constants

const (

	// StatsTagKeyDestinationID represents the destination ID tag.
	StatsTagKeyDestinationID = "@destid"

	// StatsTagKeyDestinationIP represents the destination IP tag.
	StatsTagKeyDestinationIP = "@destip"

	// StatsTagKeyDestinationType represents the destination type tag.
	StatsTagKeyDestinationType = "@desttype"

	// StatsTagKeySourceID represents the source ID tag.
	StatsTagKeySourceID = "@srcid"

	// StatsTagKeySourceIP represents the source IP tag.
	StatsTagKeySourceIP = "@srcip"

	// StatsTagKeyURI represents the URI tag.
	StatsTagKeyURI = "@uri"

	// StatsTagKeyObservationMode represents the that the flow is oberserved.
	StatsTagKeyObservationMode = "@observed"

	// StatsTagKeyObservedAction represents the action taken on an oberserved flow.
	StatsTagKeyObservedAction = "@oaction"

	// StatsTagKeyObservedPolicyID represents the observation policy ID.
	StatsTagKeyObservedPolicyID = "@opolicyid"

	// StatsTagKeyObservedPolicyNamespace represents the observation policy Namespace.
	StatsTagKeyObservedPolicyNamespace = "@opolicyns"

	// StatsTagKeySourceType represents the source type tag.
	StatsTagKeySourceType = "@srctype"

	// StatsTagKeyDestinationPort represents the destination port tag.
	StatsTagKeyDestinationPort = "@destport"

	// StatsTagKeyEncrypted represents the encrypted tag.
	StatsTagKeyEncrypted = "@encrypted"

	// StatsTagKeyPolicyID represents the policy ID tag.
	StatsTagKeyPolicyID = "@policyid"

	// StatsTagKeyPolicyNamespace represents the policy ID tag.
	StatsTagKeyPolicyNamespace = "@policyns"

	// StatsTagKeyServiceID represents the service ID tag.
	StatsTagKeyServiceID = "@srvid"

	// StatsTagKeyServiceType is the service type of a flow
	StatsTagKeyServiceType = "@srvtype"

	// StatsTagKeyProcessingUnitID represents the processing unit ID tag.
	StatsTagKeyProcessingUnitID = "$id"

	// StatsTagKeyEnforcerID represents the processing unit ID tag.
	StatsTagKeyEnforcerID = "@eid"

	// StatsTagKeyIP represents the IP tag.
	StatsTagKeyIP = "@ip"

	// StatsTagKeyAction represents the action tag.
	StatsTagKeyAction = "@action"

	// StatsTagKeyReason represents the reason tag.
	StatsTagKeyReason = "@reason"

	// StatsTagKeyEvent represents the event tag.
	StatsTagKeyEvent = "@event"

	// StatsTagKeyImage represents the image tag.
	StatsTagKeyImage = "@sys:image"

	// StatsTagKeyPid represents the parent Pid of the container
	StatsTagKeyPid = "@sys:pid"

	// StatsTagKeyUserID is the user id.
	StatsTagKeyUserID = "@sys:uid"

	// StatsTagClaimID is the claim ID
	StatsTagClaimID = "@claimid"

	// StatsTagKeyServerID represents the server ID tag.
	StatsTagKeyServerID = "@serverid"

	// StatsTagKeyNamespace represents the namespace tag.
	StatsTagKeyNamespace = "$namespace"

	// StatsTagKeySourceNamespace represents the destination namespace tag.
	StatsTagKeySourceNamespace = "@srcns"

	// StatsTagKeyDestinationNamespace represents the destination namespace tag.
	StatsTagKeyDestinationNamespace = "@destns"

	// StatsTagKeyServiceNamespace represents the service namespace tag.
	StatsTagKeyServiceNamespace = "@srvns"

	// StatsTagKeyAporetoContextID represents the aporeto context ID.
	StatsTagKeyAporetoContextID = "@squallid"

	// StatsTagKeyFileAccessPath represents the file path.
	StatsTagKeyFileAccessPath = "@path"

	// StatsTagKeyFileAccessHost represents the host where the file is stored.
	StatsTagKeyFileAccessHost = "@host"

	// StatsTagKeyFileAccessProtocol represents the protocol used to access the file.
	StatsTagKeyFileAccessProtocol = "@protocol"

	// StatsTagKeyFileAccessMode represents the mode of file.
	StatsTagKeyFileAccessMode = "@mode"

	// StatsTagKeySyscallAccessName represents the number of the syscall.
	StatsTagKeySyscallAccessName = "@syscall"

	// StatsTagKeySyscallSuccess represents the success or not  of the syscall.
	StatsTagKeySyscallSuccess = "@success"

	// StatsTagKeyExecutable represents the executable of the syscall
	StatsTagKeyExecutable = "@exec"

	// StatsTagKeyAuditProfileID represents the key for the audit profile identifier.
	StatsTagKeyAuditProfileID = "@apid"

	// StatsTagKeySyscallAccessPID represents the pid of the related process.
	StatsTagKeySyscallAccessPID = "@pid"

