LukeParke/developer.sailpoint.com
1
0
Fork 0
mirror of https://github.com/LukeHagar/developer.sailpoint.com.git synced 2025-12-09 12:27:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
b87617f99f22a6ac4c232cd9617d7afdd4ab0ecf
developer.sailpoint.com/docs/tools/rule-development-kit/index.md

621 lines
22 KiB
Markdown
Raw Blame History

---
id: rdk
title: Rule Development Kit
pagination_label: RDK
sidebar_label: Rule Development Kit
sidebar_position: 3
sidebar_class_name: rdk
keywords: ['rule', 'development', 'kit']
description: Rule development made quick and easy.
slug: /tools/rule-development-kit
tags: ['RDK']
---
## Start Using the Rule Development Kit
The SailPoint Rule Development Kit (RDK) is a project you can use to develop rules more quickly and easily.
In SailPoint solutions, rules serve as flexible configuration frameworks implementers can leverage to preform complex or advanced configurations. To learn more about them, refer to [Rules](../../extensibility/rules/index.md).
The RDK provides you with the available classes and methods available when you're developing a rule. You can mock out these classes and run your rule locally to test your logic before submitting it for review.
Learn how to use the SailPoint RDK in this guide.
<div className="text--center">
<iframe width="560" height="315" src="https://www.youtube.com/embed/b2LvCaH59JY?si=owtL69BIkbuyHyA0" title="YouTube video player" frameBorder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share" allowFullScreen></iframe>
</div>
## Requirements
- [Java 11](https://www.oracle.com/java/technologies/javase/jdk11-archive-downloads.html)
- [Apache Maven 3.9.3+](https://maven.apache.org/install.html)
- [Mac OS installation guide](https://www.appsdeveloperblog.com/how-to-install-maven-on-mac-os/)
- [Windows installation guide](https://phoenixnap.com/kb/install-maven-windows)
## Clone the project
You can find the RDK and its examples in the Github repo [here](https://github.com/sailpoint-oss/rule-development-kit).
To get started, clone the project.
To clone the project, you can run this command:
```bash
git clone git@github.com:sailpoint-oss/rule-development-kit.git
```
## Project structure
```bash
src/
├── main/
│ ├── java/
│ │ └── RuleName.java
│ └── resources/
│ └── rules/
│ └── Rule - RuleType - RuleName.xml
└── test/
├── java/
│ └── sailpoint/
│ └── RuleNameTest.java
└── resources/
└── log4j2.properties
```
- **`src/main/java/`** Use this folder to develop your rules before putting them into the rule XML format. Import objects as needed from `sailpoint.*`
- **`src/main/resources/rules/`** Use this folder to store your rules in the XML format you would expect to upload to Identity Security Cloud (ISC).
- **`src/test/java/sailpoint/`** Use this folder for test classes to test your rules.
## Install dependencies
Install all the required dependencies by running Maven install in the root of the project:
```bash
mvn clean install
```
You now have all the necessary components to start writing rules locally.
<!-- ### Intellisense for Rule Objects and Methods
The rule development kit provides you with intellisense when writing rules, you will have access to method names, parameter descriptions, and code completion.
![intellisense](./assets/intellisense.png)
### Local Testing -->
## Create your new rule
To get syntax highlighting and the features from the IDE, this guide shows how to write the rule in native Java and move it over to the XML format needed when you're storing it in Identity Security Cloud (ISC).
This guide will walk through an example of how to duplicate writing the 'Username Generator' rule that ships with the RDK.
Create a new Java class under `src/main/java`, called `UsernameGenerator`.
## Import the classes and initialize the objects the rule needs
Each rule type has inputs provided to the rule. You can view available inputs for each rule type by clicking the rule type [here](/docs/extensibility/rules/cloud-rules#supported-cloud-rules).
The 'Username Generator' rule uses the `AttributeGenerator` rule type. See [Attribute Generator](/docs/extensibility/rules/cloud-rules/account-profile-attribute-generator#input) for the available inputs.
In your IDE, import the classes needed, and initialize these inputs within your newly created class.
