b01fe1524a
---
type: change
description: |-
Completely refactor naming of everything, in light of new SPEC
Writing the SPEC shed some light on just how weakly a lot of concepts, like
"commit", had been defined, and prompted the delineation of a lot of things
along specific lines (commit vs payload, repo vs project). This commit makes the
code reflect the SPEC much better in quite a few ways:
* Repo is now Project
* Commit is now Payload
* GitCommit is now just Commit
* Hash is now Fingerprint
* A lot of minor fields got renamed
* All the XXXInterface types are now just XXX, and their old XXX type is now
XXXUnion.
More than likely there's still some comments and variable names that have
slipped passed, but overall I feel like I got most of the changes.
fingerprint: AKkDC5BKhKbfXzZQ/F4KquHeMgVvcNxgLmkZFz/nP/tY
credentials:
- type: pgp_signature
pub_key_id: 95C46FA6A41148AC
body: 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
account: mediocregopher
114 lines
3.0 KiB
Go
114 lines
3.0 KiB
Go
package accessctl
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"math"
|
|
"strconv"
|
|
"strings"
|
|
)
|
|
|
|
// FilterSignature represents the configuration of a Filter which requires one
|
|
// or more signature credentials to be present on a commit.
|
|
//
|
|
// Either AccountIDs, AnyAccount, or Any must be filled in; all are mutually
|
|
// exclusive.
|
|
type FilterSignature struct {
|
|
AccountIDs []string `yaml:"account_ids,omitempty"`
|
|
Any bool `yaml:"any,omitempty"`
|
|
AnyAccount bool `yaml:"any_account,omitempty"`
|
|
Count string `yaml:"count,omitempty"`
|
|
}
|
|
|
|
var _ Filter = FilterSignature{}
|
|
|
|
func (f FilterSignature) targetNum() (int, error) {
|
|
if f.Count == "" {
|
|
return 1, nil
|
|
} else if !strings.HasSuffix(f.Count, "%") {
|
|
return strconv.Atoi(f.Count)
|
|
} else if f.AnyAccount {
|
|
return 0, errors.New("cannot use AnyAccount and a percent Count together")
|
|
}
|
|
|
|
percentStr := strings.TrimRight(f.Count, "%")
|
|
percent, err := strconv.ParseFloat(percentStr, 64)
|
|
if err != nil {
|
|
return 0, fmt.Errorf("could not parse Count as percent %q: %w", f.Count, err)
|
|
}
|
|
target := float64(len(f.AccountIDs)) * percent / 100
|
|
target = math.Ceil(target)
|
|
return int(target), nil
|
|
}
|
|
|
|
// ErrFilterSignatureUnsatisfied is returned from FilterSignature's
|
|
// Match method when the filter has not been satisfied.
|
|
type ErrFilterSignatureUnsatisfied struct {
|
|
TargetNumAccounts, NumAccounts int
|
|
}
|
|
|
|
func (err ErrFilterSignatureUnsatisfied) Error() string {
|
|
return fmt.Sprintf("not enough valid signature credentials, filter requires %d but only had %d",
|
|
err.TargetNumAccounts, err.NumAccounts)
|
|
}
|
|
|
|
// MatchCommit returns true if the CommitRequest contains a sufficient number of
|
|
// signature Credentials.
|
|
func (f FilterSignature) MatchCommit(req CommitRequest) error {
|
|
targetN, err := f.targetNum()
|
|
if err != nil {
|
|
return fmt.Errorf("computing target number of accounts: %w", err)
|
|
}
|
|
|
|
var numSigs int
|
|
credAccountIDs := map[string]struct{}{}
|
|
for _, cred := range req.Credentials {
|
|
// TODO support other kinds of signatures
|
|
if cred.PGPSignature == nil {
|
|
continue
|
|
}
|
|
numSigs++
|
|
if cred.AccountID != "" {
|
|
credAccountIDs[cred.AccountID] = struct{}{}
|
|
}
|
|
}
|
|
|
|
if numSigs == 0 {
|
|
return ErrFilterNoMatch{
|
|
Err: ErrFilterSignatureUnsatisfied{TargetNumAccounts: targetN},
|
|
}
|
|
}
|
|
|
|
var n int
|
|
if f.Any {
|
|
return nil
|
|
} else if f.AnyAccount {
|
|
// TODO this doesn't actually check that the accounts are defined in the
|
|
// Config. It works for now as long as the Credentials are valid, since
|
|
// only an Account defined in the Config could create a valid
|
|
// Credential, but once that's not the case this will need to be
|
|
// revisited.
|
|
n = len(credAccountIDs)
|
|
} else {
|
|
targetAccountIDs := map[string]struct{}{}
|
|
for _, accountID := range f.AccountIDs {
|
|
targetAccountIDs[accountID] = struct{}{}
|
|
}
|
|
for accountID := range targetAccountIDs {
|
|
if _, ok := credAccountIDs[accountID]; ok {
|
|
n++
|
|
}
|
|
}
|
|
}
|
|
|
|
if n >= targetN {
|
|
return nil
|
|
}
|
|
return ErrFilterNoMatch{
|
|
Err: ErrFilterSignatureUnsatisfied{
|
|
NumAccounts: n,
|
|
TargetNumAccounts: targetN,
|
|
},
|
|
}
|
|
}
|