github/paralus
1
0
Fork 0
mirror of https://github.com/paralus/paralus.git synced 2026-05-17 05:47:04 +00:00
Code Issues Packages Projects Releases Wiki Activity
396 Commits 39 Branches 21 Tags
e736febc330542dec4df2d72ce24cacb427f7c13
Commit Graph

55 Commits

Author SHA1 Message Date
Nirav Parikh
da6f02bbbc Merge pull request #164 from paralus/rename-to-paralus 
Rename code to paralus
 2022-06-10 13:36:06 +05:30
Abin Simon
38f937bfcf User GetM instead of GetByID when fetching user 
This is necessary as we do not have `trash` in case of user and
GetByID explects that column to be available.
 2022-06-10 09:04:26 +05:30
Akshay Gaikwad
b67fcacf87 Rename go module name and its usage 2022-06-08 17:21:22 +05:30
Akshay Gaikwad
318907b215 Modify Kratos traits to hold single string group 
Due to the ORY Kratos claims which has no group/groups, and as
discussed regarding mapping idp groups to Claims.Team which is string
type, Added idpGroup to kratos trait which is also string type. Both
Identity idpGroup and Claim.Team can be mapped without fail in mapper
config.
 2022-06-06 12:16:08 +05:30
niravparikh05
ad193fbf98 removed desc from user traits 2022-05-27 15:15:58 +05:30
Abin Simon
14750dc41a Merge pull request #149 from RafayLabs/even-more-fixes 
Fix errors, unique filter, oidc
 2022-05-27 13:57:50 +05:30
Abin Simon
8054b75c88 Lowercase error messages 2022-05-27 13:51:28 +05:30
Nirav Parikh
c3320a8234 Merge pull request #145 from RafayLabs/ns-dev 
Namespace related development changes
 2022-05-27 12:30:42 +05:30
niravparikh05
0210f0f2d3 renamed column namespace_id to namespace 2022-05-27 12:23:22 +05:30
Abin Simon
446ae18798 Don't let users delete their own accounts 2022-05-24 12:27:41 +05:30
Abin Simon
c576932eda Create /user/:username/forgotpassword endpoint 2022-05-24 12:08:37 +05:30
niravparikh05
8ab85e57c9 changes to support namespaces 2022-05-23 12:42:51 +05:30
Abin Simon
bdc1052662 Cleanup some TODO items 2022-05-20 11:27:29 +05:30
Abin Simon
aabf2e600e Fix group filter for users 
The following could be used as an optimisation when we are filtering
just by user, but decided to omit as of now.

```
usrs, err = dao.ListFilteredUsersWithGroup(ctx, s.db,
    []uuid.UUID{}, groupId, queryOptions.Q, queryOptions.Type,
    queryOptions.OrderBy, queryOptions.Order,
    int(queryOptions.Limit), int(queryOptions.Offset))
```
 2022-05-20 10:29:35 +05:30
Akshay Gaikwad
2e4d802995 Fix: Type assertion error on IdPGroups 2022-05-17 13:16:59 +05:30
Abin Simon
5c68a33537 Prevent combining idp and managed groups 2022-05-13 16:24:58 +05:30
Abin Simon
f3de101f94 Update User spec to include IDPGroups 2022-05-13 13:37:07 +05:30
Akshay Gaikwad
a0424f4000 Modify groupaccount table instead of just policy rules 2022-05-12 18:11:10 +05:30
Akshay Gaikwad
5e7fc110b2 Add IdP groups in Identities table 
The idp_groups is list of groups IdP user belongs to that is returning
in the OIdC providers token response. The flow of Idp Group mapping is
as follows:
    OIdC Provider (OP) return custom claim with groups in a token when
    authentication event
        |
    The value of custom claim is mapped to `idp_groups` of identity
    traint using JsonNet mapper.
        |
    On inserting/updating/deleting `identities` table, Postgresql
    sends a pg_notification with
    `PG_OPERATION,IDENTITY_ID,IDENTITY_TRAIN` as a payload.
       |
    The `pkg/service/user.UserService.UpdateIdpUserGroupPolicy` update
    the casbin policies for each notification based on payload received.
 2022-05-12 12:32:30 +05:30
niravparikh05
101c005312 fixes for permissions and user group assoc 2022-04-26 19:56:36 +05:30
Nirav Parikh
a9cd4e842e multiple kratos clients for session validation and identity creation (#114) 
* multiple kratos clients for session validation and identity creation

