2024-12-31 14:12:39 -05:00
|
|
|
// Copyright 2018-2025 the Deno authors. MIT license.
|
2024-09-16 16:39:37 -04:00
|
|
|
|
|
|
|
use std::path::Path;
|
|
|
|
use std::path::PathBuf;
|
|
|
|
|
2024-09-28 07:55:01 -04:00
|
|
|
use deno_path_util::normalize_path;
|
2024-09-16 16:39:37 -04:00
|
|
|
use deno_permissions::AllowRunDescriptor;
|
|
|
|
use deno_permissions::AllowRunDescriptorParseResult;
|
|
|
|
use deno_permissions::DenyRunDescriptor;
|
|
|
|
use deno_permissions::EnvDescriptor;
|
|
|
|
use deno_permissions::FfiDescriptor;
|
2024-09-25 21:50:54 -04:00
|
|
|
use deno_permissions::ImportDescriptor;
|
2024-09-16 16:39:37 -04:00
|
|
|
use deno_permissions::NetDescriptor;
|
|
|
|
use deno_permissions::PathQueryDescriptor;
|
2024-11-04 12:17:21 -05:00
|
|
|
use deno_permissions::PathResolveError;
|
2024-09-16 16:39:37 -04:00
|
|
|
use deno_permissions::ReadDescriptor;
|
2024-11-04 12:17:21 -05:00
|
|
|
use deno_permissions::RunDescriptorParseError;
|
2024-09-16 16:39:37 -04:00
|
|
|
use deno_permissions::RunQueryDescriptor;
|
|
|
|
use deno_permissions::SysDescriptor;
|
2024-11-04 12:17:21 -05:00
|
|
|
use deno_permissions::SysDescriptorParseError;
|
2024-09-16 16:39:37 -04:00
|
|
|
use deno_permissions::WriteDescriptor;
|
|
|
|
|
|
|
|
#[derive(Debug)]
|
2024-12-31 11:29:07 -05:00
|
|
|
pub struct RuntimePermissionDescriptorParser<
|
|
|
|
TSys: sys_traits::EnvCurrentDir + Send + Sync,
|
|
|
|
> {
|
|
|
|
sys: TSys,
|
2024-09-16 16:39:37 -04:00
|
|
|
}
|
|
|
|
|
2024-12-31 11:29:07 -05:00
|
|
|
impl<TSys: sys_traits::EnvCurrentDir + Send + Sync>
|
|
|
|
RuntimePermissionDescriptorParser<TSys>
|
|
|
|
{
|
|
|
|
pub fn new(sys: TSys) -> Self {
|
|
|
|
Self { sys }
|
2024-09-16 16:39:37 -04:00
|
|
|
}
|
|
|
|
|
2024-11-04 12:17:21 -05:00
|
|
|
fn resolve_from_cwd(&self, path: &str) -> Result<PathBuf, PathResolveError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
if path.is_empty() {
|
2024-11-04 12:17:21 -05:00
|
|
|
return Err(PathResolveError::EmptyPath);
|
2024-09-16 16:39:37 -04:00
|
|
|
}
|
|
|
|
let path = Path::new(path);
|
|
|
|
if path.is_absolute() {
|
|
|
|
Ok(normalize_path(path))
|
|
|
|
} else {
|
|
|
|
let cwd = self.resolve_cwd()?;
|
|
|
|
Ok(normalize_path(cwd.join(path)))
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2024-11-04 12:17:21 -05:00
|
|
|
fn resolve_cwd(&self) -> Result<PathBuf, PathResolveError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
self
|
2024-12-31 11:29:07 -05:00
|
|
|
.sys
|
|
|
|
.env_current_dir()
|
|
|
|
.map_err(PathResolveError::CwdResolve)
|
2024-09-16 16:39:37 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2024-12-31 11:29:07 -05:00
|
|
|
impl<TSys: sys_traits::EnvCurrentDir + Send + Sync + std::fmt::Debug>
|
|
|
|
deno_permissions::PermissionDescriptorParser
|
|
|
|
for RuntimePermissionDescriptorParser<TSys>
|
2024-09-16 16:39:37 -04:00
|
|
|
{
|
|
|
|
fn parse_read_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<ReadDescriptor, PathResolveError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
Ok(ReadDescriptor(self.resolve_from_cwd(text)?))
|
|
|
|
}
|
|
|
|
|
|
|
|
fn parse_write_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<WriteDescriptor, PathResolveError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
Ok(WriteDescriptor(self.resolve_from_cwd(text)?))
