FGA_3: check()

[swaroopAkkineniWorkos]

Description

Documentation

Does this require changes to the WorkOS Docs? E.g. the API Reference or code snippets need updates.

[ ] Yes

If yes, link a related docs PR and add a docs maintainer as a reviewer. Their approval is required.

[swaroopAkkineniWorkos]

@greptile review

[greptile-apps]

Greptile Summary

Added check() method to the authorization module for Fine-Grained Authorization (FGA) access evaluation. The implementation includes both sync and async versions that check if an organization membership has a specific permission on a resource.

• Implemented check() method in both Authorization and AsyncAuthorization classes with proper parameter validation
• Added validation to ensure resource_id and resource_external_id are mutually exclusive
• Enforces resource_type_slug requirement when using resource_external_id
• Comprehensive test coverage with 7 test cases covering authorized/unauthorized responses, URL construction, payload validation, and error handling
• Follows existing SDK patterns for dual sync/async support and type safety

Confidence Score: 5/5

• Safe to merge with no issues found
• The implementation follows existing SDK patterns precisely, includes proper input validation, has comprehensive test coverage, and introduces no security concerns
• No files require special attention

Important Files Changed

Filename	Overview
src/workos/authorization.py	Added check() method to both sync and async authorization modules for access evaluation with proper validation
tests/test_authorization_check.py	New comprehensive test suite for check() method covering authorized/unauthorized flows and validation edge cases

_{Last reviewed commit: b344d14}

[greptile-apps]

_{2 files reviewed, no comments}

_{Edit Code Review Agent Settings | Greptile}