UNPKG

@getanthill/datastore

Version:

Event-Sourced Datastore

gitlab.com/getanthill/datastore

157 lines (141 loc) 3.05 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
import type { ModelConfig } from '../../../typings'; import * as c from '../../../constants'; const MODEL_DATABASE = 'datastore'; const MODEL_NAME = 'policies'; const MODEL_DESCRIPTION = 'ABAC authorization policies'; const CORRELATION_FIELD = 'policy_id'; const is_enabled = c.COMPONENTS.is_enabled; const name = { ...c.COMPONENT_TAG_SNAKECASE, description: 'Name of the policy', }; const description = { ...c.COMPONENT_STRING, description: 'Description of this policy', }; const verb = { ...c.COMPONENT_STRING, description: 'Policy verb after rules validation', enum: ['allow', 'deny'], }; const schema = { type: 'object', description: 'JSON Schema', }; const rule = { type: 'object', required: ['name', 'action', 'subject', 'object', 'context'], properties: { name: { ...c.COMPONENT_TAG_SNAKECASE, description: 'Rule name', }, description: { ...c.COMPONENT_STRING, description: 'Rule description', }, subject: schema, action: schema, object: schema, context: schema, }, }; const rules = { type: 'array', description: 'List of rules', items: rule, minItems: 1, }; const obligation = { type: 'object', required: ['name', 'type', 'source'], properties: { name: { ...c.COMPONENT_TAG_SNAKECASE, description: 'Obligation name', }, description: { ...c.COMPONENT_STRING, description: 'Obligation description', }, type: { type: 'string', description: 'Type of the obligation', enum: ['patch', 'pick'], }, source: { type: 'string', description: 'Source of the request to apply the obligation on', enum: ['body', 'query', 'payload', 'headers'], }, value: { description: 'Value associated to the obligation', anyOf: [ { type: 'string' }, { type: 'number' }, { type: 'boolean' }, { type: 'object' }, { type: 'array' }, ], }, }, }; const obligations = { type: 'array', description: 'List of obligations', items: obligation, }; const scope = { ...c.COMPONENT_TAGS_SNAKECASE, description: 'Scope of the policy', minItems: 1, }; export const properties = { is_enabled, name, description, scope, verb, rules, obligations, }; const modelConfig: ModelConfig = { is_enabled: true, is_internal: true, db: MODEL_DATABASE, name: MODEL_NAME, description: MODEL_DESCRIPTION, correlation_field: CORRELATION_FIELD, schema: { model: { properties, }, events: { [c.EVENT_TYPE_CREATED]: { '0_0_0': { properties, }, }, [c.EVENT_TYPE_UPDATED]: { '0_0_0': { properties, }, }, [c.EVENT_TYPE_RESTORED]: { '0_0_0': { properties, }, }, }, }, indexes: [ { collection: MODEL_NAME, fields: { scope: 1, is_enabled: 1 }, opts: { name: 'scope_1_is_enabled_1', }, }, ], }; export default modelConfig;