Add AI policy ("a" type) support to model and enforcer

Copilot · hsluoyz · Copilot · commit a9fcad3b28fd · 2026-01-25T08:57:45.000Z
Co-authored-by: hsluoyz &lt;3787410+hsluoyz@users.noreply.github.com&gt;
diff --git a/ai_api.go b/ai_api.go
@@ -145,18 +145,23 @@ func (e *Enforcer) buildExplainContext(rvals []interface{}, result bool, matched
 
 // callAIAPI calls the configured AI API to get an explanation.
 func (e *Enforcer) callAIAPI(explainContext string) (string, error) {
+	return e.callAIAPIWithSystemPrompt(explainContext, "You are an expert in access control and authorization systems. "+
+		"Explain why an authorization request was allowed or denied based on the "+
+		"provided access control model, policies, and enforcement result. "+
+		"Be clear, concise, and educational.")
+}
+
+// callAIAPIWithSystemPrompt calls the configured AI API with a custom system prompt.
+func (e *Enforcer) callAIAPIWithSystemPrompt(userContent, systemPrompt string) (string, error) {
 	// Prepare the request
 	messages := []aiMessage{
 		{
-			Role: "system",
-			Content: "You are an expert in access control and authorization systems. " +
-				"Explain why an authorization request was allowed or denied based on the " +
-				"provided access control model, policies, and enforcement result. " +
-				"Be clear, concise, and educational.",
+			Role:    "system",
+			Content: systemPrompt,
 		},
 		{
 			Role:    "user",
-			Content: fmt.Sprintf("Please explain the following authorization decision:\n\n%s", explainContext),
+			Content: userContent,
 		},
 	}
 
@@ -219,3 +224,46 @@ func (e *Enforcer) callAIAPI(explainContext string) (string, error) {
 
