-
Notifications
You must be signed in to change notification settings - Fork 41
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
7 changed files
with
209 additions
and
45 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,39 +1,74 @@ | ||
import re | ||
import pydash | ||
|
||
from typing import List, Tuple | ||
|
||
_VAR_PATTERN = re.compile(r"{{\s*var\.([\w\.]+)\s*}}") | ||
|
||
class PydashPathNotFound: | ||
pass | ||
|
||
class _VariableNotFound: | ||
pass | ||
|
||
def check_match(string: str, pattern: re.Pattern) -> re.Match: | ||
match_ = re.fullmatch(pattern, string) | ||
return match_ | ||
|
||
def _replace_vars_in_dict(dictionary: dict, var_dict: dict, not_found_vars: List[str]): | ||
""" | ||
Replace the variables in the dictionary with the values from the var_dict | ||
def helper(dictionary: dict, var_pattern: re.Pattern, var_dict: dict): | ||
:param dictionary: The dictionary to replace the variables in | ||
:param var_pattern: The pattern to match the variables | ||
:param var_dict: The dictionary containing the variables | ||
""" | ||
for key, value in dictionary.items(): | ||
if isinstance(value, str): | ||
match = check_match(value, var_pattern) | ||
if bool(match): | ||
dictionary[key] = pydash.get(var_dict, match.group(1), default=PydashPathNotFound) | ||
if not isinstance(value, str): | ||
continue | ||
_replace_var_in_dict(dictionary, key, var_dict, not_found_vars) | ||
|
||
|
||
def replace_vars(policy_dict: dict, var_dict: dict) -> dict: | ||
var_pattern = re.compile(r"{{var\.([\w\.]+)}}") | ||
def _replace_var_in_dict(dictionary: dict, key: str, var_dict: dict, not_found_vars: list): | ||
""" | ||
Replace the variable in the dictionary with the value from the var_dict | ||
This only replaces single dictionary key | ||
evaluators = policy_dict["evaluators"] | ||
helper(policy_dict["meta"], var_pattern, var_dict) | ||
for i in range(len(evaluators)): | ||
match = check_match(evaluators[i]["id"], var_pattern) | ||
if bool(match): | ||
evaluators[i]["id"] = pydash.get(var_dict, match.group(1), default=PydashPathNotFound) | ||
:param dictionary: The dictionary to replace the variable in | ||
:param key: The key of the param `dictionary` to replace the variable in | ||
:param var_dict: The dictionary containing the variables | ||
:param not_found_vars: The list to store the variables that are not found in | ||
""" | ||
var_expression = dictionary[key] | ||
|
||
match = _VAR_PATTERN.match(var_expression) | ||
if not match: | ||
return | ||
|
||
helper(evaluators[i]["condition"], var_pattern, var_dict) | ||
helper(evaluators[i]["provider_args"], var_pattern, var_dict) | ||
var_name = match.group(1) | ||
var_value = pydash.get(var_dict, var_name, default=_VariableNotFound) | ||
if var_value is _VariableNotFound: | ||
not_found_vars.append(var_name) | ||
return | ||
dictionary[key] = var_value | ||
|
||
|
||
def get_policy_with_vars_replaced(policy_dict: dict, var_dict: dict) -> Tuple[dict, List[str]]: | ||
""" | ||
Replace the variables in the policy_dict with the values from the var_dict | ||
:param policy_dict: The policy dictionary | ||
:param var_dict: The dictionary containing the variables | ||
:return: The policy dictionary with the variables replaced | ||
and the list of variables that are not found | ||
""" | ||
not_found_vars = [] | ||
# Replace vars in the meta key | ||
_replace_vars_in_dict(policy_dict["meta"], var_dict, not_found_vars) | ||
|
||
# Replace vars in the evaluators | ||
evaluators = policy_dict["evaluators"] | ||
for evaluator in evaluators: | ||
_replace_var_in_dict(evaluator, "id", var_dict, not_found_vars) | ||
_replace_vars_in_dict(evaluator["provider_args"], var_dict, not_found_vars) | ||
_replace_vars_in_dict(evaluator["condition"], var_dict, not_found_vars) | ||
|
||
match = check_match(policy_dict["eval_expression"], var_pattern) | ||
if bool(match): | ||
policy_dict["eval_expression"] = pydash.get(var_dict, match.group(1), default=PydashPathNotFound) | ||
# Replace vars in the eval_expression | ||
_replace_var_in_dict(policy_dict, "eval_expression", var_dict, not_found_vars) | ||
|
||
return policy_dict | ||
return policy_dict, not_found_vars |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
{ | ||
"name": "John Doe", | ||
"age": 30, | ||
"city": { | ||
"name": "New York" | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,20 @@ | ||
{ | ||
"meta": { | ||
"version": "v1", | ||
"required_provider": "stackguardian/json" | ||
}, | ||
"evaluators": [ | ||
{ | ||
"id": "city_check", | ||
"provider_args": { | ||
"operation_type": "get_value", | ||
"key_path": "city" | ||
}, | ||
"condition": { | ||
"type": "Equals", | ||
"value": "{{ var.city }}" | ||
} | ||
} | ||
], | ||
"eval_expression": "city_check" | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters