3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-05-08 06:46:02 +02:00
Code Issues Projects Releases Packages Wiki Activity

config: add source ppl field (#5419)

Browse source
This commit is contained in:
Caleb Doxsey 2025-01-14 10:13:56 -07:00 committed by GitHub
parent 21b9e7890c
commit c571769adc
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
3 changed files with 546 additions and 526 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
config/policy.go
View file

@ -205,6 +205,7 @@ type SubPolicy struct {
AllowedDomains []string `mapstructure:"allowed_domains" yaml:"allowed_domains,omitempty" json:"allowed_domains,omitempty"` AllowedDomains []string `mapstructure:"allowed_domains" yaml:"allowed_domains,omitempty" json:"allowed_domains,omitempty"`
AllowedIDPClaims identity.FlattenedClaims `mapstructure:"allowed_idp_claims" yaml:"allowed_idp_claims,omitempty" json:"allowed_idp_claims,omitempty"` AllowedIDPClaims identity.FlattenedClaims `mapstructure:"allowed_idp_claims" yaml:"allowed_idp_claims,omitempty" json:"allowed_idp_claims,omitempty"`
Rego []string `mapstructure:"rego" yaml:"rego" json:"rego,omitempty"` Rego []string `mapstructure:"rego" yaml:"rego" json:"rego,omitempty"`
SourcePPL string `mapstructure:"source_ppl" yaml:"source_ppl,omitempty" json:"source_ppl,omitempty"`
// Explanation is the explanation for why a policy failed. // Explanation is the explanation for why a policy failed.
Explanation string `mapstructure:"explanation" yaml:"explanation" json:"explanation,omitempty"` Explanation string `mapstructure:"explanation" yaml:"explanation" json:"explanation,omitempty"`
@ -389,6 +390,7 @@ func NewPolicyFromProto(pb *configpb.Route) (*Policy, error) {
AllowedDomains: sp.GetAllowedDomains(), AllowedDomains: sp.GetAllowedDomains(),
AllowedIDPClaims: identity.NewFlattenedClaimsFromPB(sp.GetAllowedIdpClaims()), AllowedIDPClaims: identity.NewFlattenedClaimsFromPB(sp.GetAllowedIdpClaims()),
Rego: sp.GetRego(), Rego: sp.GetRego(),
SourcePPL: sp.GetSourcePpl(),
Explanation: sp.GetExplanation(), Explanation: sp.GetExplanation(),
Remediation: sp.GetRemediation(), Remediation: sp.GetRemediation(),
@ -411,7 +413,7 @@ func (p *Policy) ToProto() (*configpb.Route, error) {
} }
sps := make([]*configpb.Policy, 0, len(p.SubPolicies)) sps := make([]*configpb.Policy, 0, len(p.SubPolicies))
for _, sp := range p.SubPolicies { for _, sp := range p.SubPolicies {
sps = append(sps, &configpb.Policy{ p := &configpb.Policy{
Id: sp.ID, Id: sp.ID,
Name: sp.Name, Name: sp.Name,
AllowedUsers: sp.AllowedUsers, AllowedUsers: sp.AllowedUsers,
@ -420,7 +422,11 @@ func (p *Policy) ToProto() (*configpb.Route, error) {
Explanation: sp.Explanation, Explanation: sp.Explanation,
Remediation: sp.Remediation, Remediation: sp.Remediation,
Rego: sp.Rego, Rego: sp.Rego,
}) }
if sp.SourcePPL != "" {
p.SourcePpl = proto.String(sp.SourcePPL)
}
sps = append(sps, p)
} }
pb := &configpb.Route{ pb := &configpb.Route{

1061
pkg/grpc/config/config.pb.go
View file

File diff suppressed because it is too large Load diff

1
pkg/grpc/config/config.proto
View file

@ -141,6 +141,7 @@ message Policy {
repeated string allowed_domains = 5; repeated string allowed_domains = 5;
map<string, google.protobuf.ListValue> allowed_idp_claims = 7; map<string, google.protobuf.ListValue> allowed_idp_claims = 7;
repeated string rego = 6; repeated string rego = 6;
optional string source_ppl = 10;
string explanation = 8; string explanation = 8;
string remediation = 9; string remediation = 9;