Struct CompiledPolicy

pub struct CompiledPolicy { /* private fields */ }

Expand description

Wrapper around CompiledPolicyData that holds an Rc reference.

Implementations§

impl CompiledPolicy

pub fn eval_with_input(&self, input: Value) -> Result<Value>

Evaluate the compiled policy with the given input.

For target policies, evaluates the target’s effect rule. For regular policies, evaluates the originally compiled rule.

input: Input data (resource) to validate against the policy.

Returns the result of evaluating the rule.

pub fn get_policy_info(&self) -> Result<PolicyInfo>

Get information about the compiled policy including metadata about modules, target configuration, and resource types.

Returns a crate::policy_info::PolicyInfo struct containing comprehensive information about the compiled policy such as module IDs, target name, applicable resource types, entry point rule, and parameters.

§Examples

use regorus::*;


// Compile the policy
let policy_rego = r#"
    package policy.example
    import rego.v1
    __target__ := "target.tests.sample_test_target"
     
    effect := "allow" if {
        input.type == "storage_account"
        input.location in ["eastus", "westus"]
    }
"#;

let modules = vec![regorus::PolicyModule {
    id: "policy.rego".into(),
    content: policy_rego.into(),
}];

#[cfg(feature = "azure_policy")]
let compiled = regorus::compile_policy_for_target(Value::new_object(), &modules)?;
#[cfg(not(feature = "azure_policy"))]
let compiled = regorus::compile_policy_with_entrypoint(Value::new_object(), &modules, "allow".into())?;
let info = compiled.get_policy_info()?;

assert_eq!(info.target_name, Some("target.tests.sample_test_target".into()));
assert_eq!(info.effect_rule, Some("effect".into()));
assert!(info.module_ids.len() > 0);

Trait Implementations§

impl Clone for CompiledPolicy

fn clone(&self) -> CompiledPolicy

Returns a duplicate of the value. Read more

1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for CompiledPolicy

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations§

impl Freeze for CompiledPolicy

impl !RefUnwindSafe for CompiledPolicy

impl Send for CompiledPolicy

impl Sync for CompiledPolicy

impl Unpin for CompiledPolicy

impl !UnwindSafe for CompiledPolicy

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> CloneToUninit for T
where T: Clone,

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)

Performs copy-assignment from self to dest. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> ToOwned for T
where T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V

impl<T> ErasedDestructor for T
where T: 'static,