| Commit message (Expand) | Author | Age | Files | Lines |
* | Doc updates | Jon Marius Venstad | 2019-03-28 | 2 | -3/+10 |
* | Update PathGroup tests to reflect nice property: no group overlap! | Jon Marius Venstad | 2019-03-28 | 1 | -33/+30 |
* | Verify tenant admins can restart applications | Jon Marius Venstad | 2019-03-28 | 1 | -0/+5 |
* | More splits, and new roles, with inheritance, and renaming | Jon Marius Venstad | 2019-03-28 | 6 | -103/+158 |
* | Move cost/v1 to classifiedInfo path group | Jon Marius Venstad | 2019-03-28 | 1 | -1/+1 |
* | Add some TODOs and fix a path group | Jon Marius Venstad | 2019-03-28 | 3 | -3/+3 |
* | Reinstate dev access for tenant admins | Jon Marius Venstad | 2019-03-28 | 1 | -1/+2 |
* | Define new roles | Jon Marius Venstad | 2019-03-28 | 2 | -7/+35 |
* | Reorder path groups and split into smaller policies, grouped in roles | Jon Marius Venstad | 2019-03-28 | 3 | -61/+113 |
* | Respond on athenz/v1/ with resources | Jon Marius Venstad | 2019-03-28 | 3 | -5/+21 |
* | Just properties, of course | Jon Marius Venstad | 2019-03-28 | 1 | -2/+2 |
* | Move OpsDB property listing to athenz API (I know, I know ...) | Jon Marius Venstad | 2019-03-28 | 10 | -57/+41 |
* | Remove tenant-pipeline API path (and clean up after athensDomains) | Jon Marius Venstad | 2019-03-28 | 6 | -50/+7 |
* | Move deployment/v1 to operator path group (it's only read, and not in public) | Jon Marius Venstad | 2019-03-28 | 1 | -6/+6 |
* | Split ControllerAuthorizationFilterTest in resolver and filter parts | Jon Marius Venstad | 2019-03-28 | 4 | -131/+159 |
* | Catch and return error messages, as per super class doc (more) | Jon Marius Venstad | 2019-03-28 | 2 | -7/+9 |
* | Move AthenzRoleResolver to upper level | Jon Marius Venstad | 2019-03-28 | 4 | -122/+122 |
* | Move path to Resolver.membership(...) signature (for now) | Jon Marius Venstad | 2019-03-28 | 2 | -7/+8 |
* | Simplify getting context limitations in Athenz resolver | Jon Marius Venstad | 2019-03-28 | 1 | -27/+12 |
* | Extract common pattern in RoleMembership.BuilderWithRole | Jon Marius Venstad | 2019-03-28 | 3 | -14/+11 |
* | Change API for building RoleMemberships to reflect the single-system property | Jon Marius Venstad | 2019-03-28 | 4 | -51/+105 |
* | Ensure RoleMemberships are created only for one system at a time | Jon Marius Venstad | 2019-03-28 | 2 | -7/+10 |
* | Make explicit and verify what context should be extracted for each path | Jon Marius Venstad | 2019-03-28 | 3 | -19/+76 |
* | Update test for user API | Jon Marius Venstad | 2019-03-28 | 1 | -1/+1 |
* | Add userManagement path group | Jon Marius Venstad | 2019-03-28 | 2 | -4/+6 |
* | Allow access to new application paths | Jon Marius Venstad | 2019-03-28 | 1 | -1/+1 |
* | Merge pull request #8917 from vespa-engine/mpolden/remove-unused-log-srv-url | Jon Marius Venstad | 2019-03-26 | 6 | -34/+10 |
|\ |
|
| * | Remove unused getLogServerUri | Martin Polden | 2019-03-26 | 4 | -25/+0 |
| * | Sort by cloud *and* version | Martin Polden | 2019-03-26 | 1 | -6/+6 |
| * | Avoid unnecessary reading of all applications from ZK | Martin Polden | 2019-03-26 | 1 | -3/+4 |
* | | Add statuspage paths, and fix index out of bounds in test | Jon Marius Venstad | 2019-03-26 | 3 | -3/+8 |
* | | Allow read access to dashboard, and avoid out of bounds in Path | Jon Marius Venstad | 2019-03-26 | 2 | -1/+7 |
* | | Merge pull request #8912 from vespa-engine/freva/use-vip-in-aws | Valerij Fredriksen | 2019-03-26 | 1 | -1/+1 |
|\ \ |
|
| * | | Use VIP in AWS | Valerij Fredriksen | 2019-03-26 | 1 | -1/+1 |
* | | | Update expected response | Jon Marius Venstad | 2019-03-26 | 1 | -1/+1 |
* | | | Correct test name | Jon Marius Venstad | 2019-03-26 | 1 | -1/+1 |
* | | | Add skeleton handler and test | Jon Marius Venstad | 2019-03-26 | 3 | -0/+113 |
* | | | Move athenz api to separate package | Jon Marius Venstad | 2019-03-26 | 3 | -4/+3 |
| |/
|/| |
|
* | | Merge pull request #8874 from vespa-engine/mpolden/roles-and-policies | Jon Marius Venstad | 2019-03-26 | 15 | -182/+782 |
|\ \ |
|
| * | | Return error messages, instead of throwing, as per superclass doc | Jon Marius Venstad | 2019-03-26 | 1 | -6/+9 |
| * | | Short-circuit when everyone is authorized for the request | Jon Marius Venstad | 2019-03-26 | 1 | -0/+5 |
| * | | No principal when authorization filter is run is an error | Jon Marius Venstad | 2019-03-26 | 3 | -6/+8 |
| * | | Update RoleMembershipTest to reflect changes | Jon Marius Venstad | 2019-03-26 | 1 | -3/+2 |
| * | | Remove unnecessary declaration of tenant read privileges | Jon Marius Venstad | 2019-03-26 | 1 | -4/+1 |
| * | | Include all roles principal has in returned RoleMembership | Jon Marius Venstad | 2019-03-26 | 1 | -7/+10 |
| * | | Test that build service can read application data for compile version | Jon Marius Venstad | 2019-03-26 | 1 | -0/+6 |
| * | | Move Principal to RoleResolver.membership signature | Jon Marius Venstad | 2019-03-26 | 3 | -22/+34 |
| * | | Ensure path has correct state when evaluating context | Jon Marius Venstad | 2019-03-25 | 1 | -4/+7 |
| * | | Specify prod for rotation overrisdes to avoid mutiple matches for tenant path... | Jon Marius Venstad | 2019-03-25 | 1 | -1/+1 |
| * | | Ensure matches are unique for each path group | Jon Marius Venstad | 2019-03-25 | 2 | -17/+51 |