Skip to content

feat(AGX1-272): dual-write agent_api_keys to spark-authz behind FGAC flag #248

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dm36 wants to merge 6 commits into
base: main
Choose a base branch
from
Open

feat(AGX1-272): dual-write agent_api_keys to spark-authz behind FGAC flag #248

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
e3045cb
feat(AGX1-272): dual-write agent_api_keys to spark-authz behind FGAC_…
dm36 May 26, 2026
e72df68
feat: register_resource with parent edge for agent_api_keys dual-write
dm36 May 26, 2026
1fd2cf9
refactor(AGX1-272): query egp-api-backend for FGAC_AGENT_API_KEYS_DUA…
dm36 May 28, 2026
7d2656f
refactor(AGX1-272): remove OSS-coupling per Harvey's review
dm36 May 29, 2026
5d77e80
fix(AGX1-272): pre-fetch in delete() to skip deregister on missing row
dm36 May 29, 2026
cb126dd
test(AGX1-272): add AsyncMock for register/deregister_resource in uni…
dm36 May 29, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
28 changes: 28 additions & 0 deletions agentex/src/adapters/authorization/adapter_agentex_authz_proxy.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -85,6 +85,34 @@ async def list_resources(
)
return response["items"]

async def register_resource(
self,
principal: AgentexAuthPrincipalContext,
resource: AgentexResource,
parent: AgentexResource | None = None,
) -> None:
payload = {
"principal": principal,
"resource": resource.model_dump(),
"parent": parent.model_dump() if parent is not None else None,
}
await HttpRequestHandler.post_with_error_handling(
self.agentex_auth_url, "/v1/authz/register", json=payload
)

async def deregister_resource(
self,
principal: AgentexAuthPrincipalContext,
resource: AgentexResource,
) -> None:
payload = {
"principal": principal,
"resource": resource.model_dump(),
}
await HttpRequestHandler.post_with_error_handling(
self.agentex_auth_url, "/v1/authz/deregister", json=payload
)


DAgentexAuthorization = Annotated[
AgentexAuthorizationProxy, Depends(AgentexAuthorizationProxy)
Expand Down
26 changes: 26 additions & 0 deletions agentex/src/adapters/authorization/port.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -49,3 +49,29 @@ async def list_resources(
filter_operation: AuthorizedOperationType = AuthorizedOperationType.read,
) -> Iterable[str]:
"""List resource_ids for a given principal"""

@abstractmethod
async def register_resource(
self,
principal: PrincipalT,
resource: AgentexResource,
parent: AgentexResource | None = None,
) -> None:
"""Register a newly created resource in SpiceDB with the principal as
owner. Optionally writes a lifecycle parent edge.

Use this on resource create instead of ``grant`` when the resource
type's SpiceDB definition has a parent relation that permission
checks cascade through (e.g. ``agent_api_key`` declares
``parent_agent``). Without writing that edge here the cascade fails
closed.
"""

@abstractmethod
async def deregister_resource(
self,
principal: PrincipalT,
resource: AgentexResource,
) -> None:
"""Deregister a deleted resource and all of its relationships
(owner, parent, grantees) in a single atomic call."""
15 changes: 13 additions & 2 deletions agentex/src/api/routes/agent_api_keys.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@
CreateAPIKeyResponse,
)
from src.domain.entities.agent_api_keys import AgentAPIKeyType
from src.domain.services.authorization_service import DAuthorizationService
from src.domain.use_cases.agent_api_keys_use_case import DAgentAPIKeysUseCase
from src.domain.use_cases.agents_use_case import DAgentsUseCase
from src.utils.logging import make_logger
Expand All @@ -28,6 +29,7 @@ async def create_api_key(
request: CreateAPIKeyRequest,
agent_api_key_use_case: DAgentAPIKeysUseCase,
agent_use_case: DAgentsUseCase,
authorization_service: DAuthorizationService,
) -> CreateAPIKeyResponse:
if not request.agent_id and not request.agent_name:
raise HTTPException(
Expand All @@ -52,11 +54,13 @@ async def create_api_key(
raise HTTPException(status_code=409, detail=error_msg)

new_api_key = request.api_key or secrets.token_hex(32)
account_id = getattr(authorization_service.principal_context, "account_id", None)
Copy link
Copy Markdown

@harvhan harvhan May 29, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Now that FF is moved to agentex-auth, do we still need to thread account_id here? Suggest dropping the account_id extraction/threading entirely and letting agentex-auth derive the account_id from the principal. This keeps the SGP-specific field name out of the OSS repo. The only place I see you're actually using account_id is in log extract, which IMO should be dropped as well.

