diff options
author | Tor Brede Vekterli <vekterli@yahooinc.com> | 2022-06-30 09:48:30 +0000 |
---|---|---|
committer | Tor Brede Vekterli <vekterli@yahooinc.com> | 2022-06-30 09:48:30 +0000 |
commit | bacbace97d8e54aa2e4a3ac9a5be34a826e12b9e (patch) | |
tree | 4f7bad9afdfeb209c93bce44a9bd033171d5546c /fnet/src | |
parent | 44722c9ed8f45fe5ced186fc22476d35b3e3f3da (diff) |
Refactor Capability(Set) and add more testing
Hide all nitty-gritty details of how capabilities map to internal
bit set positions by making more of Capability private and only
allowing CapabilitySet to see how the sausages are made. Move all
bit set functionality to CapabilitySet, where it really belongs.
Diffstat (limited to 'fnet/src')
-rw-r--r-- | fnet/src/vespa/fnet/frt/CMakeLists.txt | 2 | ||||
-rw-r--r-- | fnet/src/vespa/fnet/frt/require_capabilities.cpp (renamed from fnet/src/vespa/fnet/frt/require_capability.cpp) | 4 | ||||
-rw-r--r-- | fnet/src/vespa/fnet/frt/require_capabilities.h (renamed from fnet/src/vespa/fnet/frt/require_capability.h) | 4 |
3 files changed, 5 insertions, 5 deletions
diff --git a/fnet/src/vespa/fnet/frt/CMakeLists.txt b/fnet/src/vespa/fnet/frt/CMakeLists.txt index fa9623b950a..329c6c8fa57 100644 --- a/fnet/src/vespa/fnet/frt/CMakeLists.txt +++ b/fnet/src/vespa/fnet/frt/CMakeLists.txt @@ -5,7 +5,7 @@ vespa_add_library(fnet_frt OBJECT invoker.cpp packets.cpp reflection.cpp - require_capability.cpp + require_capabilities.cpp rpcrequest.cpp supervisor.cpp target.cpp diff --git a/fnet/src/vespa/fnet/frt/require_capability.cpp b/fnet/src/vespa/fnet/frt/require_capabilities.cpp index 5c64c2bb123..c74e9ad648a 100644 --- a/fnet/src/vespa/fnet/frt/require_capability.cpp +++ b/fnet/src/vespa/fnet/frt/require_capabilities.cpp @@ -1,12 +1,12 @@ // Copyright Yahoo. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root. -#include "require_capability.h" +#include "require_capabilities.h" #include "rpcrequest.h" #include <vespa/fnet/connection.h> #include <vespa/vespalib/net/connection_auth_context.h> bool -FRT_RequireCapability::allow(FRT_RPCRequest& req) const noexcept +FRT_RequireCapabilities::allow(FRT_RPCRequest& req) const noexcept { const auto& auth_ctx = req.GetConnection()->auth_context(); return auth_ctx.capabilities().contains_all(_required_capabilities); diff --git a/fnet/src/vespa/fnet/frt/require_capability.h b/fnet/src/vespa/fnet/frt/require_capabilities.h index c9eaf4937a8..7c80484783d 100644 --- a/fnet/src/vespa/fnet/frt/require_capability.h +++ b/fnet/src/vespa/fnet/frt/require_capabilities.h @@ -9,10 +9,10 @@ * context that contains, at minimum, a given set of capabilities. If one or more * required capabilities are missing, the request is denied. */ -class FRT_RequireCapability final : public FRT_RequestAccessFilter { +class FRT_RequireCapabilities final : public FRT_RequestAccessFilter { vespalib::net::tls::CapabilitySet _required_capabilities; public: - explicit constexpr FRT_RequireCapability(vespalib::net::tls::CapabilitySet required_capabilities) noexcept + explicit constexpr FRT_RequireCapabilities(vespalib::net::tls::CapabilitySet required_capabilities) noexcept : _required_capabilities(required_capabilities) { } |