```java
import org.apache.log4j.LogManager;
import org.apache.log4j.Logger;
import sailpoint.object.Application;
import sailpoint.object.Field;
import sailpoint.object.Identity;
import sailpoint.server.IdnRuleUtil;
public class UsernameGenerator {
Logger log = LogManager.getLogger(UsernameGenerator.class);
Identity identity = new Identity();
Application application = new Application();
IdnRuleUtil idn;
Field field = new Field();
}
```
## Write your rule logic
You can see the completed code for the 'Username Generator' in the following code. If you want to dive deeper into how this rule was written, follow [this guide](/docs/extensibility/rules/guides/your-first-rule).
<details>
<summary>Completed Username Generator Code</summary>
```java
import org.apache.commons.lang.StringUtils;
import org.apache.log4j.LogManager;
import org.apache.log4j.Logger;
import sailpoint.object.Application;
import sailpoint.object.Field;
import sailpoint.object.Identity;
import sailpoint.server.IdnRuleUtil;
import sailpoint.tools.GeneralException;
public class UsernameGenerator {
Logger log = LogManager.getLogger(UsernameGenerator.class);
Identity identity = new Identity();
Application application = new Application();
IdnRuleUtil idn;
Field field = new Field();
int MAX_USERNAME_LENGTH = 12;
public String generateUsername(String firstName, String lastName) throws GeneralException {
firstName = StringUtils.trimToNull(firstName);
lastName = StringUtils.trimToNull(lastName);
String otherName = identity.getStringAttribute("otherName");
if(firstName != null) {
firstName = firstName.replaceAll("[^a-zA-Z0-9]", "");
}
if(lastName != null) {
lastName = lastName.replaceAll("[^a-zA-Z0-9]", "");
}
if(otherName != null) {
otherName = otherName.replaceAll("[^a-zA-Z0-9]", "");
}
if((firstName == null) || (lastName == null)) {
log.debug( "AD Create User Name | Exit from generateUsername method. No last name and first name for user" );
return null;
}
if(!StringUtils.isEmpty(otherName)) {
firstName = otherName;
}
String username = null;
String fullName = firstName + "." + lastName;
if(fullName.length() > MAX_USERNAME_LENGTH) {
int firstNameLength = firstName.length();
if(firstNameLength > (MAX_USERNAME_LENGTH - 2)) {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName.substring(0, (MAX_USERNAME_LENGTH - 2)) + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
} else {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
}
} else {
username = fullName;
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
} else {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
}
}
return null;
}
public boolean isUnique(String username) throws GeneralException {
return !idn.accountExistsByDisplayName(application.getName(), username);
}
}
```
</details>
## Convert the rule to XML format
The final step required before you can test your rule is converting it to XML format. These XML files are stored under the `/src/main/resources/rules` directory in the RDK. You can find the `AttributeGenerator` template file [here](/docs/extensibility/rules/cloud-rules/account-profile-attribute-generator#template).
Replace `Example Rule` with the preferred name of your rule, and add a short description.
### Copy over imports for the rule
Copy over the imports the rule needs.
```xml
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE Rule PUBLIC "sailpoint.dtd" "sailpoint.dtd">
<Rule name="Example Rule" type="AttributeGenerator">
<Description>Describe your rule here.</Description>
<Source><![CDATA[
import org.apache.commons.lang.StringUtils;
import org.apache.log4j.LogManager;
import org.apache.log4j.Logger;
import sailpoint.object.Application;
import sailpoint.object.Field;
import sailpoint.object.Identity;
import sailpoint.server.IdnRuleUtil;
import sailpoint.tools.GeneralException;
]]></Source>
</Rule>
```
### Copy the rule logic
Copy the logic of your rule inside the class you created earlier.
:::caution
Don't include your initialized variables for the inputs to the rule. These variables will be passed into the rule during runtime.
