How-to: Validate a CWL Datetime Input

This guide shows how to validate a datetime input using eoap:RegoPolicyHint.

1. Define the input

Use:

inputs:
  sensing-time:
    id: sensing-time
    label: "Sensing time"
    doc: "Acquisition datetime"
    type:
      - https://raw.githubusercontent.com/eoap/schemas/main/string_format.yaml#DateTime
      - "null"

2. Add Rego checks

Add this under hints::

hints:
  - class: eoap:RegoPolicyHint
    module: |
      package workflow

      deny[msg] {
        input["sensing-time"] == null
        msg := "sensing-time must be provided"
      }

      deny[msg] {
        st := input["sensing-time"]
        st != null
        st["value"] == null
        msg := "sensing-time.value must be provided"
      }

      deny[msg] {
        st := input["sensing-time"]
        st != null
        t := st["value"]
        t != null
        not regex.match("^\\d{4}-\\d{2}-\\d{2}T\\d{2}:\\d{2}:\\d{2}Z$", t)
        msg := "sensing-time must be UTC RFC3339 like YYYY-MM-DDTHH:MM:SSZ"
      }
    queries:
      - data.workflow.deny[_]

3. Validate with sample values

Valid:

sensing-time:
  value: "2026-05-27T16:20:00Z"

Invalid:

sensing-time:
  value: "2026/05/27 16:20:00"

Run:

assertions-mate path/to/workflow.cwl --inputs path/to/inputs.yaml

Ready-to-run example in this repository

Use these files directly:

examples/datetime-validation/workflow.cwl
examples/datetime-validation/inputs-valid.yaml
examples/datetime-validation/inputs-invalid.yaml
examples/datetime-validation/inputs-null.yaml