This is a silly little example how you could delegate policy decisions to ChatGPT. While this is intended to be taken lightly, there are valid use cases. For example, you could use ChatGPT for assessing the risk of critical requests.
-
Open Policy Agent CLI installed
-
A
data.jsonfile providing your ChatGPT API key:{ "openai_api_key": "YOUR-OPENAPI-KEY" }
opa run data.jsonresponse := http.send({
"url": "https://api.openai.com/v1/chat/completions",
"method": "POST",
"headers": {
"Content-Type": "application/json",
"Authorization": concat(" ", ["Bearer", data.openai_api_key])
},
"body": {
"model": "gpt-3.5-turbo",
"messages": [
{ "role": "system", "content": "You are an bouncer. If a user has a role named 'developer', respond only with 'ACCESS GRANTED'. Otherwise, respond by merrily insulting the user." },
{ "role": "user", "content": concat(" ", ["May I enter? I have the roles", concat(", ", input.roles)])}
]
}
})
default allowed := false
allowed {
contains(response.body.choices[0].message.content, "ACCESS GRANTED")
}input := { "roles": ["user"] }allowed
response.body.choices[0].message.contentinput := { "roles": ["developer"] }
allowed