luxolus/open-nomad
2
0
Fork 0
Code Issues 1 Pull requests Packages Releases Wiki Activity
open-nomad/nomad/state
History
Tim Gross bf57d76ec7
allow ACL policies to be associated with workload identity (#14140) 
The original design for workload identities and ACLs allows for operators to
extend the automatic capabilities of a workload by using a specially-named
policy. This has shown to be potentially unsafe because of naming collisions, so
instead we'll allow operators to explicitly attach a policy to a workload
identity.

This changeset adds workload identity fields to ACL policy objects and threads
that all the way down to the command line. It also a new secondary index to the
ACL policy table on namespace and job so that claim resolution can efficiently
query for related policies.
2022-08-22 16:41:21 -04:00
..
paginator build: run gofmt on all go source files 2022-08-16 11:14:11 -05:00
autopilot.go autopilot: correctly return errors within state functions. (#12714) 2022-04-21 08:54:50 +02:00
autopilot_test.go ci: swap ci parallelization for unconstrained gomaxprocs 2022-03-15 12:58:52 -05:00
deployment_events_test.go ci: swap ci parallelization for unconstrained gomaxprocs 2022-03-15 12:58:52 -05:00
events.go events: fixup service events and rename topic to service. 2022-04-05 08:25:22 +01:00
events_test.go cleanup: replace TypeToPtr helper methods with pointer.Of (#14151) 2022-08-17 18:26:34 +02:00
iterator.go csi: use node MaxVolumes during scheduling (#7565) 2020-03-31 17:16:47 -04:00
schema.go allow ACL policies to be associated with workload identity (#14140) 2022-08-22 16:41:21 -04:00
schema_test.go ci: swap ci parallelization for unconstrained gomaxprocs 2022-03-15 12:58:52 -05:00
state_changes.go events: Use single eventsFromChanges func (#9281) 2020-11-05 13:06:52 -08:00
state_store.go allow ACL policies to be associated with workload identity (#14140) 2022-08-22 16:41:21 -04:00
state_store_oss.go gofmt all the files 2021-10-01 10:14:28 -04:00
state_store_restore.go Secure Variables: Seperate Encrypted and Decrypted structs (#13355) 2022-07-11 13:34:05 -04:00
state_store_restore_test.go Secure Variables: Seperate Encrypted and Decrypted structs (#13355) 2022-07-11 13:34:05 -04:00
state_store_secure_variables.go Make var get a blocking query as expected (#14205) 2022-08-22 16:37:21 -04:00
state_store_secure_variables_oss.go move secure variable conflict resolution to state store (#13922) 2022-08-15 11:19:53 -04:00
state_store_secure_variables_test.go move secure variable conflict resolution to state store (#13922) 2022-08-15 11:19:53 -04:00
state_store_service_regisration_test.go nomad/state: fix dropped test errors (#12406) 2022-04-07 10:48:10 -04:00
state_store_service_registration.go state: add service registration state interaction functions. 2022-02-28 10:15:03 +01:00
state_store_test.go cleanup: replace TypeToPtr helper methods with pointer.Of (#14151) 2022-08-17 18:26:34 +02:00
testing.go CSI: allow updates to volumes on re-registration (#12167) 2022-03-07 11:06:59 -05:00