Armon Dadgar
|
855240b1b5
|
nomad: ACL endpoints enforce permissions
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
ddcc5f89bc
|
Add ErrPermissionDenied, rename TokenNotFound
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
4107335cb2
|
agent: Adding X-Nomad-Token header parsing
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
304a02d93b
|
nomad: Add SecretID to QueryOptions and WriteMeta
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
4bda2fa9e9
|
nomad: ACL endpoints check support enabled and redirect to authority
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
866fe5e216
|
nomad: adding ACL bootstrapping endpoint
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
e24a4abf2c
|
nomad: adding ACL bootstrap endpoints
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
1ace912341
|
nomad: adding bootstrapping checks
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
06a7f12fad
|
nomad: adding bootstrap state store method
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
76a03f2d8e
|
Address @dadgar feedback
|
2017-09-04 13:05:53 -07:00 |
Armon Dadgar
|
e7586a80df
|
nomad: Switch from SHA1 to Blake2 @chelseakomlo
|
2017-09-04 13:05:36 -07:00 |
Armon Dadgar
|
fc23a4e7e5
|
structs: sort policies to avoid order dependence for caching
|
2017-09-04 13:05:36 -07:00 |
Armon Dadgar
|
e3f32ca6f1
|
client: adding token resolution logic
|
2017-09-04 13:05:36 -07:00 |
Armon Dadgar
|
459c2b6fa7
|
nomad: switch policy/token replication to use batch endpoints
|
2017-09-04 13:05:36 -07:00 |
Armon Dadgar
|
edc38185cc
|
noamd: Adding batch fetch endpoints for ACL tokens and policies
|
2017-09-04 13:05:36 -07:00 |
Armon Dadgar
|
6a9d4e2dc3
|
nomad: Adding token resolution endpoint
|
2017-09-04 13:05:36 -07:00 |
Armon Dadgar
|
688897561b
|
client: adding token cache for ACL resolution
|
2017-09-04 13:05:36 -07:00 |
Armon Dadgar
|
d9c56725d0
|
nomad: refactor to use CompileACLObject and handle anonymous token
|
2017-09-04 13:05:35 -07:00 |
Armon Dadgar
|
98e0f98f7e
|
structs: Adding ACL compilation helper
|
2017-09-04 13:05:35 -07:00 |
Armon Dadgar
|
583e654246
|
structs: cache key helper for policy list
|
2017-09-04 13:05:35 -07:00 |
Armon Dadgar
|
c2e72e8a9c
|
client: create ACL and Policy cache
|
2017-09-04 13:05:35 -07:00 |
Armon Dadgar
|
792f176a44
|
agent: thread ACL config to client
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
3efdf1f7d9
|
Address @chelseakomlo comments
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
99cea1ac23
|
Moving shared ACL objects
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
dc1904b57a
|
nomad: adding ACL token resolution logic
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
e5154d4499
|
acl: Adding IsManagement check
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
018973aea8
|
Address @dadgar feedback
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
5b3d6c0a52
|
Fixing intent
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
5a3a931ec5
|
nomad: adding global token replication
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
583a11cebd
|
nomad: Adding ability to filter list of tokens to global only
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
cb827b6696
|
nomad: adding policy replication support
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
7d4aa1975f
|
agent: thread through ACL config to Server
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
9cd8ac832f
|
agent: Adding ACL block configuration
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
bc697dc50e
|
Address @dadgar feedback
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
a45bd0d2a2
|
agent: fixing ACL endpoint, return updated tokens
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
30b607987e
|
nomad: generate accessor/secret ID server side
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
bd2db18c80
|
agent: Adding HTTP endpoints for ACL tokens
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
f91d2608cb
|
nomad: renambe PublicID to AccessorID for consistency
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
e5c69f162c
|
nomad: implement ACL token endpoints
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
e9bad0bf37
|
nomad: Add ACL Token snapshot/restore to FSM
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
a17991e907
|
nomad: CRUD methods for ACLTokens
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
8623bf9a5b
|
nomad: adding ACLToken table
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
e9c583807a
|
nomad: adding ACLToken struct
|
2017-09-04 13:04:45 -07:00 |
Armon Dadgar
|
cde8e9301b
|
nomad: fixing state store tests due to signature mismatch
|
2017-09-04 13:04:44 -07:00 |
Armon Dadgar
|
3702587667
|
nomad: Adding Validate for ACLPolicy
|
2017-09-04 13:04:44 -07:00 |
Armon Dadgar
|
11672e4e01
|
nomad: adding validation of policy name and rules
|
2017-09-04 13:03:15 -07:00 |
Armon Dadgar
|
18e6053b58
|
agent: Adding ACL Policy endpoints
|
2017-09-04 13:03:15 -07:00 |
Armon Dadgar
|
d52e099fc2
|
Addressing @dadgar feedback
|
2017-09-04 13:03:15 -07:00 |
Armon Dadgar
|
afdde24799
|
nomad: adding upsert policy endpoint
|
2017-09-04 13:03:15 -07:00 |
Armon Dadgar
|
e3e243f433
|
nomad: implement policy delete endpoint
|
2017-09-04 13:03:15 -07:00 |