Default Rego Policies Do Not Pass x-user-id Header
The default rego dataauth policies do not pass the x-user-id header to entitlements and legal service. This header is inserted by Storage but are not added to OPA's requests. This results in all OPA's requests being unauthorized due to a missing x-user-id header.