Skip to content

Commit

Permalink
Better document and test the JSON format of ACLs
Browse files Browse the repository at this point in the history
  • Loading branch information
@awilliams-fastly
awilliams-fastly committed Oct 31, 2024
1 parent 6aae133 commit c18e3b6
Show file tree
Hide file tree
Showing 3 changed files with 25 additions and 6 deletions.
19 changes: 19 additions & 0 deletions lib/src/acl.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,6 +27,22 @@ impl Acls {
}

/// An acl is a collection of acl entries.
///
/// The JSON representation of this struct intentionally matches the JSON
/// format used to create/update ACLs via api.fastly.com. The goal being
/// to allow users to use the same JSON in Viceroy as in production.
///
/// Example:
///
/// ```json
/// { "entries": [
/// { "op": "create", "prefix": "1.2.3.0/24", "action": "BLOCK" },
/// { "op": "create", "prefix": "23.23.23.23/32", "action": "ALLOW" },
/// { "op": "update", "prefix": "FACE::/32", "action": "ALLOW" }
/// ]}
/// ```
///
/// Note that, in Viceroy, the `op` field is ignored.
#[derive(Debug, Default, Deserialize)]
pub struct Acl {
pub(crate) entries: Vec<Entry>,
Expand Down Expand Up @@ -273,6 +289,9 @@ fn acl_lookup() {

#[test]
fn acl_json_parse() {
// In the following JSON, the `op` field should be ignored. It's included
// to assert that the JSON format used with api.fastly.com to create/modify
// ACLs can be used in Viceroy as well.
let input = r#"
{ "entries": [
{ "op": "create", "prefix": "1.2.3.0/24", "action": "BLOCK" },
Expand Down
8 changes: 4 additions & 4 deletions test-fixtures/data/my-acl-1.json
View file
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
{
"entries": [
{ "prefix": "1.2.3.0/24", "action": "BLOCK" },
{ "prefix": "192.168.0.0/16", "action": "BLOCK" },
{ "prefix": "23.23.23.23/32", "action": "ALLOW" },
{ "prefix": "1.2.3.4/32", "action": "ALLOW" }
{ "op": "update", "prefix": "1.2.3.0/24", "action": "BLOCK" },
{ "op": "create", "prefix": "192.168.0.0/16", "action": "BLOCK" },
{ "op": "update", "prefix": "23.23.23.23/32", "action": "ALLOW" },
{ "op": "create", "prefix": "1.2.3.4/32", "action": "ALLOW" }
]
}
4 changes: 2 additions & 2 deletions test-fixtures/data/my-acl-2.json
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"entries": [
{ "prefix": "2000::/24", "action": "BLOCK" },
{ "prefix": "FACE::/16", "action": "ALLOW" }
{ "op": "update", "prefix": "2000::/24", "action": "BLOCK" },
{ "op": "create", "prefix": "FACE::/16", "action": "ALLOW" }
]
}

0 comments on commit c18e3b6

Please sign in to comment.