CompiledPolicy

regorus

Struct CompiledPolicy 

Source 
pub struct CompiledPolicy { /* private fields */ }
Expand description

Wrapper around CompiledPolicyData that holds an Rc reference.

Implementations§

Source§

impl CompiledPolicy

Source

pub fn get_rules(&self) -> &Map<String, Vec<Ref<Rule>>>

Get access to the rules in the compiled policy for downstream consumers like the RVM compiler.

Source

pub fn get_modules(&self) -> &Vec<Ref<Module>>

Get access to the modules in the compiled policy.

Source

pub fn is_rego_v0(&self) -> bool

Returns true when the compiled policy should use Rego v0 semantics.

Source§

impl CompiledPolicy

Source

pub fn eval_with_input(&self, input: Value) -> Result<Value>

Evaluate the compiled policy with the given input.

For target policies, evaluates the target’s effect rule. For regular policies, evaluates the originally compiled rule.

  • input: Input data (resource) to validate against the policy.

Returns the result of evaluating the rule.

Source

pub fn get_policy_info(&self) -> Result<PolicyInfo>

Get information about the compiled policy including metadata about modules, target configuration, and resource types.

Returns a crate::policy_info::PolicyInfo struct containing comprehensive information about the compiled policy such as module IDs, target name, applicable resource types, entry point rule, and parameters.

§Examples
use regorus::*;


// Compile the policy
let policy_rego = r#"
    package policy.example
    import rego.v1
    __target__ := "target.tests.sample_test_target"
     
    effect := "allow" if {
        input.type == "storage_account"
        input.location in ["eastus", "westus"]
    }
"#;

let modules = vec![regorus::PolicyModule {
    id: "policy.rego".into(),
    content: policy_rego.into(),
}];

#[cfg(feature = "azure_policy")]
let compiled = regorus::compile_policy_for_target(Value::new_object(), &modules)?;
#[cfg(not(feature = "azure_policy"))]
let compiled = regorus::compile_policy_with_entrypoint(Value::new_object(), &modules, "allow".into())?;
let info = compiled.get_policy_info()?;

assert_eq!(info.target_name, Some("target.tests.sample_test_target".into()));
assert_eq!(info.effect_rule, Some("effect".into()));
assert!(info.module_ids.len() > 0);

Trait Implementations§

Source§

impl Clone for CompiledPolicy

Source§

fn clone(&self) -> CompiledPolicy

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for CompiledPolicy

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V