consul/acl
Thomas Eckert 13da1a5285
Native API Gateway Config Entries (#15897)
* Stub Config Entries for Consul Native API Gateway (#15644)
* Add empty InlineCertificate struct and protobuf
* apigateway stubs
* Stub HTTPRoute in api pkg
* Stub HTTPRoute in structs pkg
* Simplify api.APIGatewayConfigEntry to be consistent w/ other entries
* Update makeConfigEntry switch, add docstring for HTTPRouteConfigEntry
* Add TCPRoute to MakeConfigEntry, return unique Kind
* Stub BoundAPIGatewayConfigEntry in agent
* Add RaftIndex to APIGatewayConfigEntry stub
* Add new config entry kinds to validation allow-list
* Add RaftIndex to other added config entry stubs
* Update usage metrics assertions to include new cfg entries
* Add Meta and acl.EnterpriseMeta to all new ConfigEntry types
* Remove unnecessary Services field from added config entry types
* Implement GetMeta(), GetEnterpriseMeta() for added config entry types
* Add meta field to proto, name consistently w/ existing config entries
* Format config_entry.proto
* Add initial implementation of CanRead + CanWrite for new config entry types
* Add unit tests for decoding of new config entry types
* Add unit tests for parsing of new config entry types
* Add unit tests for API Gateway config entry ACLs
* Return typed PermissionDeniedError on BoundAPIGateway CanWrite
* Add unit tests for added config entry ACLs
* Add BoundAPIGateway type to AllConfigEntryKinds
* Return proper kind from BoundAPIGateway
* Add docstrings for new config entry types
* Add missing config entry kinds to proto def
* Update usagemetrics_oss_test.go
* Use utility func for returning PermissionDeniedError
* EventPublisher subscriptions for Consul Native API Gateway (#15757)
* Create new event topics in subscribe proto
* Add tests for PBSubscribe func
* Make configs singular, add all configs to PBToStreamSubscribeRequest
* Add snapshot methods
* Add config_entry_events tests
* Add config entry kind to topic for new configs
* Add unit tests for snapshot methods
* Start adding integration test
* Test using the new controller code
* Update agent/consul/state/config_entry_events.go
* Check value of error
* Add controller stubs for API Gateway (#15837)
* update initial stub implementation
* move files, clean up mutex references
* Remove embed, use idiomatic names for constructors
* Remove stray file introduced in merge
* Add APIGateway validation (#15847)
* Add APIGateway validation
* Add additional validations
* Add cert ref validation
* Add protobuf definitions
* Fix up field types
* Add API structs
* Move struct fields around a bit
* APIGateway InlineCertificate validation (#15856)
* Add APIGateway validation
* Add additional validations
* Add protobuf definitions
* Tabs to spaces
* Add API structs
* Move struct fields around a bit
* Add validation for InlineCertificate
* Fix ACL test
* APIGateway BoundAPIGateway validation (#15858)
* Add APIGateway validation
* Add additional validations
* Add cert ref validation
* Add protobuf definitions
* Fix up field types
* Add API structs
* Move struct fields around a bit
* Add validation for BoundAPIGateway
* APIGateway TCPRoute validation (#15855)
* Add APIGateway validation
* Add additional validations
* Add cert ref validation
* Add protobuf definitions
* Fix up field types
* Add API structs
* Add TCPRoute normalization and validation
* Add forgotten Status
* Add some more field docs in api package
* Fix test
* Format imports
* Rename snapshot test variable names
* Add plumbing for Native API GW Subscriptions (#16003)

Co-authored-by: Sarah Alsmiller <sarah.alsmiller@hashicorp.com>
Co-authored-by: Nathan Coleman <nathan.coleman@hashicorp.com>
Co-authored-by: sarahalsmiller <100602640+sarahalsmiller@users.noreply.github.com>
Co-authored-by: Andrew Stucki <andrew.stucki@hashicorp.com>
2023-01-18 22:14:34 +00:00
..
resolver Move ACLResolveResult into acl/resolver package (#13467) 2022-06-17 10:24:43 +01:00
MockAuthorizer.go add missing code and fix enterprise specific code (#15375) 2022-12-16 16:31:05 -05:00
acl.go Output user-friendly name for anonymous token (#15884) 2023-01-09 12:28:53 -06:00
acl_oss.go Use split wildcard partition name 2022-10-13 16:55:28 -06:00
acl_test.go [OSS] Add new peering ACL rule (#13848) 2022-07-22 14:42:23 -06:00
authorizer.go Add ACL enforcement to peering endpoints 2022-07-25 09:34:29 -06:00
authorizer_oss.go Fixup authz for data imported from peers (#15347) 2022-11-14 11:36:27 -07:00
authorizer_test.go Leadership transfer cmd (#14132) 2022-11-14 15:35:12 -05:00
chained_authorizer.go [OSS] Add new peering ACL rule (#13848) 2022-07-22 14:42:23 -06:00
chained_authorizer_test.go [OSS] Add new peering ACL rule (#13848) 2022-07-22 14:42:23 -06:00
enterprisemeta_oss.go Add SourcePeer fields to relevant Intentions types (#13390) 2022-06-08 13:24:10 -04:00
errors.go Native API Gateway Config Entries (#15897) 2023-01-18 22:14:34 +00:00
errors_oss.go Fixups for error messages from ACL Errors (#12620) 2022-03-25 12:34:59 -07:00
errors_test.go Leadership transfer cmd (#14132) 2022-11-14 15:35:12 -05:00
policy.go [OSS] Add new peering ACL rule (#13848) 2022-07-22 14:42:23 -06:00
policy_authorizer.go Fixup authz for data imported from peers (#15347) 2022-11-14 11:36:27 -07:00
policy_authorizer_oss.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
policy_authorizer_test.go Fixup authz for data imported from peers (#15347) 2022-11-14 11:36:27 -07:00
policy_merger.go [OSS] Add new peering ACL rule (#13848) 2022-07-22 14:42:23 -06:00
policy_merger_oss.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
policy_oss.go re-run gofmt on 1.17 (#11579) 2021-11-16 12:04:01 -06:00
policy_test.go [OSS] Add new peering ACL rule (#13848) 2022-07-22 14:42:23 -06:00
static_authorizer.go [OSS] Add new peering ACL rule (#13848) 2022-07-22 14:42:23 -06:00
static_authorizer_test.go
testing.go Output user-friendly name for anonymous token (#15884) 2023-01-09 12:28:53 -06:00
validation.go acl: gRPC login and logout endpoints (#12935) 2022-05-04 17:38:45 +01:00