A DSL for generating rules.json files for Trino

These details have not been verified by PyPI

Project links

Homepage

Project description

osc-trino-acl-dsl

A declarative format for configuring Trino access control

To operationalize this code you need Trino adminstrator privileges

examples:

Converting Trino ACL DSL to a rules.json

# install package using pipenv, pip or similar tools
$ pipenv install osc-trino-acl-dsl

# the package command `trino-dsl-to-rules` will load the given yaml or json file
# and write the resulting 'rules.json' file to standard output
# dsl-example-1.yaml is in the 'examples' directory of this repository
$ pipenv run trino-dsl-to-rules dsl-example-1.yaml > rules.json

# rules.json is trino file-based access control rules file
$ head rules.json
{
    "catalogs": [
        {
            "group": "admins",
            "allow": "all"
        },
        {
            "group": ".*",
            "catalog": "dev",
            "allow": "all"

Using pre-commit checks

For more information on pre-commit checks, see here

Here is an example entry for .pre-commit-config.yaml For more info see here

repos:
  - repo: https://github.com/os-climate/osc-trino-acl-dsl
    rev: v0.2.1
    hooks:
      # a pre-commit check to verify that an ACL DSL yaml file is in sync with rules.json file
      - id: trino-acl-dsl-check

building and testing

iterative dev/test for pre-commit checks

check out this repository
make some change to precommit checks you want to test
in a test repository, make an edit you expect your precommit check to operate on, then git add this edit (i.e. stage it for commit) but do NOT commit it, so the precommit check sees it and properly provides staged files to the argument list.
run pre-commit try-repo /path/to/osc-trino-acl-dsl --verbose (see here)
examine the output of your precommit check to see if it did what you want

publish new version to pypi

update all occurrences of __version__ (try git grep version)
python3 setup.py clean or git clean -fdx
python3 setup.py sdist
twine check dist/*
twine upload dist/*
push latest to repo
create new release tag on github

upload test or release candidate:

twine upload --repository-url https://test.pypi.org/legacy/ dist/*

python packaging resources

Project details

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

0.3.1

May 6, 2022

0.3.0

May 3, 2022

0.2.5

Feb 16, 2022

0.2.4

Feb 16, 2022

0.2.3

Jan 26, 2022

0.2.2

Jan 26, 2022

This version

0.2.1

Jan 25, 2022

0.2.0

Jan 25, 2022

0.1.0

Jan 21, 2022

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

osc-trino-acl-dsl-0.2.1.tar.gz (8.6 kB view details)

Uploaded Jan 25, 2022 Source

File details

Details for the file osc-trino-acl-dsl-0.2.1.tar.gz.

File metadata

Download URL: osc-trino-acl-dsl-0.2.1.tar.gz
Upload date: Jan 25, 2022
Size: 8.6 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.4.2 importlib_metadata/4.8.1 pkginfo/1.7.1 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.62.3 CPython/3.9.9

File hashes

Hashes for osc-trino-acl-dsl-0.2.1.tar.gz
Algorithm	Hash digest
SHA256	`896eb41a8a4145d452732d67ad2ab10e187e20dbc40662f111cfcdd2d10ce2e1`
MD5	`0694e8267fbdf9864fcf69761c6a62b5`
BLAKE2b-256	`047784ead4e6ed22d9be1bde2f70c63417d25de3d5698d11fe73456384ee840a`