Struct GroupConfig 

pub struct GroupConfig {
    pub groups: HashMap<String, Group>,
}

The frozen group-to-capability map consumed by CapabilityCheck.

Built at kernel boot from built-ins merged with any operator-provided groups.toml. Treat the resulting value as immutable — hot reload is deferred to Layer 6.

Fields

groups: HashMap<String, Group>

Group name → group definition.

Implementations

impl GroupConfig

pub fn save(&self, home: &AstridHome) -> GroupConfigResult<()>

Save the config’s custom groups to home’s etc/groups.toml, creating etc/ if needed.

Built-in groups are never serialized — they are baked into GroupConfig::builtin_only and rebuilt on load. The result is idempotent: loading the written file back yields the same in-memory config.

Errors

See Self::save_to_path.

pub fn save_to_path(&self, path: &Path) -> GroupConfigResult<()>

Save to an explicit path. See Self::save for semantics.

Errors

• GroupConfigError::Io on filesystem failure (parent create, tempfile open/write, rename).
• GroupConfigError::Parse never — serialization is infallible for the shape we produce.

impl GroupConfig

pub fn path_for(home: &AstridHome) -> PathBuf

Canonical on-disk path for the system-wide groups config.

pub fn builtin_only() -> Self

Return a GroupConfig containing only the built-in groups.

pub fn load(home: &AstridHome) -> GroupConfigResult<Self>

Load the group config from home’s etc/groups.toml, falling back to Self::builtin_only if the file is absent.

Errors

See GroupConfigError.

pub fn load_from_path(path: &Path) -> GroupConfigResult<Self>

Load the group config from an explicit path.

Errors

See GroupConfigError.

pub fn from_toml_str(contents: &str) -> GroupConfigResult<Self>

Parse a GroupConfig from raw TOML, merging with the built-ins.

Errors

See GroupConfigError.

pub fn get(&self, name: &str) -> Option<&Group>

Look up a group by name, if present.

pub fn len(&self) -> usize

Number of groups in the resolved config (built-ins + custom).

pub fn is_empty(&self) -> bool

Whether the config contains no groups. Always false in practice because built-ins are baked in.

pub fn iter(&self) -> impl Iterator<Item = (&String, &Group)>

Iterator over (group_name, &Group).

pub fn is_builtin_name(name: &str) -> bool

Return true if name refers to one of the reserved built-in groups (BUILTIN_ADMIN, BUILTIN_AGENT, BUILTIN_RESTRICTED).

pub fn insert_custom_group( &self, name: String, group: Group, ) -> GroupConfigResult<Self>

Return a new GroupConfig with a custom group inserted.

Validates the group with the same rules the boot loader applies to groups.toml: built-in names are rejected, every capability passes validate_capability, and the universal * pattern requires unsafe_admin = true.

Errors

• GroupConfigError::RedefinedBuiltin if name is a built-in.
• GroupConfigError::DuplicateName if name already exists in the custom set (an existing custom group must be removed or modified, not re-inserted).
• GroupConfigError::InvalidCapability on a bad capability string.
• GroupConfigError::UnsafeUniversalGrant if group.capabilities contains * without unsafe_admin = true.

pub fn modify_custom_group( &self, name: &str, capabilities: Option<Vec<String>>, description: Option<Option<String>>, unsafe_admin: Option<bool>, ) -> GroupConfigResult<Self>

Return a new GroupConfig with a partial update applied to a custom group. Any field left as None is preserved.

Errors

• GroupConfigError::RedefinedBuiltin if name is a built-in.
• GroupConfigError::DuplicateName if name is unknown — modify is strictly an update, not an upsert.
• GroupConfigError::InvalidCapability / GroupConfigError::UnsafeUniversalGrant from revalidation.

pub fn remove_group(&self, name: &str) -> GroupConfigResult<Self>

Return a new GroupConfig with name removed.

Built-in groups cannot be removed and produce GroupConfigError::RedefinedBuiltin. Removing an unknown custom group produces GroupConfigError::DuplicateName (reused as the “not a custom group I know about” sentinel).

Errors

See above.

Trait Implementations

impl Clone for GroupConfig

fn clone(&self) -> GroupConfig

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for GroupConfig

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Default for GroupConfig

fn default() -> Self

Returns the “default value” for a type.

impl<'de> Deserialize<'de> for GroupConfig

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>

where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer.

impl Serialize for GroupConfig

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>

where __S: Serializer,

Serialize this value into the given Serde serializer.