Skip to main content

PrivacyConfig

victauri_plugin::privacy

Struct PrivacyConfig 

Source 
pub struct PrivacyConfig {
    pub profile: PrivacyProfile,
    pub command_allowlist: Option<HashSet<String>>,
    pub command_blocklist: HashSet<String>,
    pub disabled_tools: HashSet<String>,
    pub storage_key_blocklist: HashSet<String>,
    pub redactor: Redactor,
    pub redaction_enabled: bool,
}
Expand description

Privacy controls for the MCP server.

Combines a PrivacyProfile (tiered permission matrix) with fine-grained overrides: command allowlists/blocklists, per-tool disabling, and output redaction.

Precedence: explicit disabled_tools overrides → profile matrix → allowlist/blocklist.

Fields§

§profile: PrivacyProfile

The active privacy profile tier.

§command_allowlist: Option<HashSet<String>>

If set, only these Tauri commands can be invoked (positive allowlist).

§command_blocklist: HashSet<String>

Tauri commands that are always blocked, even if on the allowlist.

§disabled_tools: HashSet<String>

MCP tool/action names explicitly disabled (override layer on top of profile).

§storage_key_blocklist: HashSet<String>

localStorage/sessionStorage keys that storage.set must never write (operator-configured, since which keys carry app trust is app-specific).

§redactor: Redactor

Output redactor with regex and JSON-key matching.

§redaction_enabled: bool

Whether output redaction is active.

Implementations§

Source§

impl PrivacyConfig

Source

pub fn is_command_allowed(&self, command: &str) -> bool

Returns true if the Tauri command passes both the allowlist and blocklist.

Source

pub fn is_storage_key_allowed(&self, key: &str) -> bool

Returns true if storage.set may write the given storage key (i.e. the key is not in the operator’s storage_key_blocklist). Use this to protect keys an app trusts for auth/role/tier/feature-flag decisions (audit #33).

Source

pub fn is_tool_enabled(&self, tool_or_action: &str) -> bool

Returns true if the given tool or qualified action (e.g. "window.manage") is permitted by the current profile AND not in the explicit disabled set.

Source

pub fn is_call_allowed(&self, bare_tool: &str, capability: &str) -> bool

Authoritative dispatch gate for a tool call.

bare_tool is the top-level tool name (e.g. "recording"); capability is the canonical matrix identity for the specific action (e.g. "recording.replay"), as resolved by mcp::authz::canonical_capability. A call is allowed only when:

  1. the operator has not explicitly disabled the whole tool by its bare name (disable_tool("recording") must block every recording.* action); AND
  2. the resolved capability is permitted by the profile and not itself in disabled_tools.

This is what closes the per-action authorization gap: an action whose handler forgot to check it is still gated here, and a bare-name disable now covers all of a compound tool’s actions.

Source

pub fn is_invoke_allowed(&self, command: &str) -> bool

Check whether invoke_command is allowed for a specific command name.

In Test profile, invoke_command is only allowed if the command is on the allowlist. In FullControl, it’s always allowed. In Observe, always blocked.

Source

pub fn redact_output(&self, output: &str) -> String

Apply redaction rules to the output string if redaction is enabled.

Trait Implementations§

Source§

impl Default for PrivacyConfig

Source§

fn default() -> PrivacyConfig

Returns the “default value” for a type. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<A, B, T> HttpServerConnExec<A, B> for T
where B: Body,

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more