github/paralus
1
0
Fork 0
mirror of https://github.com/paralus/paralus.git synced 2026-05-07 00:46:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
271 Commits 39 Branches 21 Tags
5c2d211100f3d62dc291ec2dfa24c36cf87cb175
Commit Graph

83 Commits

Author SHA1 Message Date
Abin Simon
5c2d211100 Don't add id for actor 
We are dropping all ids from audit log.
 2022-04-26 10:26:15 +05:30
niravparikh05
6cc5864082 fix for get user kubeconfig 2022-04-25 17:59:31 +05:30
niravparikh05
db7be6e26e changes to support prompt 2022-04-25 17:24:08 +05:30
niravparikh05
9e8d767a9e fixes in middleware to set db and few other fixes 2022-04-22 12:13:23 +05:30
Nirav Parikh
a9cd4e842e multiple kratos clients for session validation and identity creation (#114) 
* multiple kratos clients for session validation and identity creation

* fixed review comments

* switching few logs to debug
 2022-04-21 11:52:20 +05:30
Akshay Gaikwad
9d15c3aa15 Remove Kratos scheme variable from auth 
kratos Address var includes scheme, so no need to of separate variable
for a scheme.
 2022-04-19 15:20:35 +05:30
niravparikh05
8883703328 changes to expose system and user grpc clients for prompt 2022-04-15 15:05:17 +05:30
niravparikh05
c99c1c5a7e reverting changes for isGlobal in role resource 2022-04-14 18:36:55 +05:30
Nirav Parikh
a9e72810a5 Merge pull request #104 from RafayLabs/issue_fixes 
issue fixes for cluster delete and adding bootstrap addr to agent config
 2022-04-14 17:08:22 +05:30
niravparikh05
4b6cc8f8fe changes to support cluster proxy config 2022-04-14 17:01:05 +05:30
Abin Simon
309b1a4bda Add warning about DEV mode when calling userinfo 2022-04-14 16:55:48 +05:30
Abin Simon
5d5b097770 Remove is_global column from resourcerole table 2022-04-14 16:55:48 +05:30
Abin Simon
3f43536ad0 Don't panic if user is not available 2022-04-14 16:25:14 +05:30
Abin Simon
5537cf0608 Don't allow users to delete builtin roles 2022-04-14 16:24:44 +05:30
Abin Simon
d89136de65 Don't allow users to update builtin roles 2022-04-14 15:26:18 +05:30
Nirav Parikh
a6268da716 Merge pull request #101 from RafayLabs/authz-next 
Tiny tweaks to authz
 2022-04-13 12:13:18 +05:30
Abin Simon
9190ac81f2 Make UserInfo not require authz 2022-04-13 12:07:51 +05:30
Abin Simon
610a7da953 Fix returning ordering in authenticate 2022-04-12 19:25:05 +05:30
niravparikh05
2be1a80d92 removing leader election 2022-04-12 15:44:43 +05:30
Abin Simon
cf501a2dd8 Tiny little tidy up post authz fixes 2022-04-12 13:51:43 +05:30
niravparikh05
e45547a453 changes to support dev mode testing 2022-04-12 12:37:34 +05:30
sigmabaryon
fbae03741d Fix casbin permissions, add kratos changes 2022-04-12 11:26:52 +05:30
Abin Simon
8768b77698 Take care of a missing TODO 2022-04-11 13:25:34 +05:30
Abin Simon
2b03267d01 Do not print out ids in audit_logs 2022-04-11 13:25:34 +05:30
Abin Simon
853e7debae No need to support org or partner ids in audit logs 
We will add this back in once we have multi-org support in the system.
 2022-04-11 13:25:34 +05:30
Abin Simon
08db221239 Create audit logs for partner and oidc provider 2022-04-08 17:42:26 +05:30
Abin Simon
34c48c5892 Skip org and partner in audit query 2022-04-08 17:42:26 +05:30
Abin Simon
5784968790 Fix timestamp and search 2022-04-08 17:42:26 +05:30
Abin Simon
89379fe07f Fix tests after audit log changes 2022-04-08 17:42:26 +05:30
Abin Simon
5c319f3ea8 Move out event write to separate function 2022-04-08 17:42:26 +05:30
Abin Simon
0ebb1a1339 Add audit log write 
https://blog.sandipb.net/2018/05/03/using-zap-creating-custom-loggers/
 2022-04-08 17:42:26 +05:30
Abin Simon
d9d0bc3585 Fix and cleanup tests 2022-04-08 17:42:26 +05:30
Abin Simon
729009d7fb Add basic audit logging setup 2022-04-08 17:42:26 +05:30
Abin Simon
36bfda653b Add host, ua and ip to session data 2022-04-08 17:42:26 +05:30
niravparikh05
8397d88836 fix for casbin duplicate issue during init and removing all deletes from init 2022-04-07 17:57:37 +05:30
Abin Simon
df72864d09 Add option to filter by user auth mode 
Pass in type=password or type=oidc to pick the mode
 2022-04-06 15:03:01 +05:30
Abin Simon
66c7cc7f10 Filter from all users list if we have don't have filters 2022-04-06 14:01:32 +05:30
Abin Simon
5306d6a2c6 Send recovery url back after user creation 2022-04-06 13:39:36 +05:30
nirav-rafay
c81ca9eb95 fixed test cases and format 2022-04-04 13:37:36 +05:30
nirav-rafay
639ff1da30 addressed review comments, changes for custom roles and sso users 2022-04-04 11:41:58 +05:30
nirav-rafay
ce9063e990 rebasing with fixes for ui 2022-04-01 12:03:42 +05:30
nirav-rafay
7d38707a9e Merge pull request #86 from RafayLabs/query-options 
Some stuff that has to do with permissions
 2022-04-01 11:30:25 +05:30
Abin Simon
94bb70cb6d Merge sentry view table models 2022-03-31 13:37:11 +05:30
Abin Simon
1ed5a3e876 Rework session handling to prevent cyclic import 
imports github.com/RafayLabs/rcloud-base/internal/fixtures
imports github.com/RafayLabs/rcloud-base/pkg/service
imports github.com/RafayLabs/rcloud-base/pkg/auth/v3
imports github.com/RafayLabs/rcloud-base/pkg/service
 2022-03-30 14:00:05 +05:30
Akshay Gaikwad
5de4ba9765 Add two constructors for authContext 
This includes:
- SetupAuthContext:  Setups authContext with new authContext fields.
- NewAuthContext: Create AuthContext with using authContext fields
from caller function.
 2022-03-30 13:00:35 +05:30
Akshay Gaikwad
c972e26d93 Update Auth constructor function and middleware 
Auth constructor should handle creation of Kratos, database,
ApiKeyService itself for benefit to other dependent modules/repos. The
Prompt module does not need db instance hence it should not pass db
parameter when initializing Auth context and middleware.

Signed-off-by: Akshay Gaikwad <akshay.gaikwad@rafay.co>
 2022-03-30 12:16:42 +05:30
Abin Simon
ff4f5d160e Switch from permission to permissions for userinfo 2022-03-29 16:02:29 +05:30
Abin Simon
49ce1ca5a1 Add test for userinfo and fix broken tests 2022-03-29 15:58:27 +05:30
Abin Simon
229cf7c033 Pass down username from interceptor for entitlements 2022-03-29 15:09:19 +05:30
Abin Simon
ae1cae9782 Basic entitlements working 2022-03-29 15:09:19 +05:30