schema

package
v0.50.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 22, 2025 License: Apache-2.0 Imports: 27 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	Directory = "_schemas"
	URLScheme = "cerbos"
)

Variables

This section is empty.

Functions

func ReadSchema added in v0.14.0 

func ReadSchema(src io.Reader, id string) (*schemav1.Schema, error)

ReadSchema reads a schema from the given reader.

func ReadSchemaFromFile added in v0.14.0 

func ReadSchemaFromFile(fsys fs.FS, path string) (*schemav1.Schema, error)

Types

type Conf 

type Conf struct {
	// Enforcement defines level of the validations. Possible values are none, warn, reject.
	Enforcement Enforcement `yaml:"enforcement" conf:",example=reject"`
	// CacheSize defines the number of schemas to cache in memory.
	CacheSize uint `yaml:"cacheSize" conf:",example=1024"`
}

Conf is optional configuration for schema validation.

func GetConf added in v0.15.0 

func GetConf() (*Conf, error)

func NewConf added in v0.14.0 

func NewConf(enforcement Enforcement) *Conf

func (*Conf) Key 

func (c *Conf) Key() string

func (*Conf) SetDefaults 

func (c *Conf) SetDefaults()

type Enforcement 

type Enforcement string

Enforcement level for schema validation. 

const (
	EnforcementNone   Enforcement = "none"   // No enforcement made.
	EnforcementWarn   Enforcement = "warn"   // In case schema is not validated, display a warning.
	EnforcementReject Enforcement = "reject" // In case schema is not validated, reject.
)

type ErrSource 

type ErrSource string
const (
	ErrSourcePrincipal ErrSource = "P.attr"
	ErrSourceResource  ErrSource = "R.attr"
)

type Loader 

type Loader interface {
	LoadSchema(context.Context, string) (io.ReadCloser, error)
}

type Manager 

type Manager interface {
	ValidateCheckInput(context.Context, *policyv1.Schemas, *enginev1.CheckInput) (*ValidationResult, error)
	ValidatePlanResourcesInput(context.Context, *policyv1.Schemas, *enginev1.PlanResourcesInput) (*ValidationResult, error)
	// contains filtered or unexported methods
}

func New 

func New(ctx context.Context, loader Loader) (Manager, error)

func NewEphemeral added in v0.45.1 

func NewEphemeral(resolver Resolver) Manager

func NewFromConf added in v0.15.0 

func NewFromConf(_ context.Context, loader Loader, conf *Conf) Manager

func NewStatic added in v0.47.0 

func NewStatic(schemas map[uint64]*policyv1.Schemas, rawSchemas map[string]*runtimev1.RuleTable_JSONSchema) (Manager, error)

func NewStaticFromConf added in v0.47.0 

func NewStaticFromConf(conf *Conf, schemas map[uint64]*policyv1.Schemas, rawSchemas map[string]*runtimev1.RuleTable_JSONSchema) (Manager, error)

type NopManager 

type NopManager struct{}

func NewNopManager 

func NewNopManager() NopManager

func (NopManager) LoadSchema added in v0.47.0 

func (NopManager) LoadSchema(_ context.Context, _ string) (*jsonschema.Schema, error)

func (NopManager) ValidateCheckInput added in v0.19.0 

func (NopManager) ValidateCheckInput(_ context.Context, _ *policyv1.Schemas, _ *enginev1.CheckInput) (*ValidationResult, error)

func (NopManager) ValidatePlanResourcesInput added in v0.19.0 

func (NopManager) ValidatePlanResourcesInput(_ context.Context, _ *policyv1.Schemas, _ *enginev1.PlanResourcesInput) (*ValidationResult, error)

type Resolver added in v0.45.1 

type Resolver func(context.Context, string) (io.ReadCloser, error)

func DefaultResolver added in v0.47.0 

func DefaultResolver(loader Loader) Resolver

func StaticResolver added in v0.47.0 

func StaticResolver(loader Loader) Resolver

type StaticManager added in v0.47.0 

type StaticManager struct {
	// contains filtered or unexported fields
}

func (*StaticManager) LoadSchema added in v0.47.0 

func (m *StaticManager) LoadSchema(ctx context.Context, url string) (*jsonschema.Schema, error)

func (*StaticManager) ValidateCheckInput added in v0.47.0 

func (m *StaticManager) ValidateCheckInput(ctx context.Context, schemas *policyv1.Schemas, input *enginev1.CheckInput) (*ValidationResult, error)

func (*StaticManager) ValidatePlanResourcesInput added in v0.47.0 

func (m *StaticManager) ValidatePlanResourcesInput(ctx context.Context, schemas *policyv1.Schemas, input *enginev1.PlanResourcesInput) (*ValidationResult, error)

type ValidationError 

type ValidationError struct {
	Path    string
	Message string
	Source  ErrSource
}

func (ValidationError) Error 

func (e ValidationError) Error() string

type ValidationErrorList 

type ValidationErrorList []ValidationError

func NewLoadErr added in v0.47.0 

func NewLoadErr(source ErrSource, schema string, err error) ValidationErrorList

func (ValidationErrorList) ErrOrNil 

func (e ValidationErrorList) ErrOrNil() error

func (ValidationErrorList) Error 

func (e ValidationErrorList) Error() string

func (ValidationErrorList) ErrorMessages 

func (e ValidationErrorList) ErrorMessages() []string

func (ValidationErrorList) SchemaErrors 

func (e ValidationErrorList) SchemaErrors() []*schemav1.ValidationError

type ValidationResult 

type ValidationResult struct {
	Errors ValidationErrorList
	Reject bool
}

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.