cedar_policy 0.1.0-x64-mingw-ucrt → 0.2.0-x64-mingw-ucrt

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a2273f99ccb0c3ed046ca598f28cc8d24df141f4f680ea0559f3eea947d874bb
-  data.tar.gz: cdcfc7f05122bd747fe462b9f5158f9542bc4cef897d338f467050e8fed3f1fa
+  metadata.gz: 352fb8b0bba39354b308498edb3db13be6adaadbbce79d1bb5b609c9bd960a6c
+  data.tar.gz: '0499e1d6fb5fcda311a6ea3f00311c1dc1b6867c2948933cb7e61006dd54f220'
 SHA512:
-  metadata.gz: 046aedda152a32bce83c3f16f3881398ee3b6adc14479e76802c52f045645170d48e0a1d9b9b202bb6d1a6f6b612836f768ed5193b9f590ba4e722aaaed7f472
-  data.tar.gz: a645cf0911c5b01367bcbfd596e688f334160fc665f590b5ea2355b57ff838055df544a009c3c258f46d45ac5edd68190d4ac5bfd0dedade551b6232a275cbaf
+  metadata.gz: 34821ca0271fe61863365a23c7e5b23042e174bf2223b04f06c417fa5e808ebbb9e6a6339f1d904b905addbe10ab94ab103175069b2f0014db27ad24d045e07d
+  data.tar.gz: 3f318558b5fb444d8ecf5bf69ffcf791c81b513b04c41f6fd8ac7493a91820e070fc192b661698a893877eba7d744e7aa63f6e722ae29ce1dd46007dcbef0f66

data/.cross_rubies

@@ -1,23 +1,19 @@
 3.0.0:aarch64-linux
-3.0.0:arm-linux
 3.0.0:arm64-darwin
 3.0.0:x64-mingw32
 3.0.0:x86_64-darwin
 3.0.0:x86_64-linux
 3.1.0:aarch64-linux
-3.1.0:arm-linux
 3.1.0:arm64-darwin
 3.1.0:x64-mingw-ucrt
 3.1.0:x86_64-darwin
 3.1.0:x86_64-linux
 3.2.0:aarch64-linux
-3.2.0:arm-linux
 3.2.0:arm64-darwin
 3.2.0:x64-mingw-ucrt
 3.2.0:x86_64-darwin
 3.2.0:x86_64-linux
 3.3.0:aarch64-linux
-3.3.0:arm-linux
 3.3.0:arm64-darwin
 3.3.0:x64-mingw-ucrt
 3.3.0:x86_64-darwin

data/README.md

@@ -1,24 +1,60 @@
-# CedarPolicy
+Cedar Policy
+===
 
-TODO: Delete this and the text below, and describe your gem
-
-Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/cedar_policy`. To experiment with that code, run `bin/console` for an interactive prompt.
+Ruby bindings for Cedar policy evaluation engine.
 
 ## Installation
 
-TODO: Replace `UPDATE_WITH_YOUR_GEM_NAME_IMMEDIATELY_AFTER_RELEASE_TO_RUBYGEMS_ORG` with your gem name right after releasing it to RubyGems.org. Please do not do it earlier due to security reasons. Alternatively, replace this section with instructions to install your gem from git if you don't plan to release to RubyGems.org.
-
 Install the gem and add to the application's Gemfile by executing:
 
-    $ bundle add UPDATE_WITH_YOUR_GEM_NAME_IMMEDIATELY_AFTER_RELEASE_TO_RUBYGEMS_ORG
+    $ bundle add cedar_policy
 
 If bundler is not being used to manage dependencies, install the gem by executing:
 
-    $ gem install UPDATE_WITH_YOUR_GEM_NAME_IMMEDIATELY_AFTER_RELEASE_TO_RUBYGEMS_ORG
+    $ gem install cedar_policy
 
 ## Usage
 
-TODO: Write usage instructions here
+> [!WARNING]
+> This gem is still under development and the API may change in the future.
+
+```ruby
+policy = <<~POLICY
+          permit(
+            principal == AdminUser::"1",
+            action == Action::"view",
+            resource
+          );
+        POLICY
+policy_set = CedarPolicy::PolicySet.new(policy)
+
+principal = CedarPolicy::EntityUid.new("User", "1")
+action = CedarPolicy::EntityUid.new("Action", "view")
+resource = CedarPolicy::EntityUid.new("Image", "1")
+ctx = CedarPolicy::Context.new
+
+request = CedarPolicy::Request.new(principal, action, resource, ctx)
+
+entities = CedarPolicy::Entities.new([
+    CedarPolicy::Entity.new(
+        CedarPolicy::EntityUid.new("User", "1"),
+        { role: "admin" }
+    )
+])
+
+authorizer = CedarPolicy::Authorizer.new
+authorizer.authorize?(request, policy_set, entities) # => true
+
+response = authorizer.authorize(request, policy_set, entities)
+response.decision # => CedarPolicy::Decision::ALLOW
+```
+
+## Roadmap
+
+* [ ] Add DSL to improve developer experience
+* [ ] Diagnostics return with response
+* [ ] Validator support
+* [ ] Schema support
 
 ## Development
 
@@ -28,7 +64,7 @@ To install this gem onto your local machine, run `bundle exec rake install`. To
 
 ## Contributing
 
-Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/cedar_policy.
+Bug reports and pull requests are welcome on GitHub at https://github.com/elct9620/cedar-policy-rb.
 
