apps/core
1
0
Fork 0
mirror of https://github.com/datarhei/core.git synced 2025-12-24 13:07:56 +08:00
Code Issues Packages Projects Releases Wiki Activity
918 Commits 13 Branches 13 Tags
5e7c8ea46971d099cb620f5596722c385f631158
Commit Graph

47 Commits

Author SHA1 Message Date
Ingo Oppermann
2beb9d529e Fix leaking slices 2025-07-09 14:37:58 +02:00
Ingo Oppermann
643dd8386c Always use the identity name (not the alias) for enforcing the policies 2025-07-03 14:18:57 +02:00
Ingo Oppermann
54b1fe8e86 Dump casbin, replace with own policy enforcer 2024-07-23 15:54:09 +02:00
Ingo Oppermann
32ccfc24ee Upgrade dependencies 2024-05-28 14:32:25 +02:00
Ingo Oppermann
3a511ac393 Add cache for compiled glob patterns 2024-04-30 14:12:01 +02:00
Ingo Oppermann
03da97217b Use faster JSON and gzip packages 2024-04-24 15:42:11 +02:00
Ingo Oppermann
a817cd37b4 Fix panic when reloading IAM policies 2023-11-27 12:03:27 +01:00
Ingo Oppermann
a7cd4f4e50 Convert old resource format to types and resource 2023-09-18 21:12:04 +02:00
Ingo Oppermann
ad2a50df6f Separate resource type and resource for IAM policies 2023-09-18 17:11:09 +02:00
Ingo Oppermann
8349f4ebe3 Clarify parameter names in interface 2023-09-18 15:41:42 +02:00
Ingo Oppermann
92f2f6de8c Add CreatedAt and UpdatedAt field to IAM user 2023-09-18 15:18:21 +02:00
Ingo Oppermann
17ffa2b700 Upgrade github.com/golang-jwt/jwt to v5 2023-09-04 17:45:01 +02:00
Ingo Oppermann
3d7230444f Return *url.Userinfo from identity.GetServiceBasicAuth() 2023-08-08 17:19:57 +03:00
Ingo Oppermann
8caab33ba8 Fix identity alias 2023-08-08 16:53:31 +03:00
Ingo Oppermann
2c2d460a19 Allow an alias for an identity name 2023-08-03 17:22:16 +03:00
Ingo Oppermann
5faf1825a6 Remove unrequired fields from session token, parametrize TTL 2023-07-21 15:49:57 +02:00
Ingo Oppermann
1f24ea1b00 Check for correct error 2023-07-19 17:18:58 +02:00
Ingo Oppermann
ddb18a8c3c Return error on reload on encountering an invalid identity 2023-06-26 14:05:22 +02:00
Ingo Oppermann
abfe4918b4 Loosen restrictions for IAM user names 
The only restriction for an IAM username is that it cannot start with
a '$'. An username that contains a ':' must escape it with another ':'
for use in a token for RTMP or SRT.
 2023-06-26 13:49:53 +02:00
Ingo Oppermann
435adfb6ea Return error if iam wants to be modified in cluster mode via non-cluster API 2023-06-20 22:40:36 +02:00
Ingo Oppermann
0a5661f7ab Update dependencies 2023-06-16 13:30:56 +02:00
Ingo Oppermann
50e943a075 WIP: add session token, missing: writing sessions to log 2023-06-14 12:30:50 +02:00
Ingo Oppermann
98a307c174 Remove domain parameter from ResourceMatch function 2023-06-13 10:37:00 +02:00
Ingo Oppermann
401156e4d2 Enforce policies 2023-05-31 16:39:43 +02:00
Ingo Oppermann
3a6bb02bfd Fix reloading policies, add API endpoints for observing internal cluster state 2023-05-31 11:23:54 +02:00
Ingo Oppermann
89cc42c4b9 Add cluster IAM, update dependencies 2023-05-30 21:24:12 +02:00
Ingo Oppermann
56e03308c2 Add call chain to add a new user 2023-05-26 12:25:05 +02:00
Ingo Oppermann
e9034aa171 Create identity and access packages for IAM 2023-05-25 16:16:29 +02:00
Ingo Oppermann
930b84b557 Add Enforcer interface 2023-05-25 10:29:55 +02:00
Ingo Oppermann
10df8d51b1 Simplify IAM user config, only create users and policies if not previously run 2023-05-24 22:28:24 +02:00
Ingo Oppermann
3c89cbb831 Create identities for basic auth access to mount points 2023-05-24 14:29:14 +02:00
Ingo Oppermann
6f831fd190 Reduce IAM API to only user and policies 2023-05-17 18:19:23 +02:00
Ingo Oppermann
6e93c1d5a1 Get rid of $localhost pseudo user 2023-03-09 21:10:04 +01:00
Ingo Oppermann
a0ef3ab5ee WIP: add /api/v3/iam/group/* endpoints 2023-03-09 19:03:58 +01:00
Ingo Oppermann
c60327c61d WIP: group API 2023-03-08 09:19:48 +01:00
Ingo Oppermann
8755117e92 Add /api/v3/iam/user endpoints 2023-03-07 16:31:58 +01:00
Ingo Oppermann
469bc4ea26 Remove fmt.Printf 2023-02-20 17:19:12 +01:00
Ingo Oppermann
9c2691e8d0 Fix basic auth behaviour 2023-02-20 17:05:30 +01:00
Ingo Oppermann
8215c20ae6 Fix basic auth, disable localhost, replace template func 2023-02-17 17:27:39 +01:00
Ingo Oppermann
1e74f11f5e WIP: policy update 2023-02-16 21:47:56 +01:00
Ingo Oppermann
ca2fc5fe26 WIP: identity management and testing 2023-02-16 21:10:35 +01:00
Ingo Oppermann
acc4d7ec5a WIP: verify policies for processes, rtmp, and srt. rewriter for local urls 2023-02-15 21:43:37 +01:00
Ingo Oppermann
a9459bda7c WIP enforcing policies on process level 2023-02-14 15:23:50 +01:00
Ingo Oppermann
eac49ad11a Define default policies to mimic current behaviour 2023-02-10 15:14:30 +01:00
Ingo Oppermann
312f65d110 WIP: add verfiers, fix bugs, implement middleware, support rtmp 2023-02-09 21:33:45 +01:00
Ingo Oppermann
11e55fc2c7 WIP: add casbin to access manager, allow to persist identities 2023-02-06 17:07:20 +01:00
Ingo Oppermann
8f1ff2d1a2 WIP: designing interfaces, detecting identity, enforcing policies 2023-02-03 17:43:06 +01:00