02e20c720b
If ACL Request is unauthenticated, we should honor the anonymous token. This PR makes few changes: * `GetPolicy` endpoints may return policy if anonymous policy allows it, or return permission denied otherwise. * `ListPolicies` returns an empty policy list, or one with anonymous policy if one exists. Without this PR, the we return an incomprehensible error. Before: ``` $ curl http://localhost:4646/v1/acl/policy/doesntexist; echo acl token lookup failed: index error: UUID must be 36 characters $ curl http://localhost:4646/v1/acl/policies; echo acl token lookup failed: index error: UUID must be 36 characters ``` After: ``` $ curl http://localhost:4646/v1/acl/policy/doesntexist; echo Permission denied $ curl http://localhost:4646/v1/acl/policies; echo [] ``` |
||
|---|---|---|
| .. | ||
| autopilot.go | ||
| autopilot_test.go | ||
| schema.go | ||
| schema_test.go | ||
| state_store.go | ||
| state_store_oss.go | ||
| state_store_test.go | ||
| testing.go | ||
| testing_oss.go | ||