Dietmar Maurer
|
6e695960ca
|
src/config/cached_user_info.rs: cache it up to 5 seconds
|
2020-04-18 08:49:20 +02:00 |
Dietmar Maurer
|
365f0f720c
|
fix permission tests using non-uri parameters
We nood to do those tests inside the fuction body instead...
|
2020-04-18 08:23:04 +02:00 |
Dietmar Maurer
|
a737179eb4
|
src/config/cached_user_info.rs: new check_privs helper
|
2020-04-18 08:09:34 +02:00 |
Dietmar Maurer
|
bb072ba49c
|
src/api2/access.rs: cleanup
|
2020-04-18 07:28:25 +02:00 |
Dietmar Maurer
|
ff329f970b
|
src/api2/types.rs: use anyhow::Error in test cases
|
2020-04-18 07:05:31 +02:00 |
Wolfgang Bumiller
|
f7d4e4b506
|
switch from failure to anyhow
Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>
|
2020-04-17 18:43:30 +02:00 |
Dietmar Maurer
|
404d78c41e
|
src/api2/pull.rs: add access permission
|
2020-04-17 15:27:04 +02:00 |
Dietmar Maurer
|
1bfc1efa50
|
src/api2/subscription.rs: add access permissions
|
2020-04-17 15:14:28 +02:00 |
Dietmar Maurer
|
73ce1d1146
|
src/api2/reader.rs: add access permissions
|
2020-04-17 15:01:56 +02:00 |
Dietmar Maurer
|
70e5f2461d
|
src/api2/config/remote.rs: add access permissions
|
2020-04-17 14:57:26 +02:00 |
Dietmar Maurer
|
c0ef209aeb
|
src/api2/config/datastore.rs: impl digest check for delete, add access permissions
|
2020-04-17 14:51:29 +02:00 |
Dietmar Maurer
|
9f9f7eefa3
|
src/api2/backup.rs: add access permissions
|
2020-04-17 14:40:20 +02:00 |
Dietmar Maurer
|
bb34b58910
|
src/api2/admin/datastore.rs: add access permissions - first try
We need to refine this later (introduce backup owner concept?)
|
2020-04-17 14:36:27 +02:00 |
Dietmar Maurer
|
5972def5ec
|
acl: change path "storage" to "datastore"
|
2020-04-17 14:15:44 +02:00 |
Dietmar Maurer
|
aa90ced3bf
|
src/api2/access/role.rs: use schema ACL_ROLE_SCHEMA
|
2020-04-17 14:14:06 +02:00 |
Dietmar Maurer
|
ca257c8097
|
move type defs from src/api2/access/acl.rs to src/api2/types.rs
|
2020-04-17 14:13:15 +02:00 |
Dietmar Maurer
|
3fff55b293
|
src/api2/access/role.rs: new api to list roles
|
2020-04-17 14:03:24 +02:00 |
Dietmar Maurer
|
4f66423fcc
|
src/api2/access/user.rs: add access permissions
|
2020-04-17 11:04:36 +02:00 |
Dietmar Maurer
|
d4f020f4c5
|
src/api2/access/user.rs: add access permissions
|
2020-04-17 10:08:45 +02:00 |
Dietmar Maurer
|
d28ddb8e04
|
src/api2/access/acl.rs: add access permissions
|
2020-04-17 10:03:09 +02:00 |
Dietmar Maurer
|
83b6a7cf71
|
src/api2/node/tasks.rs: use api macro, implement access permissions
|
2020-04-16 17:47:21 +02:00 |
Dietmar Maurer
|
e4681f9f71
|
src/api2/node/syslog.rs: add access permissions
|
2020-04-16 17:08:19 +02:00 |
Dietmar Maurer
|
b5037fa8ed
|
src/api2/node/status.rs: add access permissions
|
2020-04-16 17:05:09 +02:00 |
Dietmar Maurer