 	return chatResp.Choices[0].Message.Content, nil
 }
+
+// evaluateAIPolicy evaluates an AI policy by calling the configured LLM API.
+// It returns true if the AI policy allows the request, false otherwise.
+func (e *Enforcer) evaluateAIPolicy(policyDescription string, rvals []interface{}) (bool, error) {
+	if e.aiConfig.Endpoint == "" {
+		return false, errors.New("AI config not set, use SetAIConfig first")
+	}
+
+	// Build context for AI
+	var sb strings.Builder
+	sb.WriteString("Authorization Request:\n")
+	if len(rvals) > 0 {
+		sb.WriteString(fmt.Sprintf("Subject: %v\n", rvals[0]))
+	}
+	if len(rvals) > 1 {
+		sb.WriteString(fmt.Sprintf("Object: %v\n", rvals[1]))
+	}
+	if len(rvals) > 2 {
+		sb.WriteString(fmt.Sprintf("Action: %v\n", rvals[2]))
+	}
+
+	sb.WriteString(fmt.Sprintf("\nAI Policy Rule: %s\n", policyDescription))
+	sb.WriteString("\nQuestion: Does this request satisfy the AI policy rule? Answer with 'ALLOW' if yes, 'DENY' if no.")
+
+	// Call AI API
+	systemPrompt := "You are an AI security policy evaluator. " +
+		"Your task is to determine if an authorization request satisfies the given AI policy rule. " +
+		"Respond with ONLY the word 'ALLOW' or 'DENY' based on your evaluation."
+
+	response, err := e.callAIAPIWithSystemPrompt(sb.String(), systemPrompt)
+	if err != nil {
+		return false, fmt.Errorf("failed to evaluate AI policy: %w", err)
+	}
+
+	// Parse response
+	response = strings.TrimSpace(strings.ToUpper(response))
+	if strings.Contains(response, "ALLOW") {
+		return true, nil
+	}
+
+	return false, nil
+}
+
diff --git a/ai_policy_api.go b/ai_policy_api.go
@@ -0,0 +1,123 @@
+// Copyright 2026 The casbin Authors. All Rights Reserved.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package casbin
+
+// GetAIPolicy gets all the AI policy rules in the policy.
+func (e *Enforcer) GetAIPolicy() ([][]string, error) {
+	return e.GetNamedAIPolicy("a")
+}
+
+// GetFilteredAIPolicy gets all the AI policy rules in the policy, field filters can be specified.
+func (e *Enforcer) GetFilteredAIPolicy(fieldIndex int, fieldValues ...string) ([][]string, error) {
+	return e.GetFilteredNamedAIPolicy("a", fieldIndex, fieldValues...)
+}
+
+// GetNamedAIPolicy gets all the AI policy rules in the named policy.
+func (e *Enforcer) GetNamedAIPolicy(ptype string) ([][]string, error) {
+	return e.model.GetPolicy("a", ptype)
+}
+
+// GetFilteredNamedAIPolicy gets all the AI policy rules in the named policy, field filters can be specified.
+func (e *Enforcer) GetFilteredNamedAIPolicy(ptype string, fieldIndex int, fieldValues ...string) ([][]string, error) {
+	return e.model.GetFilteredPolicy("a", ptype, fieldIndex, fieldValues...)
+}
+
+// HasAIPolicy determines whether an AI policy rule exists.
+func (e *Enforcer) HasAIPolicy(params ...string) (bool, error) {
+	return e.HasNamedAIPolicy("a", params...)
+}
+
+// HasNamedAIPolicy determines whether a named AI policy rule exists.
+func (e *Enforcer) HasNamedAIPolicy(ptype string, params ...string) (bool, error) {
+	return e.model.HasPolicy("a", ptype, params)
+}
+
+// AddAIPolicy adds an AI policy rule to the current policy.
+// If the rule already exists, the function returns false and the rule will not be added.
+// Otherwise the function returns true by adding the new rule.
+func (e *Enforcer) AddAIPolicy(params ...string) (bool, error) {
+	return e.AddNamedAIPolicy("a", params...)
+}
+
+// AddAIPolicies adds AI policy rules to the current policy.
+// If the rule already exists, the function returns false for the corresponding rule and the rule will not be added.
+// Otherwise the function returns true for the corresponding rule by adding the new rule.
+func (e *Enforcer) AddAIPolicies(rules [][]string) (bool, error) {
+	return e.AddNamedAIPolicies("a", rules)
+}
+
+// AddNamedAIPolicy adds an AI policy rule to the current named policy.
+// If the rule already exists, the function returns false and the rule will not be added.
+// Otherwise the function returns true by adding the new rule.
+func (e *Enforcer) AddNamedAIPolicy(ptype string, params ...string) (bool, error) {
+	return e.addPolicyInternal("a", ptype, params)
+}
+
+// AddNamedAIPolicies adds AI policy rules to the current named policy.
+// If the rule already exists, the function returns false for the corresponding policy rule and the rule will not be added.
+// Otherwise the function returns true for the corresponding policy rule by adding the new rule.
+func (e *Enforcer) AddNamedAIPolicies(ptype string, rules [][]string) (bool, error) {
+	return e.addPoliciesInternal("a", ptype, rules)
+}
+
+// RemoveAIPolicy removes an AI policy rule from the current policy.
+func (e *Enforcer) RemoveAIPolicy(params ...string) (bool, error) {
+	return e.RemoveNamedAIPolicy("a", params...)
+}
+
+// RemoveAIPolicies removes AI policy rules from the current policy.
+func (e *Enforcer) RemoveAIPolicies(rules [][]string) (bool, error) {
+	return e.RemoveNamedAIPolicies("a", rules)
+}
+
+// RemoveFilteredAIPolicy removes an AI policy rule from the current policy, field filters can be specified.
+func (e *Enforcer) RemoveFilteredAIPolicy(fieldIndex int, fieldValues ...string) (bool, error) {
+	return e.RemoveFilteredNamedAIPolicy("a", fieldIndex, fieldValues...)
+}
+
+// RemoveNamedAIPolicy removes an AI policy rule from the current named policy.
+func (e *Enforcer) RemoveNamedAIPolicy(ptype string, params ...string) (bool, error) {
+	return e.removePolicyInternal("a", ptype, params)
+}
+
+// RemoveNamedAIPolicies removes AI policy rules from the current named policy.
+func (e *Enforcer) RemoveNamedAIPolicies(ptype string, rules [][]string) (bool, error) {
+	return e.removePoliciesInternal("a", ptype, rules)
+}
+
+// RemoveFilteredNamedAIPolicy removes an AI policy rule from the current named policy, field filters can be specified.
+func (e *Enforcer) RemoveFilteredNamedAIPolicy(ptype string, fieldIndex int, fieldValues ...string) (bool, error) {
+	return e.removeFilteredPolicyInternal("a", ptype, fieldIndex, fieldValues...)
+}
+
+// UpdateAIPolicy updates an AI policy rule from the current policy.
+func (e *Enforcer) UpdateAIPolicy(oldPolicy []string, newPolicy []string) (bool, error) {
+	return e.UpdateNamedAIPolicy("a", oldPolicy, newPolicy)
+}
+
+// UpdateAIPolicies updates AI policy rules from the current policy.
+func (e *Enforcer) UpdateAIPolicies(oldPolicies [][]string, newPolicies [][]string) (bool, error) {
+	return e.UpdateNamedAIPolicies("a", oldPolicies, newPolicies)
+}
+
+// UpdateNamedAIPolicy updates an AI policy rule from the current named policy.
+func (e *Enforcer) UpdateNamedAIPolicy(ptype string, oldPolicy []string, newPolicy []string) (bool, error) {
+	return e.updatePolicyInternal("a", ptype, oldPolicy, newPolicy)
+}
+
+// UpdateNamedAIPolicies updates AI policy rules from the current named policy.
+func (e *Enforcer) UpdateNamedAIPolicies(ptype string, oldPolicies [][]string, newPolicies [][]string) (bool, error) {
+	return e.updatePoliciesInternal("a", ptype, oldPolicies, newPolicies)
+}
diff --git a/enforcer.go b/enforcer.go
@@ -799,6 +799,33 @@ func (e *Enforcer) enforce(matcher string, explains *[]string, rvals ...interfac
 	var effect effector.Effect
 	var explainIndex int
 
