Package io.grpc.xds.internal.rbac.engine
Class GrpcAuthorizationEngine.PolicyMatcher
java.lang.Object
io.grpc.xds.internal.rbac.engine.GrpcAuthorizationEngine.PolicyMatcher
- All Implemented Interfaces:
GrpcAuthorizationEngine.Matcher
- Direct Known Subclasses:
AutoValue_GrpcAuthorizationEngine_PolicyMatcher
- Enclosing class:
GrpcAuthorizationEngine
public abstract static class GrpcAuthorizationEngine.PolicyMatcher
extends Object
implements GrpcAuthorizationEngine.Matcher
Implements a top level
GrpcAuthorizationEngine.Matcher
for a single RBAC policy configuration per envoy
protocol:
https://www.envoyproxy.io/docs/envoy/latest/api-v3/config/rbac/v3/rbac.proto#config-rbac-v3-policy.
Currently we only support matching some of the request fields. Those unsupported fields are considered not match until we stop ignoring them.
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptioncreate
(String name, GrpcAuthorizationEngine.OrMatcher permissions, GrpcAuthorizationEngine.OrMatcher principals) Constructs a matcher for one RBAC policy.boolean
abstract String
name()
abstract GrpcAuthorizationEngine.OrMatcher
abstract GrpcAuthorizationEngine.OrMatcher
-
Constructor Details
-
PolicyMatcher
public PolicyMatcher()
-
-
Method Details
-
name
-
permissions
-
principals
-
create
public static GrpcAuthorizationEngine.PolicyMatcher create(String name, GrpcAuthorizationEngine.OrMatcher permissions, GrpcAuthorizationEngine.OrMatcher principals) Constructs a matcher for one RBAC policy. -
matches
- Specified by:
matches
in interfaceGrpcAuthorizationEngine.Matcher
-