Skip to content

disallow duplicate keys in FFI, integration testing #448

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Nov 17, 2023
Merged

disallow duplicate keys in FFI, integration testing #448

merged 2 commits into from
Nov 17, 2023

Conversation

cdisselkoen
Copy link
Contributor

Description of changes

using the already existing JsonValueWithNoDuplicateKeys created for Core

Issue #, if available

Checklist for requesting a review

The change in this PR is (choose one, and delete the other options):

  • A change "invisible" to users (e.g., documentation, changes to "internal" crates like cedar-policy-core, cedar-validator, etc.)

I confirm that this PR (choose one, and delete the other options):

  • Does not update the CHANGELOG because my change does not significantly impact released code.

I confirm that cedar-spec (choose one, and delete the other options):

  • Does not require updates because my change does not impact the Cedar Dafny model or DRT infrastructure.

Disclaimer

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

john-h-kastner-aws
john-h-kastner-aws approved these changes Nov 17, 2023
View reviewed changes
cedar-policy/src/frontend/is_authorized.rs
/// `__entity` and `__extn` escapes to be implicit, and it will error if
/// attributes have the wrong types (e.g., string instead of integer).
#[serde(rename = "schema")]
schema: Option<serde_json::Value>,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Schema parsing should already be forbidding duplicate keys everywhere, so this should just move the error message around a bit. I don't see anything wrong with that, and consistently using the no-duplicates variant is nice, but maybe think about if the new error is substantially better/worse than before.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think that's the case. serde_json::Value cannot contain duplicate keys, so any schema parsing that accepts serde_json::Value won't ever see the duplicate keys -- they would already be silently dropped (last-value-wins) during whatever process created the serde_json::Value.

@cdisselkoen cdisselkoen merged commit 9b70ba5 into main Nov 17, 2023
@cdisselkoen cdisselkoen deleted the tweak/cdisselkoen/duplicate-keys branch November 17, 2023 16:22
@sarahcec sarahcec added the 3.0 label Nov 27, 2023
shaobo-he-aws added a commit that referenced this pull request May 20, 2025
@shaobo-he-aws
Updates needed for #1210 (#448)
4b3d8b9 
Signed-off-by: Shaobo He <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@john-h-kastner-aws john-h-kastner-aws john-h-kastner-aws approved these changes

@aaronjeline aaronjeline Awaiting requested review from aaronjeline

+1 more reviewer

@andrewmwells-amazon andrewmwells-amazon andrewmwells-amazon approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

3.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@cdisselkoen @andrewmwells-amazon @john-h-kastner-aws @sarahcec