feat: Constrain values for approval_policy #7778

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Open

gt-oai wants to merge 1 commit into main from admin-policies-allowlist-2

+626 −104

gt-oai commented Dec 9, 2025 •

edited

Loading

Constrain approval_policy through new admin_policy config.

This PR will:

Add a admin_policy section to config, with a single field (for now) allowed_approval_policies. This list constrains the set of user-settable approval_policys.
Introduce a new Constrained<T> type, which combines a current value and a validator function. The validator function ensures disallowed values are not set.
Change the type of approval_policy on Config and SessionConfiguration from AskForApproval to Constrained<AskForApproval>. The validator function is set by the values passed into allowed_approval_policies.
GenericDisplayRow: add a disabled_reason: Option<String>. When set, it disables selection of the value and indicates as such in the menu. This also makes it unselectable with arrow keys or numbers. This is used in the /approvals menu.

Follow ups are:

Do the same thing to sandbox_policy.
Propagate the allowed set of values through app-server for the extension (though already this should prevent app-server from setting this values, it's just that we want to disable UI elements that are unsettable).

Happy to split this PR up if you prefer, into the logical numbered areas above. Especially if there are parts we want to gavel on separately (e.g. admin_policy).

Disabled full access:

Disabled --yolo on startup:

CODEX-4087

github-actions bot commented Dec 9, 2025 •

edited

Loading

All contributors have signed the CLA ✍️ ✅
_{Posted by the CLA Assistant Lite bot.}

Author

gt-oai commented Dec 9, 2025

I have read the CLA Document and I hereby sign the CLA

github-actions bot added a commit that referenced this pull request


          @gt-oai has signed the CLA in #7778

fc99a8d

gt-oai force-pushed the admin-policies-allowlist-2 branch 3 times, most recently from b96996e to 697f5c3 Compare

December 9, 2025 17:44

gt-oai marked this pull request as ready for review

December 9, 2025 17:59

gt-oai force-pushed the admin-policies-allowlist-2 branch from 697f5c3 to 693addf Compare

December 9, 2025 18:11

jif-oai reviewed

View reviewed changes

Collaborator

jif-oai left a comment

Maybe good to check with @eb for the UX

codex-rs/core/src/config/mod.rs Outdated Show resolved Hide resolved

codex-rs/core/src/config/mod.rs Outdated Show resolved Hide resolved

codex-rs/core/src/config/mod.rs Outdated Show resolved Hide resolved

codex-rs/core/src/config/mod.rs Outdated

    
              impl<T: Send + Sync> Constrained<T> {

                  pub fn new(

                      initial_value: T,

                      validator: impl Fn(&T) -> std::io::Result<()> + Send + Sync + 'static,

Collaborator

jif-oai Dec 9, 2025

Re-use ConstraintValidator in the type def

Author

gt-oai Dec 10, 2025

I tried to do this but didn't seem able too -- something about runtime sizes vs compile-time sizes

codex-rs/core/src/config/mod.rs Outdated Show resolved Hide resolved

codex-rs/core/src/codex.rs Outdated Show resolved Hide resolved

codex-rs/core/src/codex.rs Outdated Show resolved Hide resolved

codex-rs/core/src/codex.rs Outdated Show resolved Hide resolved

codex-rs/core/tests/suite/approvals.rs Outdated Show resolved Hide resolved

codex-rs/tui/src/bottom_pane/mod.rs Outdated Show resolved Hide resolved

gt-oai force-pushed the admin-policies-allowlist-2 branch 3 times, most recently from 1e0cd2d to 30f0162 Compare

December 10, 2025 16:12

bolinfest reviewed

View reviewed changes

codex-rs/core/src/config/mod.rs

    
              pub const CONFIG_TOML_FILE: &str = "config.toml";

              const ALL_APPROVAL_POLICIES: [AskForApproval; 4] = [

Collaborator

bolinfest Dec 11, 2025

I would move as much of these new types as possible to another/new file. This file is already quite large.

Author

gt-oai Dec 11, 2025

Moved into constraint.rs (new) and types.rs.

codex-rs/core/src/config/mod.rs Outdated

    
                      })

                  }

                  pub fn allow_any(initial_value: T) -> Self {

Collaborator

bolinfest Dec 11, 2025

This doesn't help the UI know what the supported values are, though? I guess that is a limitation of ConstraintValidator in general?

Author

gt-oai Dec 11, 2025 •

edited

Loading

It is a limitation of ConstraintValidator, but we could add this list of possible values to Constrained<T>. I wanted to ensure the abstraction could work when the set of possible values was not enumerable.

codex-rs/core/src/config/mod.rs Outdated

    
                      self.value

                  }

                  pub fn can_set(&self, candidate: &T) -> ConstraintResult<()> {

Collaborator

bolinfest Dec 11, 2025

I see: so is the idea we can ask whether a candidate is supported, but we can't get the list of supported candidates? I guess it's more dynamic this way...

Author

gt-oai Dec 11, 2025

Yes, I'm happy to extend this (e.g. ConstrainedSet, which directly contains the allowed_values). But I felt for now what we actually wanted is covered by (1) the can_set method and (2) the validator error message.

There's a risk we end up in a hairy ball of config-driven menus which I feel often isn't great for the user.

gt-oai force-pushed the admin-policies-allowlist-2 branch from 30f0162 to 02009e5 Compare

December 11, 2025 10:34


          Constrain values for approval_policy

74c93ed

gt-oai force-pushed the admin-policies-allowlist-2 branch from 02009e5 to 74c93ed Compare

December 11, 2025 10:36

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet