Merge pull request #984 from constructive-io/devin/1776335627-entity-type-authz-field

feat: add entity_type field to all 5 authz policy types

Author: pyramation

graphql/node-type-registry/src/authz/authz-entity-membership.ts

@@ -20,6 +20,10 @@ export const AuthzEntityMembership: NodeTypeDefinition = {
         ],
         "description": "Scope: 1=app, 2=org, 3+=dynamic entity types (or string name resolved via membership_types_module)"
       },
+      "entity_type": {
+        "type": "string",
+        "description": "Entity type prefix (e.g. 'channel', 'department'). Resolved to membership_type integer via memberships_module lookup. Use instead of membership_type for readability."
+      },
       "permission": {
         "type": "string",
         "description": "Single permission name to check (resolved to bitstring mask)"

graphql/node-type-registry/src/authz/authz-membership-check.ts

@@ -16,6 +16,10 @@ export const AuthzMembership: NodeTypeDefinition = {
         ],
         "description": "Scope: 1=app, 2=org, 3+=dynamic entity types (or string name resolved via membership_types_module)"
       },
+      "entity_type": {
+        "type": "string",
+        "description": "Entity type prefix (e.g. 'channel', 'department'). Resolved to membership_type integer via memberships_module lookup. Use instead of membership_type for readability."
+      },
       "permission": {
         "type": "string",
         "description": "Single permission name to check (resolved to bitstring mask)"
@@ -36,9 +40,7 @@ export const AuthzMembership: NodeTypeDefinition = {
         "description": "If true, require is_owner flag"
       }
     },
-    "required": [
-      "membership_type"
-    ]
+    "required": []
   },
   "tags": [
     "membership",

graphql/node-type-registry/src/authz/authz-peer-ownership.ts

@@ -20,6 +20,10 @@ export const AuthzPeerOwnership: NodeTypeDefinition = {
         ],
         "description": "Scope: 1=app, 2=org, 3+=dynamic entity types (or string name resolved via membership_types_module)"
       },
+      "entity_type": {
+        "type": "string",
+        "description": "Entity type prefix (e.g. 'channel', 'department'). Resolved to membership_type integer via memberships_module lookup. Use instead of membership_type for readability."
+      },
       "permission": {
         "type": "string",
         "description": "Single permission name to check on the current user membership (resolved to bitstring mask)"

graphql/node-type-registry/src/authz/authz-related-entity-membership.ts

@@ -20,6 +20,10 @@ export const AuthzRelatedEntityMembership: NodeTypeDefinition = {
         ],
         "description": "Scope: 1=app, 2=org, 3+=dynamic entity types (or string name resolved via membership_types_module)"
       },
+      "entity_type": {
+        "type": "string",
+        "description": "Entity type prefix (e.g. 'channel', 'department'). Resolved to membership_type integer via memberships_module lookup. Use instead of membership_type for readability."
+      },
       "obj_table_id": {
         "type": "string",
         "format": "uuid",

graphql/node-type-registry/src/authz/authz-related-peer-ownership.ts

@@ -20,6 +20,10 @@ export const AuthzRelatedPeerOwnership: NodeTypeDefinition = {
         ],
         "description": "Scope: 1=app, 2=org, 3+=dynamic entity types (or string name resolved via membership_types_module)"
       },
+      "entity_type": {
+        "type": "string",
+        "description": "Entity type prefix (e.g. 'channel', 'department'). Resolved to membership_type integer via memberships_module lookup. Use instead of membership_type for readability."
+      },
       "obj_table_id": {
         "type": "string",
         "format": "uuid",