* fixed review comments

* switching few logs to debug
 2022-04-21 11:52:20 +05:30
Abin Simon
309b1a4bda Add warning about DEV mode when calling userinfo 2022-04-14 16:55:48 +05:30
Abin Simon
3f43536ad0 Don't panic if user is not available 2022-04-14 16:25:14 +05:30
Nirav Parikh
a6268da716 Merge pull request #101 from RafayLabs/authz-next 
Tiny tweaks to authz
 2022-04-13 12:13:18 +05:30
Abin Simon
9190ac81f2 Make UserInfo not require authz 2022-04-13 12:07:51 +05:30
niravparikh05
e45547a453 changes to support dev mode testing 2022-04-12 12:37:34 +05:30
Abin Simon
0ebb1a1339 Add audit log write 
https://blog.sandipb.net/2018/05/03/using-zap-creating-custom-loggers/
 2022-04-08 17:42:26 +05:30
Abin Simon
d9d0bc3585 Fix and cleanup tests 2022-04-08 17:42:26 +05:30
Abin Simon
729009d7fb Add basic audit logging setup 2022-04-08 17:42:26 +05:30
niravparikh05
8397d88836 fix for casbin duplicate issue during init and removing all deletes from init 2022-04-07 17:57:37 +05:30
Abin Simon
df72864d09 Add option to filter by user auth mode 
Pass in type=password or type=oidc to pick the mode
 2022-04-06 15:03:01 +05:30
Abin Simon
66c7cc7f10 Filter from all users list if we have don't have filters 2022-04-06 14:01:32 +05:30
Abin Simon
5306d6a2c6 Send recovery url back after user creation 2022-04-06 13:39:36 +05:30
nirav-rafay
639ff1da30 addressed review comments, changes for custom roles and sso users 2022-04-04 11:41:58 +05:30
nirav-rafay
ce9063e990 rebasing with fixes for ui 2022-04-01 12:03:42 +05:30
Abin Simon
94bb70cb6d Merge sentry view table models 2022-03-31 13:37:11 +05:30
Abin Simon
1ed5a3e876 Rework session handling to prevent cyclic import 
imports github.com/RafayLabs/rcloud-base/internal/fixtures
imports github.com/RafayLabs/rcloud-base/pkg/service
imports github.com/RafayLabs/rcloud-base/pkg/auth/v3
imports github.com/RafayLabs/rcloud-base/pkg/service
 2022-03-30 14:00:05 +05:30
Abin Simon
ff4f5d160e Switch from permission to permissions for userinfo 2022-03-29 16:02:29 +05:30
Abin Simon
49ce1ca5a1 Add test for userinfo and fix broken tests 2022-03-29 15:58:27 +05:30
Abin Simon
229cf7c033 Pass down username from interceptor for entitlements 2022-03-29 15:09:19 +05:30
Abin Simon
f849cc59c3 Initial version of GetUserInfo for fetching full info about current users 2022-03-29 15:09:19 +05:30
Abin Simon
e8cc7d2f1c Implement filtering of users and groups via sentry 
Drop the previous implementationusing custom code
 2022-03-29 15:09:19 +05:30
Abin Simon
cf0b830924 Basic QueryOptions filtering for groups and users 2022-03-29 15:09:19 +05:30
Abin Simon
f7ac37ab6f Initial support for authorization 2022-03-25 18:17:43 +05:30
Abin Simon
1dce43d607 Update role definition for casbin 2022-03-25 18:17:43 +05:30
Abin Simon
a2a07c2dc2 FIx transaction issues 2022-03-24 17:06:12 +05:30
Abin Simon
fb4fa3781c Rename RafaySystems to RafayLabs 2022-03-24 12:42:59 +05:30
Abin Simon
78a0b0c625 Rearrage some files to cleanup file structure 2022-03-24 12:40:45 +05:30
Abin Simon
b1e6981dcf Rollback and log when commit fails 2022-03-21 12:17:22 +05:30
Abin Simon
c18613df23 Make create,update,delete in user use transactions 2022-03-21 12:10:18 +05:30