From 664bfc2604a6cd694b4dafa9f56cb0d61e13178d Mon Sep 17 00:00:00 2001 From: Sepehrdad Sh <26747519+sepehrdaddev@users.noreply.github.com> Date: Fri, 4 Oct 2024 08:26:33 +0200 Subject: [PATCH] adds wasm engine to opa evaluation engines to enable opa-wasm. Signed-off-by: Sepehrdad Sh <26747519+sepehrdaddev@users.noreply.github.com> --- filters/openpolicyagent/evaluation.go | 15 +++++++++++++-- 1 file changed, 13 insertions(+), 2 deletions(-) diff --git a/filters/openpolicyagent/evaluation.go b/filters/openpolicyagent/evaluation.go index 2f38958617..39e14ebf35 100644 --- a/filters/openpolicyagent/evaluation.go +++ b/filters/openpolicyagent/evaluation.go @@ -3,6 +3,8 @@ package openpolicyagent import ( "context" "fmt" + "time" + ext_authz_v3_core "github.com/envoyproxy/go-control-plane/envoy/config/core/v3" ext_authz_v3 "github.com/envoyproxy/go-control-plane/envoy/service/auth/v3" "github.com/open-policy-agent/opa-envoy-plugin/envoyauth" @@ -13,7 +15,8 @@ import ( "github.com/open-policy-agent/opa/topdown" "github.com/opentracing/opentracing-go" pbstruct "google.golang.org/protobuf/types/known/structpb" - "time" + + _ "github.com/open-policy-agent/opa/features/wasm" ) func (opa *OpenPolicyAgentInstance) Eval(ctx context.Context, req *ext_authz_v3.CheckRequest) (*envoyauth.EvalResult, error) { @@ -70,7 +73,15 @@ func (opa *OpenPolicyAgentInstance) Eval(ctx context.Context, req *ext_authz_v3. return nil, err } - err = envoyauth.Eval(ctx, opa, inputValue, result, rego.DistributedTracingOpts(opa.DistributedTracing())) + opts := []func(*rego.Rego){rego.DistributedTracingOpts(opa.DistributedTracing())} + + for _, r := range opa.manager.GetWasmResolvers() { + for _, e := range r.Entrypoints() { + opts = append(opts, rego.Resolver(e, r)) + } + } + + err = envoyauth.Eval(ctx, opa, inputValue, result, opts...) if err != nil { return nil, err }