Well-known attribute request.time is not really usable as it
#500
Comments
|
As part of the refactoring type Value interface {
ResolveFor(attributes *WellKnownAttributes) (interface{}, error)
}
// where WellKnownAttributes are obtained from the AuthPipeline, just as the JSON currently is with GetAuthorizationJSON
value.ResolveFor(authPipeline.GetWellKnowAttributes()) |
|
Also note that currently, because of how data "gets out of CEL", we have this exp, err := NewExpression("timestamp(\"2024-12-25T12:00:00Z\") + duration('123456m')")
v, err := exp.ResolveFor("{}")
// v is a `string` of value `2025-03-21T05:36:00Z` , i.e. a RFC3339 date formatwhich I think is a desirable outcome here... but only given this. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This has become more painful because of the introduction of CEL, but
request.timeis made available as the struct that backs it:map[nanos:68000 seconds:1.730319299e+09]. With CEL having first class support it is probably expected (and documented) to be available as a properTimestamp. Even in JSON tho, it would be probably be best represented in RFC3339 format.Proposal
protojsondeals with these conversions properly. Which is already used to produce the intermediary JSON result coming back from a CEL Value, as well as feeding outWellKnownAttributesinto the interpreter.requestitself is protobuf as it comes fromenvoy/service/auth/v3'sAttributeContextwhich is autogenerated from a.proto.I'm thinking we should have our own
WellKnownAttributesspec'ed as protobuf and useprotojsonto marshal that data. With that approach, no json marshaling would actually to inject theWellKnownAttributesinto the CEL interpreter, but they would be made available as protobufMessages directly.So the proposal is to refactor all of
WellKnownAttributesinto.proto, and use that generated code to produce proper typed JSON/CEL Values. wdyt?The text was updated successfully, but these errors were encountered: