Ben Toogood
8e4d9e1702
Further Refactoring
2020-04-01 14:25:00 +01:00
Ben Toogood
82bc3cbf8d
Update interface to add provider and make secret optional
2020-03-31 19:01:43 +01:00
Ben Toogood
cffb0a1eae
Remove ContextWithToken
2020-03-31 18:34:31 +01:00
Ben Toogood
134bc1c68a
Implement new interface
2020-03-31 18:17:01 +01:00
Ben Toogood
8dbb5153f4
Tweak Auth Interface
2020-03-31 17:01:51 +01:00
ben-toogood
2674790694
Service => Service Auth ( #1448 )
...
* Service => Service Auth
* WithServicePrivileges => ServicePrivileges
* Fixes for CLI login
* ServicePrivileges => ServiceToken
* Fallback to service token
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-31 16:18:04 +01:00
ben-toogood
9fb1d476a2
Merge branch 'master' into auth-srv-srv
2020-03-31 16:15:17 +01:00
Ben Toogood
36386354d7
Fallback to service token
2020-03-31 13:51:32 +01:00
Ben Toogood
bd70820b6b
ServicePrivileges => ServiceToken
2020-03-31 13:48:28 +01:00
Ben Toogood
956029ae3d
Fixes for CLI login
2020-03-31 13:30:14 +01:00
Ben Toogood
e0c7f48d20
WithServicePrivileges => ServicePrivileges
2020-03-31 12:57:38 +01:00
Ben Toogood
d659e435c6
Service => Service Auth
2020-03-31 12:44:34 +01:00
Jake Sanders
3d274ab6a2
Add namespace support to Kubernetes client ( #1446 )
...
* Add namespace support to Kubernetes client
* Fix LastUpdateTime Condition
2020-03-31 12:03:32 +01:00
Asim Aslam
1222d076f2
There can be only one! ( #1445 )
...
* There can be only one
* fix proto?
2020-03-31 10:18:50 +01:00
ben-toogood
76ade7efd9
Auth - Swap Refresh to Token and change secrets to be strings, not tokens ( #1444 )
...
* Refresh => Token
* Secret is no longer a token
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-31 10:06:13 +01:00
c706ebe3fb
auth proto: provide help to protoc-gen-go ( #1442 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-31 00:35:11 +03:00
9e6db79860
regenerate all proto ( #1440 )
...
* regenerate all proto
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* regenerate from proto
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* regenerate from proto
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-30 21:58:32 +01:00
756b346672
auth/service: move all proto files to single dir ( #1439 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-30 18:23:00 +03:00
ben-toogood
4db2f5e79d
Add Namespace to Auth ( #1438 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-30 09:51:37 +01:00
3d7d5ce6b4
api: add static router and improve path parser in rpc handler ( #1437 )
...
* api: add static router and improve path parser in rpc handler
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* expose metadata context key to be able to get unmodified map keys
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* server/grpc: fix jsonpb codec for protobuf msg
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* api/handler/rpc: write 204 status code when rsp is nil
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* api/handler/rpc: add check for nil response for non javascript
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-30 09:04:59 +01:00
Socket
8282e781e4
grpc pool should check state ( #1435 )
...
Co-authored-by: huangshaojie <huangshaojie@corp.netease.com>
2020-03-28 08:48:25 +00:00
e4acc63d5f
add mdns registry debug ( #1434 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-27 22:33:49 +03:00
Asim Aslam
45ee5e9ad1
Move error for api validation to trace level ( #1432 )
...
* remove error on endpoint validation
* trace level
2020-03-27 14:01:47 +00:00
Asim Aslam
b60fde0e64
Pass through source and metadata in Update and Delete calls to runtime ( #1431 )
2020-03-27 11:37:12 +00:00
Lars Lehtonen
011a783a9e
store/cockroach: fix dropped test errors ( #1419 )
...
Co-authored-by: Asim Aslam <asim@aslam.me>
2020-03-27 10:15:37 +00:00
ben-toogood
6723d17b22
Default auth, return account secret on Inspect ( #1430 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-27 09:54:29 +00:00
ben-toogood
47c7181d41
Default Auth: Add blank secret to account to prevent nil errors ( #1429 )
...
* Remove debug auth logs
* Default auth, return account secret on Inspect
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-27 09:46:17 +00:00
b38da6ced0
api/handler/rpc: process all methods and merge url params to json body ( #1427 )
...
* api/handler/rpc: process all methods and merge url params to json body
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* add merge json test
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-27 07:59:31 +00:00
ben-toogood
1a53307a78
Remove debug auth logs ( #1426 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 19:00:24 +00:00
Asim Aslam
e204f3e2e8
Add metadata Get method ( #1425 )
2020-03-26 18:50:00 +00:00
ben-toogood
329bd09f93
Fix Auth Init bug ( #1424 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 18:09:51 +00:00
ben-toogood
4648fd0d09
Auth debugging ( #1423 )
...
* More auth debugging
* More auth debugging
* Increase auth debugging
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 17:55:35 +00:00
ben-toogood
c905df3be6
Log auth verify requests ( #1422 )
...
* More auth debugging
* More auth debugging
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 17:35:28 +00:00
Asim Aslam
62f9a054a4
100mb ( #1421 )
2020-03-26 16:57:31 +00:00
ben-toogood
00e7804f96
Auth - Add debugging to loading rules ( #1420 )
...
* Fix auth multi-rule edgecase
* Add logging to auth rules
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 16:30:31 +00:00
ben-toogood
42b6bf5bbf
Fix auth multi-rule edgecase ( #1418 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 15:52:48 +00:00
ben-toogood
844c456839
Refactor Auth Service Protos, Add Access Rules ( #1411 )
...
* Refactor auth/service into two protos
* Accounts Proto
* Store Prefixes
* Misc
* Tweak Protos
Co-authored-by: Ben Toogood <ben@micro.mu>
Co-authored-by: Asim Aslam <asim@aslam.me>
2020-03-26 13:12:43 +00:00
Asim Aslam
7182ca1fd0
fix server logging ( #1417 )
2020-03-26 13:08:06 +00:00
02839cfba5
api/handler: use http.MaxBytesReader and buffer pool ( #1415 )
...
* api/handler: use http.MaxBytesReader
protect api handlers from OOM cases
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-26 14:29:28 +03:00
Asim Aslam
776a7d6cd6
Update filter comment for proxy ( #1416 )
2020-03-26 08:05:00 +00:00
beaa434610
logger: fix reading env var ( #1414 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-25 22:00:43 +00:00
Asim Aslam
6efc5556e5
use requested service ( #1413 )
2020-03-25 20:59:37 +00:00
Asim Aslam
8d0826a031
Add check for k8s condition ( #1412 )
2020-03-25 19:32:41 +00:00
ben-toogood
378d03eb66
Tidying up auth ( #1410 )
...
* Don't clear auth rules if request fails
* Add jitter to auth service loading rules
* Remove unused error from ContextWithToken result
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 18:34:13 +00:00
ben-toogood
56af826230
Update auth to pass seconds and not nanoseconds ( #1409 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 17:03:45 +00:00
ben-toogood
511ebd8ec2
Fix Token Expiry Bug ( #1408 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 14:40:37 +00:00
ben-toogood
1057ef6acb
Add ContextWithToken ( #1407 )
...
* Add ContextWithToken
* Tidying up BearerScheme
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 11:20:53 +00:00
ben-toogood
35e2a68a98
Fix auth bug restricting access to unauthorised endpoints ( #1405 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 10:31:33 +00:00
ben-toogood
0e56382107
Fix service level auth, add improved error descriptions to aid with debugging ( #1403 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 09:35:29 +00:00
Jake Sanders
dff98355be
Missing ; in SQL query
2020-03-24 23:49:09 +00:00