This repository has been archived by the owner on Nov 22, 2024. It is now read-only.
Simple decoupled file based policy engine #27
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
johnandersen777
force-pushed
the
policy_engine
branch
8 times, most recently
from
3cbfc29 to
7faa017
Compare
johnandersen777
force-pushed
the
policy_engine
branch
4 times, most recently
from
7e15387 to
542fea4
Compare
johnandersen777
force-pushed
the
policy_engine
branch
2 times, most recently
from
8ed6f93 to
2787820
Compare
johnandersen777
pushed a commit
to intel/dffml
that referenced
this pull request
Mar 31, 2023
…tion: Initial sketch Related: scitt-community/scitt-api-emulator#27 Alice Engineering Comms: 2022-10-17 Engineering Logs: #1406
johnandersen777
force-pushed
the
policy_engine
branch
2 times, most recently
from
a72cdef to
adea2b1
Compare
johnandersen777
commented
Apr 27, 2023
johnandersen777
commented
Apr 27, 2023
johnandersen777
commented
Apr 27, 2023
johnandersen777
commented
Apr 27, 2023
johnandersen777
commented
Apr 27, 2023
johnandersen777
commented
Apr 27, 2023
johnandersen777
commented
Apr 27, 2023
johnandersen777
force-pushed
the
policy_engine
branch
3 times, most recently
from
a63447e to
efd6b90
Compare
|
Conflicts exist now, I will merge 1 week after they are resolved unless there are changes requested. |
|
Fantastic, thank you! Will resolve today
…On Thu, Aug 24, 2023 at 07:22 Orie Steele ***@***.***> wrote:
Conflicts exist now, I will merge 1 week after they are resolved unless
there are changes requested.
—
Reply to this email directly, view it on GitHub
<#27 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/ABNMXYKJT6XME6UFHTPHXS3XW5PRXANCNFSM6AAAAAAWOESPOU>
.
You are receiving this because you authored the thread.Message ID:
***@***.***>
|
Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
…entation Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
- Updated simple file based policy engine to align with @darrelmiller review of SCITT architecture documentation - His full review can be found at https://mailarchive.ietf.org/arch/msg/scitt/c0t5zLUJtCQ9_Jrf7mykWXSIn94/ - Do not attempt to load policy failed/denied JSON information if present triggering file empty Signed-off-by: John Andersen <john.s.andersen@intel.com>
Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
… load Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
…policy from service parameters insertPolicy Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
…st per @OR13 review Related: #1 (review) Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
…rrantly encode jsonschema validator output into detail string Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
johnandersen777
force-pushed
the
policy_engine
branch
from
4475c6f to
24b8fb2
Compare
|
Thanks all! I rebased in main. Looks like theres an error in the conda tests will fix asap |
OR13
previously approved these changes
Aug 28, 2023
To ensure scitt_emulator module can be found Signed-off-by: John Andersen <johnandersenpdx@gmail.com>
|
The conda CI tests should be fixed now, for some reason it couldn't find the |
OR13
approved these changes
Aug 31, 2023
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Simple insert policy based engine based on presence of
operation.policy.{insert,denied,failed}files. Currently only for use withuse_lro=True. This is a simple way to enable evaluation of claims prior to submission by arbitrary policy engines which watch the workspace (fanotify, inotify, etc.).Jump to viewing docs
detailwas optionally an object. A string is of limited usefulness, the same issue was had with the SPDX 2.X series with regards to description fields.operationIdtooperationUrlis out of scope of this pull request.