pub struct Rule {
pub id: String,
pub effect: Rule_Effect,
pub action: Option<ActionName>,
pub action_pattern: Option<String>,
pub subject_pattern: Option<String>,
pub target_patterns: Option<Vec<String>>,
pub risk_at_most: Option<RiskClass>,
pub proof_required: Option<ProofLevel>,
pub approval: Option<ApprovalRequirement>,
pub constraints: Option<Vec<Constraint>>,
pub reason: Option<String>,
}Expand description
A single policy rule.
Fields§
§id: StringRule identifier, used in proofs and audit logs.
effect: Rule_EffectDecision produced when the rule matches.
action: Option<ActionName>Exact action this rule applies to.
action_pattern: Option<String>Regex (ECMAScript) matched against action names when an exact action is not set.
subject_pattern: Option<String>Regex matched against the subject actor URI.
target_patterns: Option<Vec<String>>Glob patterns matched against the action target.
risk_at_most: Option<RiskClass>Rule applies only to actions whose risk is at or below this class.
proof_required: Option<ProofLevel>Minimum proof level demanded when this rule applies.
approval: Option<ApprovalRequirement>Approval requirement demanded when this rule applies.
constraints: Option<Vec<Constraint>>Additional constraints attached by this rule.
reason: Option<String>Human-readable reason emitted in the decision.
Trait Implementations§
Source§impl<'de> Deserialize<'de> for Rule
impl<'de> Deserialize<'de> for Rule
Source§fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>where
__D: Deserializer<'de>,
fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>where
__D: Deserializer<'de>,
Deserialize this value from the given Serde deserializer. Read more
impl Eq for Rule
impl StructuralPartialEq for Rule
Auto Trait Implementations§
impl Freeze for Rule
impl RefUnwindSafe for Rule
impl Send for Rule
impl Sync for Rule
impl Unpin for Rule
impl UnsafeUnpin for Rule
impl UnwindSafe for Rule
Blanket Implementations§
Source§impl<'a, T, E> AsTaggedExplicit<'a, E> for Twhere
T: 'a,
impl<'a, T, E> AsTaggedExplicit<'a, E> for Twhere
T: 'a,
Source§impl<'a, T, E> AsTaggedImplicit<'a, E> for Twhere
T: 'a,
impl<'a, T, E> AsTaggedImplicit<'a, E> for Twhere
T: 'a,
Source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
Source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
Mutably borrows from an owned value. Read more
Source§impl<T> CloneToUninit for Twhere
T: Clone,
impl<T> CloneToUninit for Twhere
T: Clone,
impl<T> DeserializeOwned for Twhere
T: for<'de> Deserialize<'de>,
Source§impl<Q, K> Equivalent<K> for Q
impl<Q, K> Equivalent<K> for Q
Source§impl<Q, K> Equivalent<K> for Q
impl<Q, K> Equivalent<K> for Q
Source§impl<Q, K> Equivalent<K> for Q
impl<Q, K> Equivalent<K> for Q
Source§fn equivalent(&self, key: &K) -> bool
fn equivalent(&self, key: &K) -> bool
Compare self to
key and return true if they are equal.Source§impl<T> IntoEither for T
impl<T> IntoEither for T
Source§fn into_either(self, into_left: bool) -> Either<Self, Self>
fn into_either(self, into_left: bool) -> Either<Self, Self>
Converts
self into a Left variant of Either<Self, Self>
if into_left is true.
Converts self into a Right variant of Either<Self, Self>
otherwise. Read moreSource§fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
Converts
self into a Left variant of Either<Self, Self>
if into_left(&self) returns true.
Converts self into a Right variant of Either<Self, Self>
otherwise. Read more