github
/
portainer
mirror of https://github.com/portainer/portainer
1
0
Fork 0
Code Issues Releases Wiki Activity
portainer/api/http/proxy/factory/docker
History
Chaim Lev-Ari adf33385ce
feat(containers): Prevent non-admin users from running containers using the host namespace pid (#4098) 
* feat(containers): prevent non-admin users from running containers using the host namespace pid (#3970)

* feat(containers): Prevent non-admin users from running containers using the host namespace pid

* feat(containers): add rbac check for swarm stack too

* feat(containers): remove forgotten conflict

* feat(containers): init EnableHostNamespaceUse to true and return 403 on forbidden action

* feat(containers): change enableHostNamespaceUse to restrictHostNamespaceUse in html

* feat(settings): rename EnableHostNamespaceUse to AllowHostNamespaceForRegularUsers

* feat(database): trigger migration for AllowHostNamespace

* feat(containers): check container creation authorization

Co-authored-by: Maxime Bajeux <max.bajeux@gmail.com>
 		2020-07-25 11:14:46 +12:00
..
access_control.go refactor(portainer): introduce internal package (#3924) 2020-06-16 19:58:16 +12:00
build.go feat(api): rewrite access control management in Docker (#3337) 2019-11-13 12:41:42 +13:00
configs.go refactor(portainer): introduce internal package (#3924) 2020-06-16 19:58:16 +12:00
containers.go feat(containers): Prevent non-admin users from running containers using the host namespace pid (#4098) 2020-07-25 11:14:46 +12:00
networks.go refactor(portainer): introduce internal package (#3924) 2020-06-16 19:58:16 +12:00
registry.go feat(api): rewrite access control management in Docker (#3337) 2019-11-13 12:41:42 +13:00
secrets.go refactor(portainer): introduce internal package (#3924) 2020-06-16 19:58:16 +12:00
services.go refactor(portainer): introduce internal package (#3924) 2020-06-16 19:58:16 +12:00
swarm.go feat(api): rewrite access control management in Docker (#3337) 2019-11-13 12:41:42 +13:00
tasks.go feat(api): rewrite access control management in Docker (#3337) 2019-11-13 12:41:42 +13:00
transport.go feat(containers): Ensure users cannot create privileged containers via the API (#3969) (#4077) 2020-07-23 06:38:45 +12:00
volumes.go feat(volumes): Ensure a unique identifier for volumes (#3879) 2020-07-07 12:01:18 +12:00