Skip to content

fix(schema): use anyOf where BNF allows mixed inline and named groups#581

Open
aorzelskiGH wants to merge 1 commit into
IDTA-01002-3-2_workingfrom
fix/xor-vs-mix-anyof
Open

fix(schema): use anyOf where BNF allows mixed inline and named groups#581
aorzelskiGH wants to merge 1 commit into
IDTA-01002-3-2_workingfrom
fix/xor-vs-mix-anyof

Conversation

@aorzelskiGH
Copy link
Copy Markdown
Contributor

@aorzelskiGH aorzelskiGH commented Apr 17, 2026

Summary

Replaces oneOf with anyOf in exactly those places where the BNF
uses concatenation (both variants may appear together) rather than
alternation (exactly one). Keeps oneOf where the BNF is genuinely
XOR.

Problem

The BNF makes a deliberate distinction between "mix allowed" and
"exactly one":

<AttributeGroup> ::=
    ( <SingleAttribute> <ws> )*
    ( <UseAttributeGroup> <ws> )*     -- CAT (mix allowed)

<AccessPermissionRule> ::=
    ( <ACL> | <UseACL> )                -- XOR
    "OBJECTS:" <ws>
    ( <SingleObject> <ws> )*
    ( <UseObjectGroup> <ws> )*          -- CAT (inline)
    ( "FORMULA:" ... | <UseFormula> )   -- XOR

But the JSON Schema used oneOf for the CAT pairs too, making the
schema strictly more restrictive than the grammar. A rule that lists
both inline ATTRIBUTES and a USEATTRIBUTES reference was legal
per BNF and illegal per schema.

Solution

Change oneOf to anyOf in exactly the CAT cases:

  • ACL.{ATTRIBUTES, USEATTRIBUTES}
  • AccessPermissionRule.{OBJECTS, USEOBJECTS}
  • aas-specs-security only: DEFATTRIBUTES item
    {attributes, USEATTRIBUTES}

Keep oneOf for the XOR cases:

  • AccessPermissionRule.{ACL, USEACL}
  • AccessPermissionRule.{FORMULA, USEFORMULA}
  • DEFOBJECTS item {objects, USEOBJECTS} (grammar
    <ObjectGroup> is XOR: ( A )* | ( B )*)
  • SecurityQueryFilter.{CONDITION, USEFORMULA}

Impact

  • Affected specs: IDTA-01002 (API) and IDTA-01004 (Security).
  • Strict relaxation: every document previously valid remains valid;
    additionally, documents that combine inline and named attribute/
    object groups now validate.
  • No grammar changes.

Review notes

  • Please confirm the ObjectGroup grammar is indeed intended as XOR
    (production line: ( <SingleObject> )* | ( <UseObjectGroup> )*)
    while the inline OBJECTS: block inside <AccessPermissionRule>
    is intended as CAT. If both are meant to be CAT, DEFOBJECTS
    should also be flipped to anyOf — trivial follow-up.
  • The single-string USEATTRIBUTES in ACL vs the array-of-string
    in DEFATTRIBUTES is a separate inconsistency and is not
    addressed here.

Related

Review Finding T-13: XOR vs mix semantics between BNF and JSON
Schema.

@aorzelskiGH
fix(schema): use anyOf where BNF allows mixed inline and named groups
150e056 
The BNF distinguishes concatenation (mix allowed) from alternation
(XOR) for the pairs inline-group / named-group. Three pairs in the
JSON schemas were marked oneOf (XOR) even though the grammar is CAT.

Grammar references (access-rules.bnf / grammar.bnf):

  <AttributeGroup> ::=
      ( <SingleAttribute> <ws> )*
      ( <UseAttributeGroup> <ws> )*     -- CAT

  <AccessPermissionRule> ::=
      "ACCESSRULE:" ...
      ( <ACL> | <UseACL> ) <ws>          -- XOR
      "OBJECTS:" <ws>
      ( <SingleObject> <ws> )*
      ( <UseObjectGroup> <ws> )*         -- CAT (inline, not <ObjectGroup>)
      ( "FORMULA:" ... | <UseFormula> )  -- XOR

Changes:

  - ACL.{ATTRIBUTES, USEATTRIBUTES}              oneOf -> anyOf
  - AccessPermissionRule.{OBJECTS, USEOBJECTS}   oneOf -> anyOf
  - DEFATTRIBUTES item.{attributes, USEATTRIBUTES} oneOf -> anyOf
    (only in aas-specs-security; API schema doesn't have USEATTRIBUTES
     at DEFATTRIBUTES level.)

Kept as oneOf (XOR):

  - AccessPermissionRule.{ACL, USEACL}
  - AccessPermissionRule.{FORMULA, USEFORMULA}
  - DEFOBJECTS item.{objects, USEOBJECTS}
  - SecurityQueryFilter.{CONDITION, USEFORMULA}

Refs: Review Finding T-13
Made-with: Cursor
@BirgitBoss BirgitBoss added this to the 3.1.3 milestone May 11, 2026
This was referenced May 20, 2026
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sebbader-sap sebbader-sap Awaiting requested review from sebbader-sap sebbader-sap is a code owner

@BirgitBoss BirgitBoss Awaiting requested review from BirgitBoss BirgitBoss is a code owner

@alexgordtop alexgordtop Awaiting requested review from alexgordtop alexgordtop is a code owner

@mjacoby mjacoby Awaiting requested review from mjacoby mjacoby is a code owner

@danielporta danielporta Awaiting requested review from danielporta danielporta is a code owner

@g1zzm0 g1zzm0 Awaiting requested review from g1zzm0 g1zzm0 is a code owner

@waltersve waltersve Awaiting requested review from waltersve waltersve is a code owner

@zrgt zrgt Awaiting requested review from zrgt zrgt is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

3.1.3

Development

Successfully merging this pull request may close these issues.

2 participants

@aorzelskiGH @BirgitBoss