yaml

Function library for YAML marshalling and unmarshalling operations.

YAML Functions

Enables YAML processing in SAPL policies for configuration-based authorization systems and cloud-native environments. Parse YAML configurations into SAPL values for policy evaluation, or serialize authorization decisions into YAML format for integration with infrastructure-as-code and configuration management systems.

---

yaml.valToYaml(value)

valToYaml(value): Converts a SAPL value into a YAML string representation.

Example:

policy "export_audit_log"
permit
where
   var auditEntry = {"user":"bob","action":"READ","resource":"/api/data","timestamp":"2025-01-15T10:30:00Z"};
   var auditYaml = yaml.valToYaml(auditEntry);
   // auditYaml contains YAML-formatted audit log entry

---

yaml.yamlToVal(Text yaml)

yamlToVal(TEXT yaml): Converts a well-formed YAML document yaml into a SAPL value representing the content of the YAML document.

Example:

policy "permit_resource_owner"
permit
where
   var resourceConfig = "owner: alice\nclassification: CONFIDENTIAL\naccessLevel: 3";
   var resource = yaml.yamlToVal(resourceConfig);
   resource.owner == subject.name;

---