Commit Graph

73 Commits (ec6da0859d6d0e781daff58754f0dad29a04c4d9)

Author SHA1 Message Date
Daniel Nephin a10283a313 acl: remove t.Parallel
4 years ago
R.B. Boyer 6ba776b4f3
agent: protect the ui metrics proxy endpoint behind ACLs (#9099)
4 years ago
Warren 40f080576e
Small typo in docstring (#8280)
4 years ago
Matt Keeler 51c3a605ad
Merge pull request #8035 from hashicorp/feature/auto-config/server-rpc
5 years ago
Matt Keeler 1dba94311a
Add helper for generating better permission denied errors
5 years ago
Daniel Nephin 068b43df90 Enable gofmt simplify
5 years ago
Jono Sosulska c554ba9e10
Replace whitelist/blacklist terminology with allowlist/denylist (#7971)
5 years ago
Freddy cb77fc6d01
Add managed service provider token (#7218)
5 years ago
Matt Keeler 8bd34e126f
Intentions ACL enforcement updates (#7028)
5 years ago
Matt Keeler 80d13d500b
Miscellaneous acl package cleanup
5 years ago
Matt Keeler 0b346616e9
Rename EnterpriseAuthorizerContext -> AuthorizerContext
5 years ago
Matt Keeler 8f0ab0129e
Miscellaneous Fixes (#6896)
5 years ago
Matt Keeler deb91f3d3c
[Feature] API: Add a internal endpoint to query for ACL authori… (#6888)
5 years ago
Matt Keeler 79f78632e1
Update the ACL Resolver to allow for Consul Enterprise specific hooks. (#6687)
5 years ago
Matt Keeler e4ea9b0a96
Updates to allow for Namespacing ACL resources in Consul Enterp… (#6675)
5 years ago
Matt Keeler 973341a592
ACL Authorizer overhaul (#6620)
5 years ago
Jack Pearkes 36ebca1fd0 Fix to prevent allowing recursive KV deletions when we shouldn’t
6 years ago
Matt Keeler f88d1ccc36
Handle rules translation when coming from the JSON compat HCL (#5662)
6 years ago
Matt Keeler 18b29c45c4
New ACLs (#4791)
6 years ago
Matt Keeler fbb1a7a52b Rewrite all of acl_test.go
6 years ago
Matt Keeler 883c5dd001 Fix ACL enforcement
6 years ago
Mitchell Hashimoto 5a47a53c70
acl: IntentionDefault => IntentionDefaultAllow
7 years ago
Mitchell Hashimoto ac72a0c5fd
agent: ACL checks for authorize, default behavior
7 years ago
Mitchell Hashimoto a621afe72c
agent/consul: convert intention ACLs to testify/assert
7 years ago
Mitchell Hashimoto 193f93107a
acl: implement IntentionRead/Write methods on ACL interface
7 years ago
Mitchell Hashimoto 437cc76af5
acl: parsing intentions in service block
7 years ago
Josh Soref 94835a2715 Spelling (#3958)
7 years ago
James Phillips 575d70aaa7
Cleans up some drift between the OSS and Enterprise trees.
7 years ago
Preetha Appan 26accb3b8a Only allow 'list' policies within 'key' policy definitions. Consolidated two similar tests into one and fixed alignment.
7 years ago
Preetha Appan 51a04ec87d Introduces new 'list' permission that applies to KV store recursive reads, and enforced only when opted in.
7 years ago
Preetha Appan d7e27e67c1 Introduce Code Policy validation via sentinel, with a noop implementation
7 years ago
Frank Schröder a3934c263c acl: consolidate error handling (#3401)
7 years ago
游远 ffcd2b1fc8 fix UnitTest in acl
7 years ago
James Phillips 022baeea13
Adds support to the ACL package for agent policies.
8 years ago
James Phillips 60d4322c49
Adds support to ACL package for session policies.
8 years ago
James Phillips 7fa4ab3fd1
Adds support to ACL package for node policies.
8 years ago
James Phillips 9b4f316b21
Sorts all the ACl policy handlers for easier navigation (no functional changes).
8 years ago
James Phillips c01a3871c9 Adds support for snapshots and restores. (#2396)
8 years ago
James Phillips e5850d8a26
Adds new consul operator endpoint, CLI, and ACL and some basic Raft commands.
8 years ago
James Phillips ae1cd5b47d
Switches all ACL caches to 2Q.
8 years ago
James Phillips e831727923
Activates fallback to replicated ACLs.
8 years ago
James Phillips 483898abe5 Renames "prepared_query" ACL policy to "query".
9 years ago
James Phillips 899dcfe053 Completes switch of prepared_query ACLs to govern query names.
9 years ago
James Phillips 67de77482e Creates new "prepared-query" ACL type and new token capture behavior.
9 years ago
James Phillips ce0881a99a Adds a new management ACL for prepared queries.
9 years ago
Dale Wijnand 5a28ebcaa3 Fix a bunch of typos.
9 years ago
Ryan Uber 58c26497a9 acl: adding negative tests for bad policy
10 years ago
Ryan Uber 02b49058a2 acl: more keyring tests
10 years ago
Ryan Uber 7e50a457d9 acl: allow omitting keyring policy, add tests
10 years ago
Ryan Uber 47a33e3f1a acl: keyring policy uses a flat string
10 years ago