Some fields in the Config crate should have range checks (@crates/config/src/security_compliance.rs:password_expires_days should have min=1). Constraints themselves should be copied (in the security compliance case) from https://opendev.org/openstack/keystone/src/branch/master/keystone/conf/security_compliance.py#L66 Since there is no possibility to implement this easily with serde the easier approach is to use validate crate which is already used in the project to set additional range constraints.
The config manager should be forcibly call self.validate to enforce the checks.
Some fields in the Config crate should have range checks (@crates/config/src/security_compliance.rs:password_expires_days should have min=1). Constraints themselves should be copied (in the security compliance case) from https://opendev.org/openstack/keystone/src/branch/master/keystone/conf/security_compliance.py#L66 Since there is no possibility to implement this easily with serde the easier approach is to use
validatecrate which is already used in the project to set additional range constraints.The config manager should be forcibly call self.validate to enforce the checks.