From 78018a8802e4bcfe9135a2207d56eca90c010bda Mon Sep 17 00:00:00 2001 From: Trevor Bramwell Date: Tue, 21 Apr 2026 09:28:29 -0700 Subject: [PATCH 1/3] Add missing relations to vote_response FGA type MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Add project, writer, and viewer relations to vote_response to match what the voting-service sends via lfx.fga-sync.update_access. These missing relations caused 2,658 failed batch writes per 24h. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Issue: LFXV2-1555 Co-Authored-By: Claude Sonnet 4.6 Signed-off-by: Trevor Bramwell --- charts/lfx-platform/templates/openfga/model.yaml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/charts/lfx-platform/templates/openfga/model.yaml b/charts/lfx-platform/templates/openfga/model.yaml index 040c0b6..b4eefef 100644 --- a/charts/lfx-platform/templates/openfga/model.yaml +++ b/charts/lfx-platform/templates/openfga/model.yaml @@ -381,14 +381,15 @@ spec: type vote_response relations define vote: [vote] + define project: [project] # owner is the user who cast this response # @fgadoc:alias Voter # @fgadoc:jtbd Update your vote response define owner: [user] - # we don't need to create a "writer" relation that is defined as just "owner": - # we just use the "owner" relation in our access checks! + define writer: [user] or owner # @fgadoc:jtbd View a vote response define auditor: owner or auditor from vote + define viewer: [user, user:*] or auditor type survey relations From c81292c34754cda2f396e9c1d6026b212a96b058 Mon Sep 17 00:00:00 2001 From: Trevor Bramwell Date: Tue, 21 Apr 2026 09:57:28 -0700 Subject: [PATCH 2/3] Bump FGA model version to 10.2.0 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Reserve 10.1.0 for executive_director changes (PR #132). vote_response relation additions land as 10.2.0. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Issue: LFXV2-1555 Co-Authored-By: Claude Sonnet 4.6 Signed-off-by: Trevor Bramwell --- charts/lfx-platform/templates/openfga/model.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/lfx-platform/templates/openfga/model.yaml b/charts/lfx-platform/templates/openfga/model.yaml index b4eefef..7ec8048 100644 --- a/charts/lfx-platform/templates/openfga/model.yaml +++ b/charts/lfx-platform/templates/openfga/model.yaml @@ -24,7 +24,7 @@ spec: */}} - version: major: 10 - minor: 1 + minor: 2 patch: 0 authorizationModel: | model From 05fa20c05e9376eb946814e05ac66b7a9e85c041 Mon Sep 17 00:00:00 2001 From: Trevor Bramwell Date: Tue, 21 Apr 2026 10:03:56 -0700 Subject: [PATCH 3/3] Bump FGA model version to 10.3.0 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Adding writer relation to vote_response requires a minor bump. 10.2.0 is reserved for executive_director (PR #132). 🤖 Generated with [Claude Code](https://claude.com/claude-code) Issue: LFXV2-1555 Co-Authored-By: Claude Sonnet 4.6 Signed-off-by: Trevor Bramwell --- charts/lfx-platform/templates/openfga/model.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/lfx-platform/templates/openfga/model.yaml b/charts/lfx-platform/templates/openfga/model.yaml index 7ec8048..3abfd9a 100644 --- a/charts/lfx-platform/templates/openfga/model.yaml +++ b/charts/lfx-platform/templates/openfga/model.yaml @@ -24,7 +24,7 @@ spec: */}} - version: major: 10 - minor: 2 + minor: 3 patch: 0 authorizationModel: | model