apps/core
1
0
Fork 0
mirror of https://github.com/datarhei/core.git synced 2025-10-17 21:41:34 +08:00
Code Issues Packages Projects Releases Wiki Activity

Dump casbin, replace with own policy enforcer

Browse Source
This commit is contained in:
Ingo Oppermann
2024-07-23 15:54:09 +02:00
parent 879819f10f
commit 54b1fe8e86
115 changed files with 1515 additions and 15200 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
http/handler/api/cluster_iam.go
View File

@@ -7,8 +7,8 @@ import (
"github.com/datarhei/core/v16/cluster/store"
"github.com/datarhei/core/v16/http/api"
"github.com/datarhei/core/v16/http/handler/util"
"github.com/datarhei/core/v16/iam/access"
"github.com/datarhei/core/v16/iam/identity"
"github.com/datarhei/core/v16/iam/policy"
"github.com/labstack/echo/v4"
)
@@ -198,14 +198,14 @@ func (h *ClusterHandler) IAMIdentityUpdatePolicies(c echo.Context) error {
}
}
accessPolicies := []access.Policy{}
accessPolicies := []policy.Policy{}
for _, p := range policies {
if !h.iam.Enforce(ctxuser, p.Domain, "iam", iamuser.Name, "write") {
return api.Err(http.StatusForbidden, "", "not allowed to write policy: %v", p)
}
accessPolicies = append(accessPolicies, access.Policy{
accessPolicies = append(accessPolicies, policy.Policy{
Name: name,
Domain: p.Domain,
Types: p.Types,