github/paralus
1
0
Fork 0
mirror of https://github.com/paralus/paralus.git synced 2026-05-07 00:46:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
191 Commits 39 Branches 21 Tags
8397d888365e275c29ecb1f8ea9bb371b0efc307
Commit Graph

49 Commits

Author SHA1 Message Date
niravparikh05
8397d88836 fix for casbin duplicate issue during init and removing all deletes from init 2022-04-07 17:57:37 +05:30
Abin Simon
df72864d09 Add option to filter by user auth mode 
Pass in type=password or type=oidc to pick the mode
 2022-04-06 15:03:01 +05:30
Abin Simon
66c7cc7f10 Filter from all users list if we have don't have filters 2022-04-06 14:01:32 +05:30
Abin Simon
5306d6a2c6 Send recovery url back after user creation 2022-04-06 13:39:36 +05:30
nirav-rafay
c81ca9eb95 fixed test cases and format 2022-04-04 13:37:36 +05:30
nirav-rafay
639ff1da30 addressed review comments, changes for custom roles and sso users 2022-04-04 11:41:58 +05:30
nirav-rafay
ce9063e990 rebasing with fixes for ui 2022-04-01 12:03:42 +05:30
nirav-rafay
7d38707a9e Merge pull request #86 from RafayLabs/query-options 
Some stuff that has to do with permissions
 2022-04-01 11:30:25 +05:30
Abin Simon
94bb70cb6d Merge sentry view table models 2022-03-31 13:37:11 +05:30
Abin Simon
1ed5a3e876 Rework session handling to prevent cyclic import 
imports github.com/RafayLabs/rcloud-base/internal/fixtures
imports github.com/RafayLabs/rcloud-base/pkg/service
imports github.com/RafayLabs/rcloud-base/pkg/auth/v3
imports github.com/RafayLabs/rcloud-base/pkg/service
 2022-03-30 14:00:05 +05:30
Akshay Gaikwad
5de4ba9765 Add two constructors for authContext 
This includes:
- SetupAuthContext:  Setups authContext with new authContext fields.
- NewAuthContext: Create AuthContext with using authContext fields
from caller function.
 2022-03-30 13:00:35 +05:30
Akshay Gaikwad
c972e26d93 Update Auth constructor function and middleware 
Auth constructor should handle creation of Kratos, database,
ApiKeyService itself for benefit to other dependent modules/repos. The
Prompt module does not need db instance hence it should not pass db
parameter when initializing Auth context and middleware.

