2015-05-13 23:42:35 +00:00
|
|
|
/*****************************************************************************
|
2016-07-12 23:21:58 +00:00
|
|
|
* Open MCT, Copyright (c) 2014-2016, United States Government
|
2015-05-13 23:42:35 +00:00
|
|
|
* as represented by the Administrator of the National Aeronautics and Space
|
|
|
|
* Administration. All rights reserved.
|
|
|
|
*
|
2016-07-12 23:21:58 +00:00
|
|
|
* Open MCT is licensed under the Apache License, Version 2.0 (the
|
2015-05-13 23:42:35 +00:00
|
|
|
* "License"); you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0.
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
|
|
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
|
|
* License for the specific language governing permissions and limitations
|
|
|
|
* under the License.
|
|
|
|
*
|
2016-07-12 23:21:58 +00:00
|
|
|
* Open MCT includes source code licensed under additional open source
|
2015-05-13 23:42:35 +00:00
|
|
|
* licenses. See the Open Source Licenses file (LICENSES.md) included with
|
|
|
|
* this source code distribution or the Licensing information page available
|
|
|
|
* at runtime from the About dialog for additional information.
|
|
|
|
*****************************************************************************/
|
2015-04-01 20:48:58 +00:00
|
|
|
|
2015-08-07 19:13:15 +00:00
|
|
|
/**
|
|
|
|
* This bundle implements the policy service.
|
|
|
|
* @namespace platform/policy
|
|
|
|
*/
|
2015-04-01 20:48:58 +00:00
|
|
|
define(
|
|
|
|
[],
|
|
|
|
function () {
|
|
|
|
|
2015-08-10 23:38:13 +00:00
|
|
|
/**
|
|
|
|
* A policy is a participant in decision-making policies. Policies
|
|
|
|
* are divided into categories (identified symbolically by strings);
|
|
|
|
* within a given category, every given policy-driven decision will
|
|
|
|
* occur by consulting all available policies and requiring their
|
|
|
|
* collective consent (that is, every individual policy has the
|
|
|
|
* power to reject the decision entirely.)
|
|
|
|
*
|
|
|
|
* @interface Policy
|
|
|
|
* @template C, X
|
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check if this policy allows the described decision. The types
|
|
|
|
* of the arguments expected here vary depending on policy category.
|
|
|
|
*
|
|
|
|
* @method Policy#allow
|
|
|
|
* @template C, X
|
|
|
|
* @param {C} candidate the thing to allow or disallow
|
|
|
|
* @param {X} context the context in which the decision occurs
|
|
|
|
* @returns {boolean} false if disallowed; otherwise, true
|
|
|
|
*/
|
|
|
|
|
2015-08-14 22:49:45 +00:00
|
|
|
|
|
|
|
/**
|
|
|
|
* The `policyService` handles decisions about what things
|
|
|
|
* are and are not allowed in certain contexts.
|
|
|
|
* @interface PolicyService
|
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check whether or not a certain decision is allowed by
|
|
|
|
* policy.
|
|
|
|
* @param {string} category a machine-readable identifier
|
|
|
|
* for the kind of decision being made
|
|
|
|
* @param candidate the object about which the decision is
|
|
|
|
* being made
|
|
|
|
* @param context the context in which the decision occurs
|
|
|
|
* @param {Function} [callback] callback to invoke with a
|
|
|
|
* string message describing the reason a decision
|
|
|
|
* was disallowed (if its disallowed)
|
|
|
|
* @returns {boolean} true if the decision is allowed,
|
|
|
|
* otherwise false.
|
|
|
|
* @method PolicyService#allow
|
|
|
|
*/
|
|
|
|
|
2015-04-01 21:33:39 +00:00
|
|
|
/**
|
|
|
|
* Provides an implementation of `policyService` which consults
|
|
|
|
* various policy extensions to determine whether or not a specific
|
|
|
|
* decision should be allowed.
|
2015-08-07 18:44:54 +00:00
|
|
|
* @memberof platform/policy
|
2015-04-01 21:33:39 +00:00
|
|
|
* @constructor
|
2015-08-14 22:49:45 +00:00
|
|
|
* @implements {PolicyService}
|
|
|
|
* @param {Policy[]} policies the policies to enforce
|
2015-04-01 21:33:39 +00:00
|
|
|
*/
|
2015-04-01 20:48:58 +00:00
|
|
|
function PolicyProvider(policies) {
|
2015-04-01 21:33:39 +00:00
|
|
|
var policyMap = {};
|
2015-04-01 20:48:58 +00:00
|
|
|
|
2015-04-01 21:33:39 +00:00
|
|
|
// Instantiate a policy. Mostly just a constructor call, but
|
|
|
|
// we also track the message (which was provided as metadata
|
|
|
|
// along with the constructor) so that we can expose this later.
|
|
|
|
function instantiate(Policy) {
|
|
|
|
var policy = Object.create(new Policy());
|
|
|
|
policy.message = Policy.message;
|
|
|
|
return policy;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Add a specific policy to the map for later lookup,
|
|
|
|
// according to its category. Note that policy extensions are
|
|
|
|
// provided as constructors, so they are instantiated here.
|
|
|
|
function addToMap(Policy) {
|
|
|
|
var category = (Policy || {}).category;
|
|
|
|
if (category) {
|
|
|
|
// Create a new list for that category if needed...
|
|
|
|
policyMap[category] = policyMap[category] || [];
|
|
|
|
// ...and put an instance of this policy in that list.
|
|
|
|
policyMap[category].push(instantiate(Policy));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Populate the map for subsequent lookup
|
|
|
|
policies.forEach(addToMap);
|
2015-08-14 22:49:45 +00:00
|
|
|
this.policyMap = policyMap;
|
|
|
|
}
|
2015-04-01 21:33:39 +00:00
|
|
|
|
2015-08-14 22:49:45 +00:00
|
|
|
PolicyProvider.prototype.allow = function (category, candidate, context, callback) {
|
|
|
|
var policyList = this.policyMap[category] || [],
|
|
|
|
i;
|
2015-04-01 21:33:39 +00:00
|
|
|
|
2015-08-14 22:49:45 +00:00
|
|
|
// Iterate through policies. We do this instead of map or
|
|
|
|
// forEach so that we can return immediately if a policy
|
|
|
|
// chooses to disallow this decision.
|
|
|
|
for (i = 0; i < policyList.length; i += 1) {
|
|
|
|
// Consult the policy...
|
|
|
|
if (!policyList[i].allow(candidate, context)) {
|
|
|
|
// ...it disallowed, so pass its message to
|
|
|
|
// the callback (if any)
|
|
|
|
if (callback) {
|
|
|
|
callback(policyList[i].message);
|
2015-04-01 21:33:39 +00:00
|
|
|
}
|
2015-08-14 22:49:45 +00:00
|
|
|
// And return the failed result.
|
|
|
|
return false;
|
2015-04-01 21:33:39 +00:00
|
|
|
}
|
2015-08-14 22:49:45 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// No policy disallowed this decision.
|
|
|
|
return true;
|
|
|
|
};
|
2015-04-01 20:48:58 +00:00
|
|
|
|
|
|
|
return PolicyProvider;
|
|
|
|
}
|
2015-08-07 18:44:54 +00:00
|
|
|
);
|