In TestPolicy_Parse from Vault, we test the following denied_parameters value:
path "test/types" {
capabilities = ["create", "sudo"]
allowed_parameters = {
"map" = [{"good" = "one"}]
"int" = [1, 2]
}
denied_parameters = {
"string" = ["test"]
"bool" = [false]
}
}This works in HCL but not in the equivalent JSON:
"test/types": {
"capabilities": ["create", "sudo"],
"allowed_parameters": {
"map": [{"good": "one"}],
"int": [1, 2]
},
"denied_parameters": {
"string": ["test"],
"bool": [false]
}
}This results in:
policy_test.go:494: [slice[8].Permissions.DeniedParameters.map[bool].slice[0]: <no value> != false slice[8].DeniedParametersHCL.map[bool].slice[0]: <no value> != false]
This is noted here:
|
case token.BOOL: |
|
// TODO(arslan) should we support? not supported by HCL yet |
Changing the earlier conditional:
|
case token.NUMBER, token.FLOAT, token.STRING: |
works to fix this.
In
TestPolicy_Parsefrom Vault, we test the followingdenied_parametersvalue:This works in HCL but not in the equivalent JSON:
This results in:
This is noted here:
hcl/json/parser/parser.go
Lines 238 to 239 in 02db497
Changing the earlier conditional:
hcl/json/parser/parser.go
Line 222 in 02db497
works to fix this.