Skip to content

Commit 35dd823

Browse files
committed
fix: add default allowed roles
1 parent 0be16a1 commit 35dd823

1 file changed

Lines changed: 4 additions & 0 deletions

File tree

crates/core/src/types.rs

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -22,6 +22,7 @@ pub struct BucketConfig {
2222

2323
/// IAM role ARNs that are allowed to access this bucket.
2424
/// Empty means only anonymous access (if enabled) or long-lived credentials.
25+
#[serde(default)]
2526
pub allowed_roles: Vec<String>,
2627

2728
/// Provider-specific config passed to the object_store builder.
@@ -107,16 +108,19 @@ pub struct RoleConfig {
107108
pub name: String,
108109

109110
/// OIDC provider URLs trusted by this role (e.g., "https://token.actions.githubusercontent.com").
111+
#[serde(default)]
110112
pub trusted_oidc_issuers: Vec<String>,
111113

112114
/// Required audience claim value.
113115
pub required_audience: Option<String>,
114116

115117
/// Conditions on the subject claim (glob patterns).
116118
/// e.g., "repo:myorg/myrepo:ref:refs/heads/main"
119+
#[serde(default)]
117120
pub subject_conditions: Vec<String>,
118121

119122
/// Buckets and prefixes this role can access.
123+
#[serde(default)]
120124
pub allowed_scopes: Vec<AccessScope>,
121125

122126
/// Maximum session duration in seconds.

0 commit comments

Comments
 (0)