diff options
Diffstat (limited to '')
| -rw-r--r-- | src/rgw/rgw_polparser.cc | 105 |
1 files changed, 105 insertions, 0 deletions
diff --git a/src/rgw/rgw_polparser.cc b/src/rgw/rgw_polparser.cc new file mode 100644 index 000000000..eca5066b3 --- /dev/null +++ b/src/rgw/rgw_polparser.cc @@ -0,0 +1,105 @@ +// -*- mode:C++; tab-width:8; c-basic-offset:2; indent-tabs-mode:t -*- +// vim: ts=8 sw=2 smarttab + +#include <cstdint> +#include <cstdlib> +#include <exception> +#include <fstream> +#include <iostream> +#include <string> +#include <string_view> + +#include "include/buffer.h" + +#include "common/ceph_argparse.h" +#include "common/common_init.h" + +#include "global/global_init.h" + +#include "rgw/rgw_iam_policy.h" + +// Returns true on success +bool parse(CephContext* cct, const std::string& tenant, + const std::string& fname, std::istream& in) noexcept +{ + bufferlist bl; + bl.append(in); + try { + auto p = rgw::IAM::Policy( + cct, tenant, bl, + cct->_conf.get_val<bool>("rgw_policy_reject_invalid_principals")); + } catch (const rgw::IAM::PolicyParseException& e) { + std::cerr << fname << ": " << e.what() << std::endl; + return false; + } catch (const std::exception& e) { + std::cerr << fname << ": caught exception: " << e.what() << std::endl;; + return false; + } + return true; +} + +void helpful_exit(std::string_view cmdname) +{ + std::cerr << cmdname << "-h for usage" << std::endl; + exit(1); +} + +void usage(std::string_view cmdname) +{ + std::cout << "usage: " << cmdname << " -t <tenant> [filename]" + << std::endl; +} + +int main(int argc, const char** argv) +{ + std::string_view cmdname = argv[0]; + std::string tenant; + + auto args = argv_to_vec(argc, argv); + if (ceph_argparse_need_usage(args)) { + usage(cmdname); + exit(0); + } + + auto cct = global_init(nullptr, args, CEPH_ENTITY_TYPE_CLIENT, + CODE_ENVIRONMENT_UTILITY, + CINIT_FLAG_NO_DAEMON_ACTIONS | + CINIT_FLAG_NO_MON_CONFIG); + common_init_finish(cct.get()); + std::string val; + for (std::vector<const char*>::iterator i = args.begin(); i != args.end(); ) { + if (ceph_argparse_double_dash(args, i)) { + break; + } else if (ceph_argparse_witharg(args, i, &val, "--tenant", "-t", + (char*)nullptr)) { + tenant = std::move(val); + } else { + ++i; + } + } + + if (tenant.empty()) { + std::cerr << cmdname << ": must specify tenant name" << std::endl; + helpful_exit(cmdname); + } + + bool success = true; + + if (args.empty()) { + success = parse(cct.get(), tenant, "(stdin)", std::cin); + } else { + for (const auto& file : args) { + std::ifstream in; + in.open(file, std::ifstream::in); + if (!in.is_open()) { + std::cerr << "Can't read " << file << std::endl; + success = false; + } + if (!parse(cct.get(), tenant, file, in)) { + success = false; + } + } + } + + return success ? 0 : 1; +} |