Skip to main content
178 questions
Newest Active Bountied Unanswered
Filter by
Sorted by
Tagged with
0 votes
0 answers
66 views

I'm working on a Rego/OPA policy, specifically for checking azure resources diagnostic settings compliant based on specified parameters. However, I'm having several issues when trying to compile my ...
delucaezequiel's user avatar
  • 669
0 votes
0 answers
61 views

Iam trying to unMarshal AST json to ast.Module structure of OPA. policy.rego: package example.authz import rego.v1 allow if { some i input.users[i].role == "admin" } use command ...
user27911082's user avatar
  • 11
0 votes
1 answer
163 views

The OPA WASM documentation mentions that built-in functions like http.send are not natively supported by WASM. However, I was able to successfully compile and evaluate WASM modules from Rego policies ...
Tarang's user avatar
  • 1
0 votes
1 answer
76 views

I'm trying to get a simple expansion of some relations using Rego's graph.reachable. For some reason this isn't printing leaf nodes and I've not yet figured out why. inherits_from[role_id] contains ...
Philip Couling's user avatar
  • 15.4k
1 vote
2 answers
612 views

Is there some program or feature that can turn a JSON object into a policy.rego file? I am aware there is currently a feature to turn a rego file into a JSON, but have not found anything to reverse ...
Nick's user avatar
  • 15
1 vote
0 answers
128 views

In the project I'm working on, we're getting OPA failures because our policy checks for tags on resources, but some resources do not allow tags, such as SNS. Is it possible to write a policy that can ...
Wilveren's user avatar
  • 59
2 votes
0 answers
94 views

I have the following dummy Rego policy is_permitted if { owner := dataowner.resources[input.resource][input.resource_id].owner permitted_members := data.owners[owner].permissions[input....
shays10's user avatar
  • 539
0 votes
1 answer
99 views

These are rules that are part of a apiVersion: templates.gatekeeper.sh/v1 kind: ConstraintTemplate Can you help me understand why this works (preventing the creation of deployments out of the limits):...
somedude's user avatar
  • 119
0 votes
1 answer
551 views

I have the following rego: retry_count_key := "retry" get_retries_count(str) := {x | some i parts := split(str[i], ":") parts[0] == retry_count_key x := to_number(...
Joey Stout's user avatar
  • 357
1 vote
1 answer
263 views

I am writing very simple rego file but it is showing syntex error. Can anyone suggest what am I doing wrong? package example.accesscontrol # Define the allowed UPNs allowed_upns = {"[email protected]&...
Rahul Dankhara's user avatar
  • 11
1 vote
1 answer
144 views

I whish to combine two arrays of Boolean value using AND. For example: a1 := [true, true, false], a2 := [false, true, false]. the resulting AND operation: a3 = a1 AND a2 would be [false, true, false]
PsychicPuppy's user avatar
  • 156
1 vote
1 answer
249 views

I am trying to use OPA as authorization service for Trino. I wrote a rego file according to my needs. package mytrino import rego.v1 default allow := false allow if { input.action.operation == &...
Alper İnan's user avatar
  • 55
0 votes
1 answer
888 views

I am new to OPA rule engine and have tried a few things out, I am unable to write a nested if in opa rule engine like output := someValue if { someValue := someOtherValue if { } } I know ...
Rohit Soni's user avatar
  • 21
0 votes
0 answers
126 views

I am trying to integrate OPA with Envoy for authorization purposes. It works successfully with OPA without any external data calls, but I need to bundle my auth.rego file with a data.json file to ...
Jislin Anna Thomas's user avatar
  • 1
1 vote
1 answer
297 views

In rego, I want to convert this: d := {"a": "aye", "B": "bEe"} to: l := {"a": "aye", "b": "bEe"} where the keys are ...
theherk's user avatar
  • 7,628

15 30 50 per page
1
2 3 4 5
12