+	// Check AI policies first if they exist
+	aType := "a"
+	if _, ok := e.model["a"]; ok {
+		if aPolicies, ok := e.model["a"][aType]; ok && len(aPolicies.Policy) > 0 {
+			// Evaluate AI policies
+			for _, aPolicy := range aPolicies.Policy {
+				if len(aPolicy) > 0 {
+					// The AI policy description is the first (and typically only) field
+					policyDescription := aPolicy[0]
+					allowed, err := e.evaluateAIPolicy(policyDescription, rvals)
+					if err != nil {
+						// If AI evaluation fails, log but continue with regular policies
+						// This allows the system to fall back to traditional policies
+						continue
+					}
+					if allowed {
+						// AI policy allows the request
+						return true, nil
+					}
+				}
+			}
+			// If we have AI policies but none allowed the request, deny
+			// This implements a deny-by-default behavior for AI policies
+			return false, nil
+		}
+	}
+
 	if policyLen := len(e.model["p"][pType].Policy); policyLen != 0 && strings.Contains(expString, pType+"_") { //nolint:nestif // TODO: reduce function complexity
 		policyEffects = make([]effector.Effect, policyLen)
 		matcherResults = make([]float64, policyLen)
diff --git a/model/model.go b/model/model.go
@@ -44,6 +44,7 @@ var sectionNameMap = map[string]string{
 	"e": "policy_effect",
 	"m": "matchers",
 	"c": "constraint_definition",
+	"a": "ai_policy_definition",
 }
 
 // Minimal required sections for a model to be valid.
@@ -78,7 +79,7 @@ func (model Model) AddDef(sec string, key string, value string) bool {
 	ast.PolicyMap = make(map[string]int)
 	ast.FieldIndexMap = make(map[string]int)
 
-	if sec == "r" || sec == "p" {
+	if sec == "r" || sec == "p" || sec == "a" {
 		ast.Tokens = strings.Split(ast.Value, ",")
 		for i := range ast.Tokens {
 			ast.Tokens[i] = key + "_" + strings.TrimSpace(ast.Tokens[i])
diff --git a/model/policy.go b/model/policy.go
@@ -105,6 +105,11 @@ func (model Model) ClearPolicy() {
 		ast.Policy = nil
 		ast.PolicyMap = map[string]int{}
 	}
+
+	for _, ast := range model["a"] {
+		ast.Policy = nil
+		ast.PolicyMap = map[string]int{}
+	}
 }
 
 // GetPolicy gets all rules in a policy.

Original file line number	Diff line number	Diff line change
`@@ -105,6 +105,11 @@ func (model Model) ClearPolicy() {`
`105`	`105`	`ast.Policy = nil`
`106`	`106`	`ast.PolicyMap = map[string]int{}`
`107`	`107`	`}`
	`108`	`+`
	`109`	`+ for _, ast := range model["a"] {`
	`110`	`+ ast.Policy = nil`
	`111`	`+ ast.PolicyMap = map[string]int{}`
	`112`	`+ }`
`108`	`113`	`}`
`109`	`114`
`110`	`115`	`// GetPolicy gets all rules in a policy.`