ockam_abac 0.80.0

Attribute based authorization control
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124

use either::Either;
use minicbor::decode::{self, Decoder};
use minicbor::encode::{self, Encoder, Write};
use minicbor::{CborLen, Decode, Encode};
use ockam_core::compat::string::{String, ToString};
use serde::{Serialize, Serializer};
use str_buf::StrBuf;
use strum::{AsRefStr, Display, EnumIter, EnumString};

macro_rules! define {
    ($t:ident) => {
        #[derive(Debug, Clone, PartialEq, Eq, PartialOrd, Ord, Hash)]
        pub struct $t(Either<String, StrBuf<{ Self::MAX_INLINE_SIZE }>>);

        impl $t {
            pub const MAX_INLINE_SIZE: usize = 24;

            pub const fn inline(s: &str) -> Option<Self> {
                if let Ok(s) = StrBuf::from_str_checked(s) {
                    Some(Self(Either::Right(s)))
                } else {
                    None
                }
            }

            pub const fn assert_inline(s: &str) -> Self {
                Self(Either::Right(StrBuf::from_str(s)))
            }

            pub fn new(s: &str) -> Self {
                if s.len() <= Self::MAX_INLINE_SIZE {
                    return Self::assert_inline(s);
                }
                Self(Either::Left(s.to_string()))
            }

            pub fn as_str(&self) -> &str {
                &self.0
            }

            pub fn to_string(&self) -> String {
                self.as_str().to_string()
            }
        }

        impl From<&str> for $t {
            fn from(s: &str) -> Self {
                Self::new(s)
            }
        }

        impl From<String> for $t {
            fn from(s: String) -> Self {
                if s.len() <= Self::MAX_INLINE_SIZE {
                    return Self::assert_inline(&s);
                }
                Self(Either::Left(s))
            }
        }

        impl core::fmt::Display for $t {
            fn fmt(&self, f: &mut core::fmt::Formatter) -> core::fmt::Result {
                f.write_str(&self.0)
            }
        }

        impl<C> Encode<C> for $t {
            fn encode<W>(
                &self,
                e: &mut Encoder<W>,
                _: &mut C,
            ) -> Result<(), encode::Error<W::Error>>
            where
                W: Write,
            {
                e.str(self.as_str())?.ok()
            }
        }

        impl<C> CborLen<C> for $t {
            fn cbor_len(&self, ctx: &mut C) -> usize {
                self.as_str().cbor_len(ctx)
            }
        }

        impl<'a, C> Decode<'a, C> for $t {
            fn decode(d: &mut Decoder<'a>, _: &mut C) -> Result<$t, decode::Error> {
                let s = d.str()?;
                Ok($t::new(s))
            }
        }

        impl Serialize for $t {
            fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
            where
                S: Serializer,
            {
                serializer.serialize_str(self.as_str())
            }
        }
    };
}

define!(Subject);
define!(ResourceName);

#[derive(
    Clone, Debug, Encode, Decode, CborLen, PartialEq, Eq, EnumString, Display, EnumIter, AsRefStr,
)]
#[cbor(index_only)]
pub enum Action {
    #[n(1)]
    #[strum(serialize = "handle_message")]
    HandleMessage,
}

impl Serialize for Action {
    fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
    where
        S: Serializer,
    {
        serializer.serialize_str(self.as_ref())
    }
}