the policies work ?
Also, I think it would be worth if we had approval for at least the RFC from Fabian / Mario who were much more involved in the files discussions. Thanks!
There was a problem hiding this comment.
Not sure if we shouldn't update the AppKit template to utilize the policies for the sample path?
And the same with an agent skill for files? Agent might be confused without additional guidance - we need to verify that.
There was a problem hiding this comment.
Pull request overview
This PR adds an in-app, per-volume authorization layer to the Files plugin via composable FilePolicy functions, and updates the plugin so HTTP routes execute using the service principal while enforcing access decisions through policies (user identity taken from x-forwarded-user).
Changes:
- Introduces
FilePolicytypes/helpers (policy.*combinators,PolicyDeniedError, READ/WRITE action sets) and wires policy checks into HTTP handlers and the programmatic Volume API. - Switches route execution to service-principal-first and enforces user identity presence (401) + policy decisions (403) before upstream Databricks calls.
- Updates tests and documentation to reflect the new policy model and default
publicRead()behavior.
Reviewed changes
Copilot reviewed 17 out of 17 changed files in this pull request and generated 12 comments.
Show a summary per file
| File | Description |
|---|---|
| packages/appkit/src/plugins/files/policy.ts | Adds policy types, helpers, combinators, and PolicyDeniedError. |
| packages/appkit/src/plugins/files/plugin.ts | Enforces policies on routes and SDK API; defaults volumes to publicRead(); removes user-context gating. |
| packages/appkit/src/plugins/files/types.ts | Adds policy?: FilePolicy to VolumeConfig and updates public API docs. |
| packages/appkit/src/plugins/files/index.ts | Re-exports policy symbols from the files plugin barrel. |
| packages/appkit/src/index.ts | Exposes policy at top-level @databricks/appkit. |
| packages/appkit/src/context/* | Removes isInUserContext and introduces getCurrentUserId usage for caching/identity. |
| packages/appkit/src/plugins/files/tests/policy.test.ts | Unit tests for policy helpers/combinators. |
| packages/appkit/src/plugins/files/tests/plugin.test.ts | Adds policy enforcement tests and updates behavior expectations (SP execution). |
| packages/appkit/src/plugins/files/tests/plugin.integration.test.ts | Updates integration tests for SP execution + default publicRead() denying writes. |
| apps/dev-playground/server/index.ts | Configures dev-playground volume with policy.allowAll(). |
| docs/docs/plugins/files.md | Documents the new policy model and enforcement semantics. |
| docs/docs/api/appkit/Variable.policy.md | Adds API reference page for policy. |
| docs/docs/api/appkit/index.md | Adds policy to API index. |
| docs/docs/api/appkit/typedoc-sidebar.ts | Adds policy to Typedoc sidebar. |
| docs/static/appkit-ui/styles.gen.css | Updates selection styling using color-mix. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
docs/docs/plugins/files.md
Outdated
|
|
||
| #### Enforcement | ||
|
|
||
| - **HTTP routes**: Policy checked before every operation. Denied → `403` JSON response with `"Action denied by volume policy"`. |
There was a problem hiding this comment.
The documented 403 error message for HTTP routes ("Action denied by volume policy") doesn’t match the actual PolicyDeniedError message returned by the plugin (Policy denied "{action}" on volume "{volumeKey}"). Update this text so users can rely on the documented response body.
| - **HTTP routes**: Policy checked before every operation. Denied → `403` JSON response with `"Action denied by volume policy"`. | |
| - **HTTP routes**: Policy checked before every operation. Denied → `403` JSON response with `Policy denied "{action}" on volume "{volumeKey}"`. |
atilafassina
changed the title
atilafassina
force-pushed
the
files/service-principal-policies
branch
from
e43da85 to
edabf4b
Compare
Summary
FilePolicy— a function(action, resource, user) → boolean— gates every file operation before the Databricks API call. Ships with built-in helpers (policy.publicRead(),policy.allowAll(),policy.denyAll()) and combinators (all,any,not) for composition.x-forwarded-userand passed to the policy function.publicRead()(read-only). A startup warning encourages setting an explicit policy.Motivation
Previously the files plugin relied entirely on OBO token forwarding and Unity Catalog grants. This meant:
Policies close this gap with a composable, per-volume authorization layer evaluated before any API call.
Key changes
policy.ts(new)FileAction,FileResource,FilePolicyUsertypes ·PolicyDeniedError·policynamespace withpublicRead(),allowAll(),denyAll(),all(),any(),not()plugin.tsisInUserContext/OBO gating · Added_enforcePolicy(),_checkPolicy(),_extractUser()·_executeOrThrow()for proper 4xx propagationtypes.tspolicy?: FilePolicyonVolumeConfig· Updated JSDoc to reflect SP-first execution modelindex.tspolicyfrom top-level barrelpolicy.allowAll()on the default volumefiles.md) with permission model, built-in policies, combinators, custom policies · Generated API reference forpolicynamespaceTest coverage
policy.test.ts): all helpers, async policies,PolicyDeniedError, edge casesplugin.test.ts): route-level 401/403 responses, SDK API with user/SP identity, upload size in resource, cache invalidation under SP modelTest plan
pnpm devThis pull request was AI-assisted by Isaac.