1801f09c6a
* adding oss file changes * check disabled and read values from config * isUserLocked, getUserLockout Configurations, check user lock before login and return error * remove stale entry from storage during read * added failed login process workflow * success workflow updated * user lockouts external tests * changing update to support delete * provide access to alias look ahead function * adding path alias lookahead * adding tests * added changelog * added comments * adding changes from ent branch * adding lock to UpdateUserFailedLoginInfo * fix return default bug
83 lines
2.3 KiB
Go
83 lines
2.3 KiB
Go
//go:build !enterprise
|
|
|
|
package vault
|
|
|
|
import (
|
|
"context"
|
|
"sync"
|
|
|
|
"github.com/hashicorp/vault/helper/identity"
|
|
"github.com/hashicorp/vault/sdk/logical"
|
|
)
|
|
|
|
func waitForReplicationState(context.Context, *Core, *logical.Request) (*sync.WaitGroup, error) {
|
|
return nil, nil
|
|
}
|
|
|
|
func checkNeedsCG(context.Context, *Core, *logical.Request, *logical.Auth, error, []string) (error, *logical.Response, *logical.Auth, error) {
|
|
return nil, nil, nil, nil
|
|
}
|
|
|
|
func checkErrControlGroupTokenNeedsCreated(err error) bool {
|
|
return false
|
|
}
|
|
|
|
func shouldForward(c *Core, resp *logical.Response, err error) bool {
|
|
return false
|
|
}
|
|
|
|
func syncCounters(c *Core) error {
|
|
return nil
|
|
}
|
|
|
|
func syncBarrierEncryptionCounter(c *Core) error {
|
|
return nil
|
|
}
|
|
|
|
func couldForward(c *Core) bool {
|
|
return false
|
|
}
|
|
|
|
func forward(ctx context.Context, c *Core, req *logical.Request) (*logical.Response, error) {
|
|
panic("forward called in OSS Vault")
|
|
}
|
|
|
|
func getLeaseRegisterFunc(c *Core) (func(context.Context, *logical.Request, *logical.Response, string) (string, error), error) {
|
|
return c.expiration.Register, nil
|
|
}
|
|
|
|
func getAuthRegisterFunc(c *Core) (RegisterAuthFunc, error) {
|
|
return c.RegisterAuth, nil
|
|
}
|
|
|
|
func getUserFailedLoginInfo(ctx context.Context, c *Core, userInfo FailedLoginUser) (*FailedLoginInfo, error) {
|
|
return c.GetUserFailedLoginInfo(ctx, userInfo), nil
|
|
}
|
|
|
|
func updateUserFailedLoginInfo(ctx context.Context, c *Core, userInfo FailedLoginUser, failedLoginInfo *FailedLoginInfo, deleteEntry bool) error {
|
|
return c.UpdateUserFailedLoginInfo(ctx, userInfo, failedLoginInfo, deleteEntry)
|
|
}
|
|
|
|
func possiblyForwardAliasCreation(ctx context.Context, c *Core, inErr error, auth *logical.Auth, entity *identity.Entity) (*identity.Entity, bool, error) {
|
|
return entity, false, inErr
|
|
}
|
|
|
|
var errCreateEntityUnimplemented = "create entity unimplemented in the server"
|
|
|
|
func possiblyForwardEntityCreation(ctx context.Context, c *Core, inErr error, auth *logical.Auth, entity *identity.Entity) (*identity.Entity, error) {
|
|
return entity, inErr
|
|
}
|
|
|
|
func updateLocalAlias(ctx context.Context, c *Core, auth *logical.Auth, entity *identity.Entity) error {
|
|
return nil
|
|
}
|
|
|
|
func possiblyForwardSaveCachedAuthResponse(ctx context.Context, c *Core, respAuth *MFACachedAuthResponse) error {
|
|
err := c.SaveMFAResponseAuth(respAuth)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|