agent_api_key_entity = await agent_api_key_use_case.create(
agent_id=agent.id,
api_key=str(new_api_key),
name=request.name,
api_key_type=request.api_key_type,
account_id=account_id,
)
return CreateAPIKeyResponse(
id=agent_api_key_entity.id,
Expand Down Expand Up @@ -161,8 +165,10 @@ async def get_agent_api_key(
async def delete_agent_api_key(
id: str,
agent_api_key_use_case: DAgentAPIKeysUseCase,
authorization_service: DAuthorizationService,
) -> str:
await agent_api_key_use_case.delete(id=id)
account_id = getattr(authorization_service.principal_context, "account_id", None)
await agent_api_key_use_case.delete(id=id, account_id=account_id)
return f"Agent API key with ID {id} deleted"


Expand All @@ -176,6 +182,7 @@ async def delete_agent_api_key_by_name(
api_key_name: str,
agent_api_key_use_case: DAgentAPIKeysUseCase,
agent_use_case: DAgentsUseCase,
authorization_service: DAuthorizationService,
agent_id: str | None = None,
agent_name: str | None = None,
api_key_type: AgentAPIKeyType = AgentAPIKeyType.EXTERNAL,
Expand All @@ -191,8 +198,12 @@ async def delete_agent_api_key_by_name(
detail="Only one of 'agent_id' or 'agent_name' should be provided to delete an agent api_key.",
)
agent = await agent_use_case.get(id=agent_id, name=agent_name)
account_id = getattr(authorization_service.principal_context, "account_id", None)
await agent_api_key_use_case.delete_by_agent_id_and_key_name(
agent_id=agent.id, key_name=api_key_name, api_key_type=api_key_type
agent_id=agent.id,
key_name=api_key_name,
api_key_type=api_key_type,
account_id=account_id,
)

return f"Agent api_key '{api_key_name}' deleted"
9 changes: 9 additions & 0 deletions agentex/src/api/schemas/authorization_types.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,7 @@ class AuthorizedOperationType(StrEnum):
class AgentexResourceType(StrEnum):
agent = "agent"
task = "task"
api_key = "api_key"


# Resources that inherit permissions from their parent task
Expand All @@ -37,6 +38,10 @@ def agent(cls, selector: str) -> "AgentexResource":
def task(cls, selector: str) -> "AgentexResource":
return cls(type=AgentexResourceType.task, selector=selector)

@classmethod
def api_key(cls, selector: str) -> "AgentexResource":
return cls(type=AgentexResourceType.api_key, selector=selector)


class AgentexResourceOptionalSelector(BaseModel):
type: AgentexResourceType
Expand All @@ -49,3 +54,7 @@ def agent(cls, selector: str | None = None) -> "AgentexResourceOptionalSelector"
@classmethod
def task(cls, selector: str | None = None) -> "AgentexResourceOptionalSelector":
return cls(type=AgentexResourceType.task, selector=selector)

@classmethod
def api_key(cls, selector: str | None = None) -> "AgentexResourceOptionalSelector":
return cls(type=AgentexResourceType.api_key, selector=selector)
57 changes: 57 additions & 0 deletions agentex/src/domain/services/authorization_service.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -188,5 +188,62 @@ async def list_resources(
)
return result

async def register_resource(
self,
resource: AgentexResource,
parent: AgentexResource | None = None,
*,
principal_context=...,
) -> None:
"""Register a newly created resource with the principal as owner.

Prefer this over ``grant`` when the resource's SpiceDB schema has
a parent relation that permissions cascade through (e.g.
``agent_api_key`` declares ``parent_agent``). Pass ``parent`` to
link the child to its parent atomically; without it the cascade
fails closed.
"""
if self._bypass():
logger.info(f"Authorization bypassed for register_resource on {resource}")
return None

effective_principal = (
principal_context
if principal_context is not ...
else self.principal_context
)
logger.info(
"[authorization_service] Registering %s:%s for principal %s (parent=%s)",
resource.type,
resource.selector,
effective_principal,
f"{parent.type}:{parent.selector}" if parent is not None else None,
)
await self.gateway.register_resource(effective_principal, resource, parent)

async def deregister_resource(
self,
resource: AgentexResource,
*,
principal_context=...,
) -> None:
"""Deregister a deleted resource and all of its relationships."""
if self._bypass():
logger.info(f"Authorization bypassed for deregister_resource on {resource}")
return None

effective_principal = (
principal_context
if principal_context is not ...
else self.principal_context
)
logger.info(
"[authorization_service] Deregistering %s:%s for principal %s",
resource.type,
resource.selector,
effective_principal,
)
await self.gateway.deregister_resource(effective_principal, resource)


DAuthorizationService = Annotated[AuthorizationService, Depends(AuthorizationService)]
Loading
Loading