 ## License
 

data/lib/cedar_policy/context.rb

@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+module CedarPolicy
+  # :nodoc:
+  class Context
+    def initialize(context = {})
+      @context = context
+    end
+
+    def to_hash
+      CedarPolicy.deep_serialize(@context)
+    end
+  end
+end

data/lib/cedar_policy/entities.rb

@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+module CedarPolicy
+  # :nodoc:
+  class Entities
+    def initialize(entities = [])
+      @entities = Set.new(entities)
+    end
+
+    def to_ary
+      @entities.map { |entity| CedarPolicy.deep_serialize(entity) }
+    end
+  end
+end

data/lib/cedar_policy/entity.rb

@@ -0,0 +1,32 @@
+# frozen_string_literal: true
+
+module CedarPolicy
+  # :nodoc:
+  class Entity
+    attr_reader :uid, :attrs, :parents
+
+    def initialize(uid, attrs = {}, parents = [])
+      raise ArgumentError unless uid.is_a?(EntityUid)
+
+      @uid = uid
+      @attrs = attrs
+      @parents = Set.new(parents)
+    end
+
+    def ==(other)
+      hahs == other.hash
+    end
+
+    def hash
+      [self.class, @uid].hash
+    end
+
+    def to_hash
+      {
+        uid: @uid,
+        attrs: @attrs,
+        parents: @parents.to_a
+      }
+    end
+  end
+end

data/lib/cedar_policy/entity_uid.rb

@@ -0,0 +1,31 @@
+# frozen_string_literal: true
+
+module CedarPolicy
+  # :nodoc:
+  class EntityUid
+    attr_reader :type_name, :id
+
+    def initialize(type_name, id)
+      @type_name = type_name.to_s
+      @id = id.to_s
+    end
+
+    def ==(other)
+      hash == other.hash
+    end
+
+    def hash
+      [self.class, @type_name, @id].hash
+    end
+
+    def to_str
+      "#{@type_name}::#{@id.inspect}"
+    end
+    alias to_s to_str
+    alias inspect to_str
+
+    def to_hash
+      { type: @type_name, id: @id }
+    end
+  end
+end

data/lib/cedar_policy/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module CedarPolicy
-  VERSION = "0.1.0"
+  VERSION = "0.2.0"
 end

data/lib/cedar_policy.rb

@@ -1,9 +1,29 @@
 # frozen_string_literal: true
 
+require "json"
+require "set"
+
 require_relative "cedar_policy/version"
 require_relative "cedar_policy/cedar_policy"
+require_relative "cedar_policy/entity_uid"
+require_relative "cedar_policy/entity"
+require_relative "cedar_policy/entities"
+require_relative "cedar_policy/context"
 
+# :nodoc:
 module CedarPolicy
   class Error < StandardError; end
-  # Your code goes here...
+
+  def self.deep_serialize(input)
+    input.to_hash.each_with_object({}) do |(key, value), output|
+      output[key.to_sym] =
+        case value
+        when ->(h) { h.respond_to?(:to_hash) } then deep_serialize(value)
+        when Array
+          value.map { |item| item.respond_to?(:to_hash) ? deep_serialize(item) : item }
+        else
+          value
+        end
+    end
+  end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: cedar_policy
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: x64-mingw-ucrt
 authors:
 - Aotokitsuruya
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2024-08-13 00:00:00.000000000 Z
+date: 2024-08-14 00:00:00.000000000 Z
 dependencies: []
 description: Ruby bindings for Cedar policy evaluation engine.
 email:
@@ -27,6 +27,10 @@ files:
 - lib/cedar_policy/3.1/cedar_policy.so
 - lib/cedar_policy/3.2/cedar_policy.so
 - lib/cedar_policy/3.3/cedar_policy.so
+- lib/cedar_policy/context.rb
+- lib/cedar_policy/entities.rb
+- lib/cedar_policy/entity.rb
+- lib/cedar_policy/entity_uid.rb
 - lib/cedar_policy/version.rb
 - sig/cedar_policy.rbs
 homepage: https://github.com/elct9620/cedar-policy-rb