func AllowIfAdmin ¶
func AllowIfAdmin() privacy.QueryMutationRule
AllowIfAdmin is a rule that returns allow decision if the viewer is admin.
func DenyIfNoViewer ¶
func DenyIfNoViewer() privacy.QueryMutationRule
DenyIfNoViewer is a rule that returns deny decision if the viewer is missing in the context.
func DenyMismatchedTenants ¶
func DenyMismatchedTenants() privacy.MutationRule
DenyMismatchedTenants is a rule that returns a deny decision if the operations tries to add users to groups that are not in the same tenant.