Skip to content

fix: Token parsing issues if token contains delimiter #46

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Sep 11, 2021
Merged

fix: Token parsing issues if token contains delimiter #46

merged 4 commits into from
Sep 11, 2021

Conversation

@hariprasadiit
Copy link
Contributor

@hariprasadiit hariprasadiit commented Sep 9, 2021

Issue:

Model

[request_definition]
r = sub, cid, lid, obj, act

[policy_definition]
p = sub, cid, lid, obj, act, rule, eft

[role_definition]
g = _, _, _

[policy_effect]
e = some(where (p.eft == allow)) && !some(where (p.eft == deny))

[matchers]
m = g(r.sub.id+'::'+r.sub.type, p.sub, r.cid+'::'+r.lid)&& eval(p.rule) && keyMatch(r.cid, p.cid)&& keyMatch(r.lid, p.lid) && regexMatch(r.act, p.act) && keyMatch2(r.obj, p.obj)

Policy

p, employee, *, *, /e/:eid, update, "r.sub.id == keyGet2(r.obj, p.obj, 'eid')"
p, employee, *, *, /e/:eid, get, true
p, admin, *, *, /e/:eid, update, true
p, admin, cid3, lid1, /kiosk/:kid, (get)|(update), true


g, admin, location-admin, *
g, location-admin, receptionist, *
g, receptionist, employee, *
g, billing-admin, employee, *
g, alice, admin, cid3::*

While loading above policy from database, loadPolicyLine from Helper class will parse r.sub.id == keyGet2(r.obj, p.obj, 'eid') into two tokens as it contains delimiter.

We can workaround this by wrapping r.sub.id == keyGet2(r.obj, p.obj, 'eid') with quotes but hasPolicy will fail because provided policy line contains extra quotes but parsed policy line will not have them.

Solution

Wrap all tokens of policy line before joining them and passing policy line to the csv parser

@nodece
Copy link
Contributor

nodece commented Sep 9, 2021

thanks @hariprasadiit, please fix this CI errors.

@hariprasadiit hariprasadiit force-pushed the master branch 2 times, most recently from 41768d9 to 0581af3 Compare September 9, 2021 15:04
@hariprasadiit
Copy link
Contributor Author

hariprasadiit commented Sep 10, 2021

@nodece I'm not really sure why coverage and tests are failing. On my system they're passing. Any help would be appreciated

@nodece
Copy link
Contributor

nodece commented Sep 11, 2021

please check this: https://github.com/node-casbin/typeorm-adapter/pull/46/checks?check_run_id=3562595276#step:7:36

@hariprasadiit hariprasadiit changed the title fix: token parsing issues if token contains delimiter fix: Token parsing issues if token contains delimiter Sep 11, 2021
@hariprasadiit
Copy link
Contributor Author

hariprasadiit commented Sep 11, 2021

@nodece fixed CI issues

Zxilly
Zxilly approved these changes Sep 11, 2021
View reviewed changes
Copy link
Contributor

@Zxilly Zxilly left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@Zxilly Zxilly merged commit ba1b5ee into node-casbin:master Sep 11, 2021
@github-actions
Copy link

github-actions bot commented Sep 11, 2021

🎉 This PR is included in version 1.4.2 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Gabriel-403 Gabriel-403 Awaiting requested review from Gabriel-403

@nodece nodece Awaiting requested review from nodece

1 more reviewer

@Zxilly Zxilly Zxilly approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

released

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@hariprasadiit @nodece @Zxilly