:::
```xml
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE Rule PUBLIC "sailpoint.dtd" "sailpoint.dtd">
<Rule name="Example Rule" type="AttributeGenerator">
<Description>Describe your rule here.</Description>
<Source><![CDATA[
import org.apache.commons.lang.StringUtils;
import org.apache.log4j.LogManager;
import org.apache.log4j.Logger;
import sailpoint.object.Application;
import sailpoint.object.Field;
import sailpoint.object.Identity;
import sailpoint.server.IdnRuleUtil;
import sailpoint.tools.GeneralException;
int MAX_USERNAME_LENGTH = 12;
public String generateUsername(String firstName, String lastName) throws GeneralException {
firstName = StringUtils.trimToNull(firstName);
lastName = StringUtils.trimToNull(lastName);
String otherName = identity.getStringAttribute("otherName");
if(firstName != null) {
firstName = firstName.replaceAll("[^a-zA-Z0-9]", "");
}
if(lastName != null) {
lastName = lastName.replaceAll("[^a-zA-Z0-9]", "");
}
if(otherName != null) {
otherName = otherName.replaceAll("[^a-zA-Z0-9]", "");
}
if((firstName == null) || (lastName == null)) {
log.debug( "AD Create User Name | Exit from generateUsername method. No last name and first name for user" );
return null;
}
if(!StringUtils.isEmpty(otherName)) {
firstName = otherName;
}
String username = null;
String fullName = firstName + "." + lastName;
if(fullName.length() > MAX_USERNAME_LENGTH) {
int firstNameLength = firstName.length();
if(firstNameLength > (MAX_USERNAME_LENGTH - 2)) {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName.substring(0, (MAX_USERNAME_LENGTH - 2)) + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
} else {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
}
} else {
username = fullName;
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
} else {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
}
}
return null;
}
public boolean isUnique(String username) throws GeneralException {
return !idn.accountExistsByDisplayName(application.getName(), username);
}
]]></Source>
</Rule>
```
### Add your return statement
This line calls the `generateUsername` function and starts to execute the rule. The result will be returned.
```java
return generateUsername( identity.getFirstname(), identity.getLastname() );
```
<details>
<summary>Complete XML Rule</summary>
```xml
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE Rule PUBLIC "sailpoint.dtd" "sailpoint.dtd">
<Rule name="Example Rule" type="AttributeGenerator">
<Description>Describe your rule here.</Description>
<Source><![CDATA[
import org.apache.commons.lang.StringUtils;
import org.apache.log4j.LogManager;
import org.apache.log4j.Logger;
import sailpoint.object.Application;
import sailpoint.object.Field;
import sailpoint.object.Identity;
import sailpoint.server.IdnRuleUtil;
import sailpoint.tools.GeneralException;
int MAX_USERNAME_LENGTH = 12;
public String generateUsername(String firstName, String lastName) throws GeneralException {
firstName = StringUtils.trimToNull(firstName);
lastName = StringUtils.trimToNull(lastName);
String otherName = identity.getStringAttribute("otherName");
if(firstName != null) {
firstName = firstName.replaceAll("[^a-zA-Z0-9]", "");
}
if(lastName != null) {
lastName = lastName.replaceAll("[^a-zA-Z0-9]", "");
}
if(otherName != null) {
otherName = otherName.replaceAll("[^a-zA-Z0-9]", "");
}
if((firstName == null) || (lastName == null)) {
log.debug( "AD Create User Name | Exit from generateUsername method. No last name and first name for user" );
return null;
}
if(!StringUtils.isEmpty(otherName)) {
firstName = otherName;
}
String username = null;
String fullName = firstName + "." + lastName;
if(fullName.length() > MAX_USERNAME_LENGTH) {
int firstNameLength = firstName.length();
if(firstNameLength > (MAX_USERNAME_LENGTH - 2)) {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName.substring(0, (MAX_USERNAME_LENGTH - 2)) + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
} else {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
}
} else {
username = fullName;
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
} else {
for(int lastNameLength = 0; lastNameLength < lastName.length(); lastNameLength++) {
username = firstName + "." + lastName.charAt(lastNameLength);
username = username.toLowerCase();
if (isUnique(username)) {
log.debug( "AD Create User Name | Unique username generated: " + username);
log.debug( "AD Create User Name | Exit from the GenerateUsername Method" );
return username;
}
}
}
}
return null;
}
public boolean isUnique(String username) throws GeneralException {
return !idn.accountExistsByDisplayName(application.getName(), username);
}
return generateUsername( identity.getFirstname(), identity.getLastname() );
]]></Source>
</Rule>
```
</details>
Once your rule is saved in the XML format, you can begin testing.