	// StatsTagKeySyscallAccessProcessName represents the name of the related process.
	StatsTagKeySyscallAccessProcessName = "@processname"

	// StatsTagKeyFlowTypeProcessingUnit represents the pu type value.
	StatsTagKeyFlowTypeProcessingUnit = "pu"

	// StatsTagKeyFlowTypeExternalNetwork represents the ext value.
	StatsTagKeyFlowTypeExternalNetwork = "ext"

	// StatsTagKeyL4Protocol represents the L4 protocol for the flow
	StatsTagKeyL4Protocol = "@l4proto"

	// StatsTagKeyClaimsID represents claims ID for the flow
	StatsTagKeyClaimsID = "@claimid"
)

const (
	// RelationConnectTagString is the system created relation=connect tag.
	RelationConnectTagString = "relation=connect"

	// RelationStartPUTagString is the system created relation=start tag.
	RelationCreatePUTagString = "relation=start"

	// RelationRunPUTagString is the system create relation=run tag.
	RelationRunPUTagString = "relation=run"

	// RelationNegateSubjectTagString is the system create relation=negate-subject tag.
	RelationNegateSubjectTagString = "relation=negate-subject"

	// RelationNegateObjectTagString is the system create relation=negate-object tag.
	RelationNegateObjectTagString = "relation=negate-object"

	// RelationApplySubject is the system create relation=apply-subject
	RelationApplySubjectOnly = "relation=apply-subject"

	// RelationApplyObject is the system create relation-apply-object
	RelationApplyObjectOnly = "relation-apply=object"

	// ActionAllowTagString is the system created action=allow tag.
	ActionAllowTagString = "action=allow"

	// ActionRulesTagString is the system created rules tag.
	ActionRulesTagString = "rules"

	// ActionOutgoingTagString is the system created action=outgoing tag.
	ActionOutgoingTagString = "action=outgoing"

	// ActionIncomingTagString is the system created action=incoming tag.
	ActionIncomingTagString = "action=incoming"

	// ActionAllowedSubnetsTagString is the system created action=authorize-subnets tag.
	ActionAllowedSubnetsTagString = "action=authorize-subnets"

	// ActionRejectTagString is the system created "action=reject" tag
	ActionRejectTagString = "action=reject"

	// ActionContinueTagString is the system created "action=continue" tag
	ActionContinueTagString = "action=continue"

	// ActionEncryptTagString is the system created action=encrypt tag.
	ActionEncryptTagString = "action=encrypt"

	// ActionLogTagString is the system created action=log tag.
	ActionLogTagString = "action=log"

	// ActionPUDefaultTagString is the system created action-stop tag
	ActionPUDefaultTagString = "action=default"

	// ActionStopPUTagString is the system created action-stop tag
	ActionPUDeleteTagString = "action=delete"

	// ActionStopPUTagString is the system created action-stop tag
	ActionPUSnapshotTagString = "action=snapshot"

	// ActionStopPUTagString is the system created action-stop tag
	ActionPURejectTagString = "action=reject"

	// ActionStopPUTagString is the system created action-stop tag
	ActionPULogComplianceTagString = "action=logcomply"

	// ActionStopPUTagString is the system created action-stop tag
	ActionPUEnforceTagString = "action=enforce"

	// ActionStopPUTagString is the system created action-stop tag
	ActionPUStopTagString = "action=stop"

	// ActionObserveTagString is the system created action=observe tag.
	ActionObserveTagString = "action=observe"

	// ActionOApplyTagString is the system created observedaction=allow tag.
	ActionOApplyTagString = "oaction=apply"

	// ActionOContinueTagString is the system created "observedaction=continue" tag
	ActionOContinueTagString = "oaction=continue"

	// ActionTokenScope is the system created action=scope tag.
	ActionTokenScope = "action=scope"

	// ActionTokenAudience is the system created action=scope tag.
	ActionTokenAudience = "action=tokenaudience"

	// ActionInheritedClaimKeys is the system craeted action=inehritedkeys tag.
	ActionInheritedClaimKeys = "action=inheritedkeys"

	// ActionAssignedAudience is the system create action=assignedaudience tag.
	ActionAssignedAudience = "action=assignedaudience"

	// ActionProtoPortsString is the system created action=restrictports tag.
	ActionProtoPortsTagString = "action=restrictports"

	// ActionDatapathTypeTagString is the system created action=datapathtype tag.
	ActionDatapathType = "action=datapathtype"
)

const (
	// UserLabelPrefix is the label prefix for all user defined labels
	UserLabelPrefix = "@usr:"

	// SystemLabelPrefix is the label prefix for all system defined labels
	SystemLabelPrefix = "@sys:"

	// AttributeLabelPrefix is the prefix for all attributes
	AttributeLabelPrefix = "$"
)

const (
	// RelationReadTagString is the system created relation=read tag.
	RelationReadTagString = "relation=read"

	// RelationWriteTagString is the system created relation=write tag.
	RelationWriteTagString = "relation=write"