|
9989d2c4e9
|
src/server/rest.rs: reduce delay for permission error to 500ms
|
2020-04-16 12:56:34 +02:00 |
Dietmar Maurer
|
1cf7bbf412
|
src/api2/node/services.rs: add access permissions
|
2020-04-16 12:47:16 +02:00 |
Dietmar Maurer
|
68ed0c629d
|
src/api2/node/journal.rs: add access permissions
|
2020-04-16 12:47:16 +02:00 |
Dietmar Maurer
|
4b40148caa
|
start impl. access permissions
|
2020-04-16 12:47:16 +02:00 |
Dietmar Maurer
|
423e656163
|
src/config/cached_user_info.rs: new helper class
|
2020-04-16 10:05:16 +02:00 |
Dietmar Maurer
|
109d7817cd
|
src/config/user.rs - cached_config: do not store/return digest
|
2020-04-15 11:35:57 +02:00 |
Dietmar Maurer
|
5354511fd0
|
src/config/acl.rs: implement cached_config
|
2020-04-15 11:30:47 +02:00 |
Dietmar Maurer
|
bd098a7f77
|
src/api2/node/dns.rs: use api macro (cleanup)
|
2020-04-15 10:09:18 +02:00 |
Dietmar Maurer
|
8d048af2bf
|
acl: improve NoAccess handling
|
2020-04-15 08:11:43 +02:00 |
Dietmar Maurer
|
9a328319dd
|
pxar extract: remove pattern from arg_param, add target instead
|
2020-04-15 06:41:37 +02:00 |
Dietmar Maurer
|
7e3d2e5b41
|
pxar create: remove exclude from arg_param
|
2020-04-15 06:31:46 +02:00 |
Dietmar Maurer
|
9c06f6c292
|
fix previous commit - use result.
|
2020-04-14 17:48:10 +02:00 |
Dietmar Maurer
|
9f4e47dd93
|
acl update: check path
|
2020-04-14 17:23:48 +02:00 |
Dietmar Maurer
|
d83175dd69
|
acl update: check if user exist.
|
2020-04-14 13:46:27 +02:00 |
Dietmar Maurer
|
68ccdf09a4
|
src/config/user.rs: implement user config cache
|
2020-04-14 13:45:45 +02:00 |
Dietmar Maurer
|
9765092ede
|
acl api: implement update
|
2020-04-14 10:16:49 +02:00 |
Dietmar Maurer
|
ed3e60ae69
|
start ACL api
|
2020-04-13 11:09:44 +02:00 |
Dietmar Maurer
|
a83eab3c4d
|
acl: use BTreeMap and BTreeSet to avoid sort()
|
2020-04-12 17:13:53 +02:00 |
Dietmar Maurer
|
0815ec7e65
|
acl: implement roles(), add regression tests.
|
2020-04-12 13:06:50 +02:00 |
Dietmar Maurer
|
5c6cdf9815
|
add acl config
|
2020-04-11 12:24:26 +02:00 |
Dietmar Maurer
|
b88f9c5b1e
|
PASSWORD_SCHEMA: set max_length to 1024 (for tickets)
|
2020-04-09 13:35:58 +02:00 |
Dietmar Maurer
|
879546aff6
|
api: add default property to domain list
|
2020-04-09 13:35:08 +02:00 |
Dietmar Maurer
|
73b40e9b46
|
api: correctly sort access subdirmap
|
2020-04-09 13:34:07 +02:00 |
Dietmar Maurer
|
708db4b3ae
|
api: add list_domains
|
2020-04-09 11:36:45 +02:00 |
Dietmar Maurer
|
685e13347e
|
api: move config/user to access/users, implement change_password
To make it similar to the pve api
|
2020-04-09 10:21:24 +02:00 |
Dietmar Maurer
|
7d817b0358
|
implement auth framework
|
2020-04-08 14:06:15 +02:00 |
Dietmar Maurer
|
579728c641
|
add user configiguration
|
2020-04-08 14:06:15 +02:00 |