## Testing rules
Before submitting your rule for review, it's essential that you test it. You can use the RDK to do so.
By default, the RDK uses the [Mockito](https://javadoc.io/doc/org.mockito/mockito-core/latest/org/mockito/Mockito.html) library to mock objects and return mocked results for testing your rule logic.
### Create your test class
Create a new class at `/src/test/java/sailpoint` named `UsernameGeneratorTest`. This class will serve as your test class.
### Configure the logging and rule file
Create a logger instance with the name of your test class and set the `RULE_FILENAME` to the rule you want to test.
```java
Logger log = LogManager.getLogger(UsernameGeneratorTest.class);
private static final String RULE_FILENAME = "src/main/resources/rules/Rule - AttributeGenerator - UsernameGenerator.xml";
```
### Setup the BeanShell interpreter
Initialize the BeanShell interpreter for evaluating the rule.
```java
Interpreter i = new Interpreter();
```
### Mock the objects and return the mocked data
Anywhere your rule uses data from ISC, you will need to mock out those objects. In the 'Username Generator' example, the objects used are `IdnRuleUtil`, `Application`, and `Identity`.
```java
IdnRuleUtil idn = mock();
when(idn.accountExistsByDisplayName(any(), any())).thenReturn(true).thenReturn(false);
Application application = mock(Application.class);
when(application.getName()).thenReturn("applicationName");
Identity identity = mock(Identity.class);
when(identity.getFirstname()).thenReturn("Tyler");
when(identity.getLastname()).thenReturn("Smith");
when(identity.getStringAttribute("otherName")).thenReturn("");
```
### Pass the mocked objects into the interpreter
Pass the variables you mocked so that when the rule uses these objects, they return your mocked values.
```java
i.set("log", log);
i.set("idn", idn);
i.set("application", application);
i.set("identity", identity);
```
### Evaluate the rule
Use BeanShell to evaluate the rule to get your rule result.
```java
String source = RuleXmlUtils.readRuleSourceFromFilePath(RULE_FILENAME);
result = (String) i.eval(source);
```
### Assertions
Add assertions to your test class to validate that when your rule is given certain inputs, it returns your expected result.
```java
assertNotNull(result);
assertEquals(result, "tyler.s");
```
### Run Maven test
To run the test with Maven, open the terminal and in the root of the project, run this command:
```bash
mvn test -Dtest="UsernameGeneratorTest"
```
Run all tests in the tests directory:
```bash
mvn test
```
When your test runs, you will see the output of your logs. These logs can help when you're writing logic and debugging.
```java
[INFO] -------------------------------------------------------
[INFO] T E S T S
[INFO] -------------------------------------------------------
[INFO] Running sailpoint.UsernameGeneratorTest
13:02:18.229 [main] DEBUG sailpoint.UsernameGeneratorTest - AD Create User Name | Unique username generated: tyler.s
13:02:18.233 [main] DEBUG sailpoint.UsernameGeneratorTest - AD Create User Name | Exit from the GenerateUsername Method
13:02:18.237 [main] INFO sailpoint.UsernameGeneratorTest - Beanshell script returned: tyler.s
[INFO] Tests run: 1, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 1.912 s -- in sailpoint.UsernameGeneratorTest
[INFO]
[INFO] Results:
[INFO]
[INFO] Tests run: 1, Failures: 0, Errors: 0, Skipped: 0
[INFO]
[INFO] ------------------------------------------------------------------------
[INFO] BUILD SUCCESS
[INFO] ------------------------------------------------------------------------
[INFO] Total time: 5.046 s
[INFO] Finished at: 2023-08-01T13:02:18-04:00
[INFO] ------------------------------------------------------------------------
```
## Next steps
Have an issue using the RDK? Reach out to us on GitHub [here](https://github.com/sailpoint-oss/rule-development-kit/issues)
Discuss the tool and other rule-specific topics in the [SailPoint Developer Community](https://developer.sailpoint.com/discuss/).
Reference in New Issue View Git Blame Copy Permalink