From b99efb77c59caa0508e334a84c079a1a17ae427f Mon Sep 17 00:00:00 2001
From: Marvin Gajek <Marvin.Gajek1@web.de>
Date: Sun, 17 Nov 2024 16:49:18 +0100
Subject: [PATCH] replace file with blob and add additional action for admins
 in OpenFGA model

---
 docs/diagrams/openfga.dsl | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/docs/diagrams/openfga.dsl b/docs/diagrams/openfga.dsl
index db1f85e..9aaaaf0 100644
--- a/docs/diagrams/openfga.dsl
+++ b/docs/diagrams/openfga.dsl
@@ -5,17 +5,18 @@ type user
 
 type blob
   relations
-    # Permissions related to file management
+    # Permissions related to blob management
     define can_manage_all_blobs: admin
     define can_manage_own_blobs: owner
     define can_download_blobs_with_given_permission: grantee
     define can_view_blobs_with_given_permission: grantee
 
     # Cryptographic actions
+    define can_manage_all_keys: admin
     define create_own_cryptographic_keys: owner
-    define encrypt_decrypt_own_files: owner
-    define generate_signature_for_own_files: owner
-    define verify_file_signature: owner or grantee  # Public key verification is possible for grantee
+    define encrypt_decrypt_own_blobs: owner
+    define generate_signature_for_own_blobs: owner
+    define verify_blob_signature: owner or grantee  # Public key verification is possible for grantee
     
     # Access control for owners and grantees
     define can_grant_access_to_download_owned_blobs: owner