aws-iam 0.2.2

A Rust crate for dealing with AWS IAM Policy resources
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81

use crate::model::{ConditionValue, PrincipalType, QString};
use crate::offline::EvaluationError;
use serde::{Deserialize, Serialize};
use std::collections::HashMap;
use std::str::FromStr;
use uuid::Uuid;

// ------------------------------------------------------------------------------------------------
// Public Types
// ------------------------------------------------------------------------------------------------

///
/// Alias for the hash used to store environment values.
///
pub type Environment = HashMap<QString, ConditionValue>;

///
/// This struct represents a request and it's environment against which a policy, or policies,
/// will be evaluated.
///
#[derive(Debug, Deserialize, Serialize)]
pub struct Request {
    /// An optional request identifier.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub request_id: Option<String>,
    /// The principal making the request.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub principal: Option<Principal>,
    /// The action being requested.
    pub action: QString,
    /// The resource to which the action is applied.
    pub resource: String,
    /// Additional properties which may be used in conditions.
    #[serde(skip_serializing_if = "HashMap::is_empty")]
    pub environment: Environment,
}

///
/// A structure representing a single principal.
///
#[derive(Debug, Deserialize, Serialize)]
pub struct Principal {
    /// The principal type used in Policy documents.
    pub principal_type: PrincipalType,
    /// The corresponding principal ID.
    pub identifier: String,
}

// ------------------------------------------------------------------------------------------------
// Implementations
// ------------------------------------------------------------------------------------------------

impl Request {
    /// Return the value of an environment variable.
    pub fn get(&self, key: &QString) -> Result<&ConditionValue, EvaluationError> {
        match self.environment.get(key) {
            Some(v) => Ok(v),
            None => Err(EvaluationError::UnknownVariableName(key.to_string())),
        }
    }

    /// Return the value of an environment variable.
    pub fn get_(&self, key: &str) -> Result<&ConditionValue, EvaluationError> {
        let key = QString::from_str(key)
            .map_err(|_| EvaluationError::InvalidVariableName(key.to_string()))?;
        match self.environment.get(&key) {
            Some(v) => Ok(v),
            None => Err(EvaluationError::UnknownVariableName(key.to_string())),
        }
    }

    /// Return the request_id within the request or generate one if it is `None`.
    pub fn request_id() -> Option<String> {
        Some(
            Uuid::new_v4()
                .as_hyphenated()
                .encode_lower(&mut Uuid::encode_buffer())
                .to_string(),
        )
    }
}