	// RelationExecuteTagString is the system created relation=execute tag.
	RelationExecuteTagString = "relation=execute"
)

const (
	// ActionLimitTagString is the system created action=limit tag.
	ActionLimitTagString = "action=limit"

	// RelationQuotaTagString is the system created quota=n tag.
	ActionLimitQuotaKey = "quota"

	// RelationQuotaNamespaceTagString is the system created quota=n tag.
	ActionLimitTargetNamespaceKey = "targetNamespace"
)

const (

	// DynamicTagOperationalStatusKey is the key of the operationalstatus tag.
	DynamicTagOperationalStatusKey = "$operationalstatus"

	// DynamicTagNameKey is the key for the name tag.
	DynamicTagNameKey = "$name"

	// DynamicTagIDKey is the key of the id tag.
	DynamicTagIDKey = "$id"

	//DynamicTagTypeKey is the key of the type tag.
	DynamicTagTypeKey = "$type"

	// DynamicTagNamespaceKey is the key of the namespace tag.
	DynamicTagNamespaceKey = "$namespace"

	// DynamicTagImageKey is the key of the image tag.
	DynamicTagImageKey = "$image"

	// DynamicTagIdentityKey is the key of the identity tag.
	DynamicTagIdentityKey = "$identity"

	// DynamicTagEnforcerIDKey is the key of the enforcerid tag.
	DynamicTagEnforcerIDKey = "$enforcerid"
)

const (
	// MetadataSysImageKey is the key of the image tag.
	MetadataSysImageKey = "@sys:image"

	// MetatataSysNameKey is the key of the name tag.
	MetatataSysNameKey = "@sys:name"

	// MetadataUsrDockerCompose  is the key of the docker compose tag.
	MetadataUsrDockerCompose = "@usr:com.docker.compose"

	// MetadataEvent is the key of the event tag
	MetadataEventKey = "@event"

	// MetadataUsrPortKey is the key of the user port tag
	MetadataUsrPortKey = "@usr:port"
)

const (

	// AuthKey is the key of a auth.
	AuthKey = "@auth:"

	// AuthRoleKey is the key of a role.
	AuthRoleKey = "@auth:role"

	// AuthOrganizationKey is the key of a organization.
	AuthOrganizationKey = "@auth:organization"
)

const (
	// HTTPMethodAnyTagString is the system created http-method=any tag.
	HTTPMethodAnyTagString = "http-method=any"

	// HTTPMethodPostTagString is the system created http-method=POST tag.
	HTTPMethodPostTagString = "http-method=post"

	// HTTPMethodPutTagString is the system created http-method=PUT tag.
	HTTPMethodPutTagString = "http-method=put"

	// HTTPMethodGetTagString is the system created http-method=GET tag.
	HTTPMethodGetTagString = "http-method=get"

	// HTTPMethodDeleteTagString is the system created http-method=DELETE tag.
	HTTPMethodDeleteTagString = "http-method=delete"

	// HTTPMethodPatchTagString is the system created http-method=PATCH tag.
	HTTPMethodPatchTagString = "http-method=patch"

	// HTTPMethodHeadTagString is the system created http-method=PATCH tag.
	HTTPMethodHeadTagString = "http-method=head"
)

const (
	// ActionHookTagString is the system created action=hook tag.
	ActionHookTagString = "action=hook"

	// ActionHookEndpointKey represents the action key that holds the hook endpoint.
	ActionHookEndpointKey = "endpoint"

	// ActionHookSelectors represents the action key that holds the hook selectors.
	ActionHookSelectorsKey = "selectors"

	// ActionHookEndpointType represents the action key that holds the endpoint type.
	ActionHookEndpointTypeKey = "endpointType"

	// ActionHookCAKey represents the action key that holds the hook CA.
	ActionHookCAKey = "ca"

	// ActionHookClientCertKey represents the action key that holds the hook client certifificate.
	ActionHookClientCertKey = "clientCert"

	// ActionHookClientCertKeyKey represents the action key that holds the hook client certifificate key.
	ActionHookClientCertKeyKey = "clientCertKey"

	// ActionHookModeyKey represents the action key that holds the hook mode.
	ActionHookModeyKey = "mode"

	// ActionHookOperationsKey represents the action key that holds the hook operations.
	ActionHookOperationsKey = "operations"

	// ActionHookContinueOnErrorKey represents if the hook should continue in case of error.
	ActionHookContinueOnErrorKey = "continueOnError"
)

const (
	// ActionRestrictUserAccessTagString contains the info of User Access policy.
	ActionRestrictUserAccessTagString = "action=restrict-user-access"
)

const (
	// ActionSSHCertificateScopeTagString contains the SSH certificates scope.
	ActionSSHCertificateScopeTagString = "action=ssh-certificate-scope"
)

const (

	// OrganizationalMetadataKey is the key of an organizatonal metadata.
	OrganizationalMetadataKey = "@org:"
)

const (
	// ValidationConstraintViolationKey is added in elemental errors when having a constraint violation.
	ValidationConstraintViolationKey = "constraintViolation"
)