Using DataWeave Expressions
| To view an example policy project that uses DataWeave expressions, see Query Policy Example. |
If the input DataWeave expression parameter is valid, the policy parses the expression and transforms it into a pdk::script::Script expression. To obtain the result of the script:
-
Create an evaluator.
-
Call the binding function for each parameter defined in the schema definition:
-
vars: Call thebind_varsmethod for each of the policy’svars. After all ofvarsare bound, the evaluator tries to solve the expression. If the expression containsvarsother than the ones defined in the schema, they resolve tonull. -
attributes: Call thebind_attributesmethod with an implementation of theAttributesBindingtrait. Flex Gateway Policy Development Kit (PDK) provides an implementation of this trait by instantiating a newHandlerAttributesBindingfor eachRequestHeaderState,RequestHeaderState, and response of an HTTP call. -
authentication: Call thebind_authenticationmethod with an implementation of the traitAuthenticationBinding. PDK provides an implementation of this trait forAuthenticationData. To inject authentication information into your policy, see Inject Authentication Inforamaion. -
payload: Call thebind_payloadmethod with an implementation of the traitPayloadBinding. PDK provides an implementation of this trait forRequestBodyState,ResponseBodyState, and the response of an HTTP call.Call only the methods for the bindings defined in the schema definition. For example, if the
attributesbinding is not used, don’t call thebind_attributesmethod.To learn more about defining DataWeave expressions, see DataWeave Expressions.
-
-
After you bind all expression variables, obtain the result by calling the
evalmethod.
Evaluate DataWeave Expressions
For example, to evaluate the tokenExtractor DataWeave expression in the following policy schema definition:
apiVersion: gateway.mulesoft.com/v1alpha1
kind: Extension
metadata:
labels:
title: jwt-auth
category: Custom
spec:
extends:
- name: extension-definition
namespace: default
properties:
tokenExtractor:
type: string
format: dataweave
default: "#[vars.myVar]"
bindings:
payload:
mimeType: text
attributes: true
authentication: true
vars:
- myVar
required:
- tokenExtractorUse the following Rust snippet:
// Copyright 2024 Salesforce, Inc. All rights reserved.
mod generated;
use anyhow::Result;
use crate::generated::config::Config;
use pdk::authentication::{Authentication, AuthenticationHandler};
use pdk::logger::info;
use pdk::hl::*;
use pdk::script::{Evaluator, HandlerAttributesBinding, Value};
async fn request_filter(
state: RequestState,
stream: StreamProperties,
auth: Authentication,
mut evaluator: Evaluator<'_>,
) {
evaluator.bind_vars("myVar", "myVal");
evaluator.bind_authentication(&auth.authentication());
let state = state.into_headers_state().await;
evaluator.bind_attributes(&HandlerAttributesBinding::new(state.handler(), &stream));
let state = state.into_body_state().await;
evaluator.bind_payload(&state);
if let Ok(value) = evaluator.eval() {
match value {
Value::Null => info!("value was null!"),
Value::Bool(val) => info!("value was Bool: {val}"),
Value::Number(val) => info!("value was Number: {val}"),
Value::String(val) => info!("value was String: {val}"),
Value::Array(val) => info!("value was Array: {val:?}"),
Value::Object(val) => info!("value was Object: {val:?}"),
}
}
}
#[entrypoint]
async fn configure(launcher: Launcher, Configuration(bytes): Configuration) -> Result<()> {
let config: Config = serde_json::from_slice(&bytes)?;
launcher
.launch(on_request(|request, stream, auth| {
request_filter(request, stream, auth, config.token_extractor.evaluator())
}))
.await?;
Ok(())
}Validate the Expression was Resolved
You can resolve some expressions before all values are bound. For example, the expression #[vars.myVar] does not require the attributes, payload, no authentication to be resolved.
After one of the binding methods is called, you can confirm the expression was completely resolved by calling the method:
evaluator.is_ready()