permission-translation 0.3.0

A library for translating hexadecimal permission values into human-readable capability sets
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148

//! # Basic Usage Example
//!
//! This example demonstrates the core functionality of the permission translation library.
//!
//! Run this example with:
//! ```bash
//! cargo run --example basic_usage
//! ```
//!
//! This example shows how to:
//! - Create capability descriptors
//! - Combine permissions using bitwise operations
//! - Validate permission values
//! - Extract human-readable capabilities
//! - Check for specific capabilities

use permission_translation::{
    checks::{get_max_hex_value_descriptor, is_valid_hex},
    models::{CapabilityDescriptor, CapabilityHexUnitValue, CapilityHexValue},
    role_capability::RoleCapability,
};

/// Main example function demonstrating permission translation library usage.
fn main() -> Result<(), Box<dyn std::error::Error>> {
    println!("=== Permission Translation Library Demo ===\n");

    // Step 1: Create a capability descriptor with server management permissions
    println!("1. Creating capability descriptor...");
    let mut permission_descriptor: CapabilityDescriptor = CapabilityDescriptor::new();
    permission_descriptor.insert("Administrator".to_string(), 0x1); // Binary: 00001
    permission_descriptor.insert("ManageServer".to_string(), 0x2); // Binary: 00010
    permission_descriptor.insert("ManageRoles".to_string(), 0x4); // Binary: 00100
    permission_descriptor.insert("CreateInvitation".to_string(), 0x8); // Binary: 01000
    permission_descriptor.insert("ManageChannels".to_string(), 0x10); // Binary: 10000

    println!("   Capabilities defined:");
    for (name, &hex_value) in &permission_descriptor {
        println!(
            "   - {}: 0x{:X} (binary: {:05b})",
            name, hex_value, hex_value
        );
    }
    println!();

    // Step 2: Calculate maximum possible permission value
    let max_permission = get_max_hex_value_descriptor(&permission_descriptor);
    println!(
        "2. Maximum possible permission value: 0x{:X} (binary: {:05b})\n",
        max_permission, max_permission
    );

    // Step 3: Create different permission combinations
    println!("3. Creating different role examples...");

    // Example 1: Administrator only
    let admin_value: CapabilityHexUnitValue = permission_descriptor
        .get("Administrator")
        .ok_or("Administrator capability not found")?
        .to_owned();

    println!("   Admin Role (0x{:X}):", admin_value);
    let admin_role = RoleCapability::new(permission_descriptor.clone(), admin_value);
    println!("   Capabilities: {:?}", admin_role.to_name_set());
    println!(
        "   Has Administrator: {}",
        admin_role.has_capability(&"Administrator".to_string())
    );
    println!(
        "   Has ManageServer: {}",
        admin_role.has_capability(&"ManageServer".to_string())
    );
    println!();

    // Example 2: Combined permissions (Administrator + ManageServer)
    let manage_server_value: CapabilityHexUnitValue = permission_descriptor
        .get("ManageServer")
        .ok_or("ManageServer capability not found")?
        .clone();

    let combined_permission: CapilityHexValue = admin_value | manage_server_value;
    println!("   Combined Role (0x{:X}):", combined_permission);
    let combined_role = RoleCapability::new(permission_descriptor.clone(), combined_permission);
    println!("   Capabilities: {:?}", combined_role.to_name_set());
    println!("   Hex values: {:?}", combined_role.to_hex_set());
    println!();

    // Example 3: Full permissions role
    let full_permission = max_permission;
    println!("   Full Permissions Role (0x{:X}):", full_permission);
    let full_role = RoleCapability::new(permission_descriptor.clone(), full_permission);
    println!("   Capabilities: {:?}", full_role.to_name_set());
    println!();

    // Step 4: Demonstrate validation
    println!("4. Permission validation examples...");

    // Valid permissions
    let valid_permissions = vec![0x1, 0x3, 0x7, 0x1F]; // Various valid combinations
    println!("   Valid permissions:");
    for &perm in &valid_permissions {
        let is_valid = is_valid_hex(perm, &permission_descriptor);
        println!(
            "   - 0x{:X}: {} (binary: {:05b})",
            perm,
            if is_valid { "" } else { "" },
            perm
        );
    }

    // Invalid permissions
    let invalid_permissions = vec![0x20, 0x40, 0x100]; // Values outside descriptor
    println!("   Invalid permissions:");
    for &perm in &invalid_permissions {
        let is_valid = is_valid_hex(perm, &permission_descriptor);
        println!(
            "   - 0x{:X}: {} (binary: {:08b})",
            perm,
            if is_valid { "" } else { "" },
            perm
        );
    }
    println!();

    // Step 5: Demonstrate capability checking
    println!("5. Capability checking examples...");
    let test_role = RoleCapability::new(permission_descriptor.clone(), 0x7); // Admin + ManageServer + ManageRoles

    let capabilities_to_check = vec![
        "Administrator",
        "ManageServer",
        "ManageRoles",
        "CreateInvitation",
        "NonExistentCapability",
    ];

    println!("   Role permissions (0x7): {:?}", test_role.to_name_set());
    for capability in capabilities_to_check {
        let has_capability = test_role.has_capability(&capability.to_string());
        println!(
            "   - Has '{}': {}",
            capability,
            if has_capability { "" } else { "" }
        );
    }

    println!("\n=== Demo completed successfully! ===");
    Ok(())
}