Signed-off-by: Akshay Gaikwad <akshay.gaikwad@rafay.co>
 2022-03-30 12:16:42 +05:30
Abin Simon
ff4f5d160e Switch from permission to permissions for userinfo 2022-03-29 16:02:29 +05:30
Abin Simon
49ce1ca5a1 Add test for userinfo and fix broken tests 2022-03-29 15:58:27 +05:30
Abin Simon
229cf7c033 Pass down username from interceptor for entitlements 2022-03-29 15:09:19 +05:30
Abin Simon
ae1cae9782 Basic entitlements working 2022-03-29 15:09:19 +05:30
Abin Simon
f849cc59c3 Initial version of GetUserInfo for fetching full info about current users 2022-03-29 15:09:19 +05:30
Abin Simon
e8cc7d2f1c Implement filtering of users and groups via sentry 
Drop the previous implementationusing custom code
 2022-03-29 15:09:19 +05:30
Abin Simon
cf0b830924 Basic QueryOptions filtering for groups and users 2022-03-29 15:09:19 +05:30
Abin Simon
c89741aefb Don't use reflect to get resource Metadata 2022-03-25 18:18:55 +05:30
Abin Simon
abb56481a3 Auth middleware for use in prompt 2022-03-25 18:18:55 +05:30
Abin Simon
f7ac37ab6f Initial support for authorization 2022-03-25 18:17:43 +05:30
Abin Simon
1dce43d607 Update role definition for casbin 2022-03-25 18:17:43 +05:30
Abin Simon
a2a07c2dc2 FIx transaction issues 2022-03-24 17:06:12 +05:30
Abin Simon
fb4fa3781c Rename RafaySystems to RafayLabs 2022-03-24 12:42:59 +05:30
Abin Simon
78a0b0c625 Rearrage some files to cleanup file structure 2022-03-24 12:40:45 +05:30
Abin Simon
e6c37f4972 Fix authz issues from implementing transactions 2022-03-21 17:49:37 +05:30
Abin Simon
0ef5a92eaf Drop unnecessary logging in audit endpoint 2022-03-21 17:49:21 +05:30
shrey-rafay
99f9ccaafb Add support for mapping permission names to urls when creating the roles 2022-03-21 17:49:13 +05:30
Akshay Gaikwad
d792e57105 Format all packages using go fmt 2022-03-21 12:28:27 +05:30
Abin Simon
b1e6981dcf Rollback and log when commit fails 2022-03-21 12:17:22 +05:30
Abin Simon
b305edc57e Update how delete is done for project,org,partner 
Since delete is now soft delete by default, we can use that instead of
update to delete stuff.
 2022-03-21 12:13:34 +05:30
Abin Simon
459a4c0d19 Update more resources to use transactions 2022-03-21 12:13:32 +05:30
Abin Simon
b4abc1ea61 Make create,update,delete in role use transactions 2022-03-21 12:10:18 +05:30
Abin Simon
c18613df23 Make create,update,delete in user use transactions 2022-03-21 12:10:18 +05:30
Abin Simon
b088eaecef Make create,update,delete in group use transactions 2022-03-21 12:10:18 +05:30
nirav-rafay
dbfc2b3928 Merge pull request #39 from RafaySystems/casbin-url-mappings 
Add support for mapping permission names to urls when creating the roles
 2022-03-21 12:09:13 +05:30
Abin Simon
a004ab25ae Consistent error handling in services (partner,project,cluster,org) 2022-03-18 12:34:37 +05:30
shrey-rafay
5aeab8fd1d Fix for mappings cache 2022-03-17 09:39:10 +05:30
Abin Simon
df810ab45a Convert from dao interface to funcs 
This was done inorder to support transactions which will be done in
the next PR. This is the first step towards that.
 2022-03-16 17:10:32 +05:30
Abin Simon
6a72c96fba Update tests for soft delete 2022-03-16 17:09:12 +05:30
Abin Simon
3aedac3201 Fix scope for roles 
This might not really be necessary but a good check
 2022-03-14 12:34:18 +05:30
nirav-rafay
d469315bad changes for cli config download, apikey services and cli auth verify (#55) 2022-03-11 20:06:55 +05:30
abin-rafay
bef3d9ed53 When adding users to group drop duplicate users (#50) 2022-03-11 17:36:56 +05:30
abin-rafay
0e9be5e589 Audit engine query endpoints (#43) 2022-03-08 16:44:41 +05:30
akshay196-rafay
7938f30668 Update IdP and OIDC Provider (#40) 
* Update creating oidc provider

* Validate partner and organization by checking in db tables.

* Validate empty scopes

* Fix oidc provider update

* Fix application Host url in ACS URL of Idp
 2022-03-07 19:06:57 +05:30
akshay196-rafay
274cfe7c4f Improve Auth module (#36) 
* Expose NewSessionContext function

When auth middleware or interceptor is being mocked by other service
then they can take help of `session.NewSessionContext` to store mocked
session data to request context.

* Initialize _log in auth at creating

* Allow excluding URLs in Auth middleware
 2022-03-07 16:40:03 +05:30
shrey-rafay
bfaeb4831d Add support for mapping permission names to urls when creating the roles 2022-03-04 16:24:06 +05:30
nirav-rafay
c66bdc25cd restructure rcloud-base as a single base controller (#37) 
* restructure rcloud-base as a single base controller
* updated master.rest
* moved sentry from internal to pkg as it is used by relay
* removing unused rpc and it's dependencies
* Fix usermgmt tests
* Don't redefine variables in rest file
Co-authored-by: Abin Simon <abin.simon@rafay.co>
 2022-03-03 17:59:06 +05:30