|
|
|
|
}
|
|
|
|
|
|
|
|
fn parse_net_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<NetDescriptor, deno_permissions::NetDescriptorParseError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
NetDescriptor::parse(text)
|
|
|
|
}
|
|
|
|
|
2024-09-25 21:50:54 -04:00
|
|
|
fn parse_import_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<ImportDescriptor, deno_permissions::NetDescriptorParseError> {
|
2024-09-25 21:50:54 -04:00
|
|
|
ImportDescriptor::parse(text)
|
|
|
|
}
|
|
|
|
|
2024-09-16 16:39:37 -04:00
|
|
|
fn parse_env_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<EnvDescriptor, deno_permissions::EnvDescriptorParseError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
if text.is_empty() {
|
2024-11-04 12:17:21 -05:00
|
|
|
Err(deno_permissions::EnvDescriptorParseError)
|
2024-09-16 16:39:37 -04:00
|
|
|
} else {
|
|
|
|
Ok(EnvDescriptor::new(text))
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
fn parse_sys_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<SysDescriptor, SysDescriptorParseError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
if text.is_empty() {
|
2024-11-04 12:17:21 -05:00
|
|
|
Err(SysDescriptorParseError::Empty)
|
2024-09-16 16:39:37 -04:00
|
|
|
} else {
|
2024-09-30 09:19:24 -04:00
|
|
|
Ok(SysDescriptor::parse(text.to_string())?)
|
2024-09-16 16:39:37 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
fn parse_allow_run_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<AllowRunDescriptorParseResult, RunDescriptorParseError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
Ok(AllowRunDescriptor::parse(text, &self.resolve_cwd()?)?)
|
|
|
|
}
|
|
|
|
|
|
|
|
fn parse_deny_run_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<DenyRunDescriptor, PathResolveError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
Ok(DenyRunDescriptor::parse(text, &self.resolve_cwd()?))
|
|
|
|
}
|
|
|
|
|
|
|
|
fn parse_ffi_descriptor(
|
|
|
|
&self,
|
|
|
|
text: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<FfiDescriptor, PathResolveError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
Ok(FfiDescriptor(self.resolve_from_cwd(text)?))
|
|
|
|
}
|
|
|
|
|
|
|
|
// queries
|
|
|
|
|
|
|
|
fn parse_path_query(
|
|
|
|
&self,
|
|
|
|
path: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<PathQueryDescriptor, PathResolveError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
Ok(PathQueryDescriptor {
|
|
|
|
resolved: self.resolve_from_cwd(path)?,
|
|
|
|
requested: path.to_string(),
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
fn parse_run_query(
|
|
|
|
&self,
|
|
|
|
requested: &str,
|
2024-11-04 12:17:21 -05:00
|
|
|
) -> Result<RunQueryDescriptor, RunDescriptorParseError> {
|
2024-09-16 16:39:37 -04:00
|
|
|
if requested.is_empty() {
|
2024-11-04 12:17:21 -05:00
|
|
|
return Err(RunDescriptorParseError::EmptyRunQuery);
|
2024-09-16 16:39:37 -04:00
|
|
|
}
|
|
|
|
RunQueryDescriptor::parse(requested)
|
2024-11-04 12:17:21 -05:00
|
|
|
.map_err(RunDescriptorParseError::PathResolve)
|
2024-09-16 16:39:37 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
mod test {
|
|
|
|
use deno_permissions::PermissionDescriptorParser;
|
|
|
|
|
|
|
|
use super::*;
|
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn test_handle_empty_value() {
|
2024-12-31 11:29:07 -05:00
|
|
|
let parser =
|
|
|
|
RuntimePermissionDescriptorParser::new(sys_traits::impls::RealSys);
|
2024-09-16 16:39:37 -04:00
|
|
|
assert!(parser.parse_read_descriptor("").is_err());
|
|
|
|
assert!(parser.parse_write_descriptor("").is_err());
|
|
|
|
assert!(parser.parse_env_descriptor("").is_err());
|
|
|
|
assert!(parser.parse_net_descriptor("").is_err());
|
|
|
|
assert!(parser.parse_ffi_descriptor("").is_err());
|
|
|
|
assert!(parser.parse_path_query("").is_err());
|
|
|
|
assert!(parser.parse_run_query("").is_err());
|
|
|
|
}
|
|
|
|
}
|