7c891bd5f2
message: Initial commit, can create master commit and verify previous master commits change_hash: ADgeVBdfi1hA0TTDrBIkYHaQQYoxZaInZz1p/BAH35Ng credentials: - type: pgp_signature pub_key_id: 95C46FA6A41148AC body: iQIzBAABAgAdFiEEJ6tQKp6olvZKJ0lwlcRvpqQRSKwFAl5IbRgACgkQlcRvpqQRSKzWjg/+P0a3einWQ8wFUe05qXUbmMQ4K86Oa4I85pF6kubZlFy/UbcjiPnTPRMKAhmGZi4WCz1sW1F2al4qKvtq3nvn6+hZY8dj0SjPgGG2lkMMLEVy1hjsO7d9S9ZEfUv0cHOcvkphgVQk+InkegBXvFS45mwKQLDOiW5tPcTFDHTHBmC/nlCV/sKCrZEmQGU7KaELJKOf26LSY2zXe6fbVCa8njpIycYS7Wulu2OODcI5n6Ye2U6DvxN6MvuNvziyX7VMePS1xEdJYpltsNMhSkMMGLU7dovxbrhD617uwOsm1847YX9HTJ3Ixs+M0yobHmz8ob4OBcZx8r3AoiyDo+HNMmAZ96ue8pPHmI+2O9jEmbmbH61yq4crhUVAP8PncSTdq0tiYKj/zaSTJ8CT2W0uicX/3v9EtIFn0thqe/qZzHh6upixvpXDpNjZZ5SxiVm8MITnWzInQRbo9yvFsfgd7LqMGKZeGv5q5rgNTRM4fwGrJDuslwj8V2B4uw1ofPncL+LHmXArXWiewvvJFU2uRpfvsl+u4is2dl2SGVpe7ixm+a088gllOQCMRgLbuaN8dQ/eqdkfdxUg+SYQlx6vykrdJOSQrs9zaX/JuxnaNBTi/yLY1FqFXaXBGID6qX1cnPilw+J6vEZYt1MBtzXX+UEjHyVowIhMRsnts6Wq3Z8= account: mediocregopher
54 lines
1.5 KiB
Go
54 lines
1.5 KiB
Go
package accessctl
|
|
|
|
import (
|
|
"fmt"
|
|
|
|
"github.com/bmatcuk/doublestar"
|
|
)
|
|
|
|
// AccessControl represents an access control object being defined in the
|
|
// Config.
|
|
type AccessControl struct {
|
|
Pattern string `yaml:"pattern"`
|
|
Condition Condition `yaml:"condition"`
|
|
}
|
|
|
|
// ErrNoApplicableAccessControls is returned from ApplicableAccessControls when
|
|
// a changed path has no applicable AccessControls which match it.
|
|
type ErrNoApplicableAccessControls struct {
|
|
Path string
|
|
}
|
|
|
|
func (err ErrNoApplicableAccessControls) Error() string {
|
|
return fmt.Sprintf("no AccessControls which apply to changed file %q", err.Path)
|
|
}
|
|
|
|
// ApplicableAccessControls returns a subset of the given AccessControls which
|
|
// are applicable to the given file paths (ie those whose Conditions must be met
|
|
// in order for the changes to go through.
|
|
func ApplicableAccessControls(accessControls []AccessControl, filesChanged []string) ([]AccessControl, error) {
|
|
applicableSet := map[AccessControl]struct{}{}
|
|
for _, path := range filesChanged {
|
|
var any bool
|
|
for _, ac := range accessControls {
|
|
if ok, err := doublestar.PathMatch(ac.Pattern, path); err != nil {
|
|
return nil, fmt.Errorf("error matching path %q to patterrn %q: %w",
|
|
path, ac.Pattern, err)
|
|
} else if ok {
|
|
applicableSet[ac] = struct{}{}
|
|
any = true
|
|
break
|
|
}
|
|
}
|
|
if !any {
|
|
return nil, ErrNoApplicableAccessControls{Path: path}
|
|
}
|
|
}
|
|
|
|
applicable := make([]AccessControl, 0, len(applicableSet))
|
|
for ac := range applicableSet {
|
|
applicable = append(applicable, ac)
|
|
}
|
|
return applicable, nil
|
|
}
|