policy

package
v2.10.2-1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jul 23, 2023 License: MIT Imports: 16 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source
var ErrConfigFileNotFound = errors.New("policy file isn't found")

Functions

func ParseEnv

func ParseEnv(env string) []string

Types

type Checker

type Checker struct {
	// contains filtered or unexported fields
}

func NewChecker

func NewChecker(param *config.Param) *Checker

func (*Checker) ValidatePackage

func (pc *Checker) ValidatePackage(logE *logrus.Entry, pkg *config.Package, policies []*Config) error

type Config

type Config struct {
	Path    string
	Allowed bool
	YAML    *ConfigYAML
}

func (*Config) Init

func (cfg *Config) Init() error

type ConfigFinder added in v2.3.0

type ConfigFinder interface {
	Find(policyFilePath, wd string) (string, error)
}

type ConfigFinderImpl added in v2.3.0

type ConfigFinderImpl struct {
	// contains filtered or unexported fields
}

func NewConfigFinder added in v2.3.0

func NewConfigFinder(fs afero.Fs) *ConfigFinderImpl

func (*ConfigFinderImpl) Find added in v2.3.0

func (finder *ConfigFinderImpl) Find(policyFilePath, wd string) (string, error)

type ConfigReader

type ConfigReader interface {
	Read(policyConfigFiles []string) ([]*Config, error)
	ReadFile(policyConfigFile string) (*Config, error)
}

type ConfigReaderImpl

type ConfigReaderImpl struct {
	// contains filtered or unexported fields
}

func NewConfigReader

func NewConfigReader(fs afero.Fs) *ConfigReaderImpl

func (*ConfigReaderImpl) Read

func (reader *ConfigReaderImpl) Read(files []string) ([]*Config, error)

func (*ConfigReaderImpl) ReadFile added in v2.3.0

func (reader *ConfigReaderImpl) ReadFile(file string) (*Config, error)

type ConfigYAML

type ConfigYAML struct {
	Registries []*Registry `json:"registries"`
	Packages   []*Package  `json:"packages,omitempty"`
}

type MockConfigFinder added in v2.3.0

type MockConfigFinder struct {
	// contains filtered or unexported fields
}

func (*MockConfigFinder) Find added in v2.3.0

func (finder *MockConfigFinder) Find(policyFilePath, wd string) (string, error)

type MockConfigReader

type MockConfigReader struct {
	Cfgs []*Config
	Err  error
}

func (*MockConfigReader) Read

func (reader *MockConfigReader) Read(files []string) ([]*Config, error)

type MockReader added in v2.3.0

type MockReader struct {
	Config  *Config
	Configs []*Config
	Err     error
}

func (*MockReader) Append added in v2.3.0

func (reader *MockReader) Append(logE *logrus.Entry, aquaYAMLPath string, policies []*Config, globalPolicyPaths map[string]struct{}) ([]*Config, error)

func (*MockReader) ReadFromEnv added in v2.3.0

func (reader *MockReader) ReadFromEnv(policyFilePaths []string) ([]*Config, error)

type MockValidator added in v2.3.0

type MockValidator struct {
	Err error
}

func (*MockValidator) Allow added in v2.3.0

func (validator *MockValidator) Allow(p string) error

func (*MockValidator) Deny added in v2.3.0

func (validator *MockValidator) Deny(p string) error

func (*MockValidator) Validate added in v2.3.0

func (validator *MockValidator) Validate(p string) error

func (*MockValidator) Warn added in v2.3.0

func (validator *MockValidator) Warn(logE *logrus.Entry, policyFilePath string, updated bool) error

type Package

type Package struct {
	Name         string    `json:"name"`
	Version      string    `json:"version,omitempty"`
	RegistryName string    `yaml:"registry" json:"registry,omitempty"`
	Registry     *Registry `yaml:"-" json:"-"`
}

type Reader added in v2.3.0

type Reader interface {
	ReadFromEnv(policyFilePaths []string) ([]*Config, error)
	Append(logE *logrus.Entry, aquaYAMLPath string, policies []*Config, globalPolicyPaths map[string]struct{}) ([]*Config, error)
}

type ReaderImpl added in v2.3.0

type ReaderImpl struct {
	// contains filtered or unexported fields
}

func NewReader added in v2.3.0

func NewReader(fs afero.Fs, validator Validator, finder ConfigFinder, reader ConfigReader) *ReaderImpl

func (*ReaderImpl) Append added in v2.3.0

func (reader *ReaderImpl) Append(logE *logrus.Entry, aquaYAMLPath string, policies []*Config, globalPolicyPaths map[string]struct{}) ([]*Config, error)

func (*ReaderImpl) ReadFromEnv added in v2.3.0

func (reader *ReaderImpl) ReadFromEnv(policyFilePaths []string) ([]*Config, error)

type Registry

type Registry struct {
	Name      string `json:"name,omitempty"`
	Type      string `validate:"required" json:"type,omitempty" jsonschema:"enum=standard,enum=local,enum=github_content"`
	RepoOwner string `yaml:"repo_owner" json:"repo_owner,omitempty"`
	RepoName  string `yaml:"repo_name" json:"repo_name,omitempty"`
	Ref       string `json:"ref,omitempty"`
	Path      string `validate:"required" json:"path,omitempty"`
}

type Validator added in v2.3.0

type Validator interface {
	Validate(p string) error
	Allow(p string) error
	Deny(p string) error
	Warn(logE *logrus.Entry, policyFilePath string, updated bool) error
}

type ValidatorImpl added in v2.3.0

type ValidatorImpl struct {
	// contains filtered or unexported fields
}

func NewValidator added in v2.3.0

func NewValidator(param *config.Param, fs afero.Fs) *ValidatorImpl

func (*ValidatorImpl) Allow added in v2.3.0

func (validator *ValidatorImpl) Allow(p string) error

func (*ValidatorImpl) Deny added in v2.3.0

func (validator *ValidatorImpl) Deny(p string) error

func (*ValidatorImpl) Validate added in v2.3.0

func (validator *ValidatorImpl) Validate(p string) error

func (*ValidatorImpl) Warn added in v2.3.0

func (validator *ValidatorImpl) Warn(logE *logrus.Entry, policyFilePath string, updated bool) error

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL