Skip to main content

ValidationReport

webgates_core::permissions::validation_report

Struct ValidationReport

pub struct ValidationReport {
    pub collisions: Vec<PermissionCollision>,
}

Expand description

Validation outcome for a set of permission strings.

This is the main result type returned by permission validation APIs. It tells you whether the permission set is safe to use and, if not, what needs to be fixed.

Produced by:

§Terminology

Duplicate permission: The exact same string appears more than once. These are represented internally as a collision where every entry in the collision group is identical.
Hash collision: Two different normalized permission strings that deterministically hash to the same ID. This is extremely unlikely and should be treated as a critical configuration problem if it ever occurs.

§Interpreting Results

ValidationReport::is_valid is true when there are no collisions at all.
ValidationReport::duplicates returns only pure duplicates.
Distinct collisions are more severe and appear in log output and ValidationReport::detailed_errors.

§Typical Actions

Situation	Action	Severity
Report is valid	Proceed with startup or reload	None
One or more duplicates only	Remove redundant entries	Low or medium
Any non-duplicate hash collision	Rename at least one colliding permission immediately	High

§Convenience Methods

ValidationReport::summary returns a compact human-readable description.
ValidationReport::detailed_errors returns issue-by-issue diagnostics.
ValidationReport::total_issues returns the number of collision groups.

§Example

use webgates_core::permissions::application_validator::ApplicationValidator;
use webgates_core::permissions::collision_checker::PermissionCollisionChecker;

let mut checker = PermissionCollisionChecker::new(vec![
    "user:read".into(),
    "user:read".into(),
    "admin:full".into(),
]);
let report = checker.validate().map_err(|err| err.to_string())?;
assert!(!report.is_valid());
assert_eq!(report.duplicates(), vec!["user:read".to_string()]);

let report2 = ApplicationValidator::new()
    .add_permissions(["user:read", "user:read"])
    .validate()
    .map_err(|err| err.to_string())?;
assert!(!report2.is_valid());

§Logging

Use ValidationReport::log_results for structured tracing output. Successful validation logs at INFO, and issues log at WARN.

Fields§

§collisions: Vec<PermissionCollision>

All collision groups (duplicates and true hash collisions).

Each entry contains:

The 64‑bit permission ID (id)
The list of original permission strings that map to that ID

Invariants:

Length >= 2 for each permissions vector
A “duplicate” group has every element string-equal
A “distinct collision” group has at least one differing string

Implementations§

impl ValidationReport

pub fn is_valid(&self) -> bool

Returns true when validation passed without any issues.

A report is valid when there are no duplicate groups and no true hash collisions.

pub fn duplicates(&self) -> Vec<String>

Returns duplicate permission strings found in the report.

Duplicates are collision groups where all permission strings are identical.

pub fn summary(&self) -> String

Returns a human-readable summary of the validation result.

For successful validation, this returns a success message. For failed validation, it summarizes duplicates and true hash collisions.

pub fn log_results(&self)

Logs validation results using tracing.

Successful validation logs at INFO. Any duplicates or collisions log at WARN.

pub fn detailed_errors(&self) -> Vec<String>

Returns detailed issue strings for debugging or reporting.

pub fn total_issues(&self) -> usize

Returns the number of collision groups recorded in the report.

Trait Implementations§

impl Debug for ValidationReport

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

impl Default for ValidationReport

fn default() -> ValidationReport

Returns the “default value” for a type. Read more

Auto Trait Implementations§

impl Freeze for ValidationReport

impl RefUnwindSafe for ValidationReport

impl Send for ValidationReport

impl Sync for ValidationReport

impl Unpin for ValidationReport

impl UnsafeUnpin for ValidationReport

impl UnwindSafe for ValidationReport

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T> Instrument for T

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<T> WithSubscriber for T

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more