-
Notifications
You must be signed in to change notification settings - Fork 19
/
policies.go
82 lines (72 loc) · 2.98 KB
/
policies.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
// Copyright 2021 Fraunhofer AISEC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
// $$\ $$\ $$\ $$\
// $$ | $$ |\__| $$ |
// $$$$$$$\ $$ | $$$$$$\ $$\ $$\ $$$$$$$ |$$\ $$$$$$\ $$$$$$\ $$$$$$\
// $$ _____|$$ |$$ __$$\ $$ | $$ |$$ __$$ |$$ |\_$$ _| $$ __$$\ $$ __$$\
// $$ / $$ |$$ / $$ |$$ | $$ |$$ / $$ |$$ | $$ | $$ / $$ |$$ | \__|
// $$ | $$ |$$ | $$ |$$ | $$ |$$ | $$ |$$ | $$ |$$\ $$ | $$ |$$ |
// \$$$$$$\ $$ |\$$$$$ |\$$$$$ |\$$$$$$ |$$ | \$$$ |\$$$$$ |$$ |
// \_______|\__| \______/ \______/ \_______|\__| \____/ \______/ \__|
//
// This file is part of Clouditor Community Edition.
package policies
import (
"strings"
"sync"
"clouditor.io/clouditor/api/assessment"
"clouditor.io/clouditor/api/evidence"
"clouditor.io/clouditor/api/orchestrator"
"github.com/sirupsen/logrus"
)
var (
log = logrus.WithField("component", "policies")
)
// metricsCache holds all cached metrics for different combinations of Tools with resource types
type metricsCache struct {
sync.RWMutex
// Metrics cached in a map. Key is composed of tool id and resource types concatenation
m map[string][]string
}
// TODO(oxisto): Rename to AssessmentEngine or something?
type PolicyEval interface {
Eval(evidence *evidence.Evidence, src MetricsSource) (data []*Result, err error)
HandleMetricEvent(event *orchestrator.MetricChangeEvent) (err error)
}
type Result struct {
Applicable bool
Compliant bool
TargetValue interface{} `mapstructure:"target_value"`
Operator string
MetricId string
}
// MetricsSource is used to retrieve a list of metrics and to retrieve a metric
// configuration as well as implementation for a particular metric (and target service)
type MetricsSource interface {
Metrics() ([]*assessment.Metric, error)
MetricConfiguration(metric string) (*assessment.MetricConfiguration, error)
MetricImplementation(lang assessment.MetricImplementation_Language, metric string) (*assessment.MetricImplementation, error)
}
// RequirementsSource is used to retrieve a list of requirements
type RequirementsSource interface {
Requirements() ([]*orchestrator.Requirement, error)
}
// createKey creates a key by concatenating toolID and all types
func createKey(toolID string, types []string) (key string) {
// Merge toolID and types to one slice and concatenate all its elements
key = strings.Join(append(types, toolID), "-")
key = strings.ReplaceAll(key, " ", "")
return
}