consul/agent/grpc-external/services/resource
hc-github-team-consul-core 689f32c59d
Backport of catalog, mesh: implement missing ACL hooks into release/1.17.x (#19212)
catalog, mesh: implement missing ACL hooks (#19143)

This change adds ACL hooks to the remaining catalog and mesh resources, excluding any computed ones. Those will for now continue using the default operator:x permissions.

It refactors a lot of the common testing functions so that they can be re-used between resources.

There are also some types that we don't yet support (e.g. virtual IPs) that this change adds ACL hooks to for future-proofing.

Co-authored-by: Iryna Shustava <ishustava@users.noreply.github.com>
2023-10-14 01:50:22 +00:00
..
testing Add namespace read write tests (#19173) 2023-10-13 12:03:06 -04:00
delete.go add v2 tenancy bridge Flag and v2 Tenancy Bridge initial implementation (#18830) 2023-09-18 12:25:05 -04:00
delete_test.go resource: Allow nil tenancy (#18618) 2023-08-31 09:24:09 -05:00
list.go resource: allow for the ACLs.Read hook to request the entire data payload to perform the authz check (#18925) 2023-09-22 09:53:55 -05:00
list_by_owner.go resource: allow for the ACLs.Read hook to request the entire data payload to perform the authz check (#18925) 2023-09-22 09:53:55 -05:00
list_by_owner_test.go resource: Allow nil tenancy (#18618) 2023-08-31 09:24:09 -05:00
list_test.go resource: Make resource watchlist tenancy aware (#18539) 2023-08-21 15:02:23 -05:00
mock_ACLResolver.go Check acls on resource `Read`, `List`, and `WatchList` (#16842) 2023-04-11 06:10:14 -05:00
mock_Backend.go resource: List resources by owner (#17190) 2023-05-08 12:26:19 -05:00
mock_Registry.go Check acls on resource `Read`, `List`, and `WatchList` (#16842) 2023-04-11 06:10:14 -05:00
mock_TenancyBridge.go resource: Make resource write tenancy aware (#18423) 2023-08-10 09:53:38 -05:00
read.go Backport of catalog, mesh: implement missing ACL hooks into release/1.17.x (#19212) 2023-10-14 01:50:22 +00:00
read_test.go v2tenancy: cluster scoped reads (#19082) 2023-10-10 13:30:23 -05:00
server.go add v2 tenancy bridge Flag and v2 Tenancy Bridge initial implementation (#18830) 2023-09-18 12:25:05 -04:00
server_ce.go Remove old build tags (#19128) 2023-10-10 10:58:06 -04:00
server_ce_test.go Remove old build tags (#19128) 2023-10-10 10:58:06 -04:00
server_test.go add v2 tenancy bridge Flag and v2 Tenancy Bridge initial implementation (#18830) 2023-09-18 12:25:05 -04:00
watch.go resource: allow for the ACLs.Read hook to request the entire data payload to perform the authz check (#18925) 2023-09-22 09:53:55 -05:00
watch_test.go resource: Make resource watchlist tenancy aware (#18539) 2023-08-21 15:02:23 -05:00
write.go resource: mutate and validate before acls on write (#18868) 2023-09-18 17:04:29 -05:00
write_status.go add v2 tenancy bridge Flag and v2 Tenancy Bridge initial implementation (#18830) 2023-09-18 12:25:05 -04:00
write_status_test.go resource: Allow nil tenancy (#18618) 2023-08-31 09:24:09 -05:00
write_test.go add v2 tenancy bridge Flag and v2 Tenancy Bridge initial implementation (#18830) 2023-09-18 12:25:05 -04:00