Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Remove null dimension values | Morten Tokle | 2021-06-11 | 1 | -0/+2 |
| | |||||
* | Add request and acl mapping values as metric dimensions | Morten Tokle | 2021-06-11 | 2 | -17/+73 |
| | |||||
* | Return request origin when wildcard is allowed | Valerij Fredriksen | 2021-05-11 | 1 | -14/+7 |
| | |||||
* | Remove corse filter base class that is no longer relevant | Bjørn Christian Seime | 2021-05-07 | 1 | -41/+0 |
| | |||||
* | Allow wildcard in allowedUrls for CorsPreflightRequestFilter | Valerij Fredriksen | 2021-05-06 | 1 | -1/+3 |
| | |||||
* | Custom acl mapping | Morten Tokle | 2021-04-15 | 2 | -1/+9 |
| | |||||
* | Ignore access token header if client has Athenz role certificate | Bjørn Christian Seime | 2021-03-02 | 1 | -8/+36 |
| | |||||
* | Add configurable response headers for blocked requests | Bjørn Christian Seime | 2021-02-23 | 1 | -4/+13 |
| | |||||
* | Add rule based request filter | Bjørn Christian Seime | 2021-02-17 | 1 | -0/+118 |
| | |||||
* | Add config definition for rule based security filter | Bjørn Christian Seime | 2021-02-16 | 1 | -0/+8 |
| | |||||
* | Athenz jdisc filter: support proxied access token from trusted peer | Bjørn Christian Seime | 2021-02-11 | 1 | -3/+21 |
| | |||||
* | Ignore null header | Martin Polden | 2021-02-10 | 1 | -1/+1 |
| | |||||
* | Add CORS filters | Valerij Fredriksen | 2021-01-25 | 3 | -19/+12 |
| | |||||
* | Create default connector request chain | Morten Tokle | 2020-11-23 | 1 | -0/+21 |
| | |||||
* | LogLevel.DEBUG -> Level.FINE | gjoranv | 2020-04-25 | 2 | -5/+5 |
| | |||||
* | Import java.util.logging.Level instead of com.yahoo.log.LogLevel | gjoranv | 2020-04-25 | 2 | -2/+2 |
| | |||||
* | Expose metrics from filter | Morten Tokle | 2020-03-19 | 1 | -3/+31 |
| | |||||
* | Improve error message on when all allowed credentials are missing | Bjørn Christian Seime | 2020-03-05 | 1 | -1/+21 |
| | |||||
* | Close executor on deconstruction | Jon Marius Venstad | 2020-02-27 | 1 | -1/+2 |
| | |||||
* | Add public modifier to constructor and filter() | Bjørn Christian Seime | 2020-01-31 | 1 | -4/+4 |
| | |||||
* | Rewrite AthenzAuthorizationFilter to accept access tokens | Bjørn Christian Seime | 2020-01-30 | 1 | -81/+118 |
| | | | | | | Change athenz-authorization-filter.def to have an enum set of enabled credentials. Delegate to ZPE to determine if a certificate is an Athenz role or identity certificate. Introduce various request attributes to propagate result from ZPE. | ||||
* | Add debug logging of error responses | Bjørn Christian Seime | 2020-01-29 | 1 | -2/+7 |
| | |||||
* | Add toString() to ResourceNameAndAction | Bjørn Christian Seime | 2020-01-29 | 1 | -0/+8 |
| | |||||
* | Return the matched role in checkAccessAllowed methods | Bjørn Christian Seime | 2020-01-24 | 1 | -2/+3 |
| | | | | | | Rewrite AuthorizationResult to specify result type as a inner Type enum. Add matched role to AuthorizationResult. Propagate matched role to request object in AthenzAuthorizationFilter. | ||||
* | Revert "Bjorncs/update zpe" | Harald Musum | 2020-01-24 | 1 | -3/+2 |
| | |||||
* | Return the matched role in checkAccessAllowed methods | Bjørn Christian Seime | 2020-01-24 | 1 | -2/+3 |
| | | | | | | Rewrite AuthorizationResult to specify result type as a inner Type enum. Add matched role to AuthorizationResult. Propagate matched role to request object in AthenzAuthorizationFilter. | ||||
* | Remove NToken support from AthenzPrincipalFilter | Bjørn Christian Seime | 2019-09-11 | 1 | -35/+5 |
| | |||||
* | Move BlockingRequestFilter to jdisc-security-filters | Bjørn Christian Seime | 2019-05-09 | 1 | -0/+18 |
| | |||||
* | Move LocalhostFilter and NoopFilter to jdisc-security-filters | Bjørn Christian Seime | 2019-05-09 | 2 | -0/+53 |
| | |||||
* | Add test for SignatureFilter | Jon Marius Venstad | 2019-05-02 | 1 | -1/+1 |
| | |||||
* | Let AthenzPrincipalFilter inherit JSRFB directly | Jon Marius Venstad | 2019-05-02 | 1 | -10/+4 |
| | |||||
* | Use roles for authorization | Martin Polden | 2019-03-22 | 1 | -5/+0 |
| | |||||
* | Revert "Merge pull request #8370 from ↵ | Jon Bratseth | 2019-02-04 | 1 | -1/+1 |
| | | | | | | | vespa-engine/revert-8308-bratseth/disallow-dash-rebased" This reverts commit 43cf4fd1ec196cb0543af73db8e3bd1f6774f0a8, reversing changes made to 14172aa5cd890445980202909d1277429e4c5a3a. | ||||
* | Revert "Bratseth/disallow dash rebased" | Jon Bratseth | 2019-02-04 | 1 | -1/+1 |
| | |||||
* | Nonfunctional changes only | Jon Bratseth | 2019-01-31 | 1 | -1/+1 |
| | |||||
* | Revert "Bratseth/disallow dash " | Jon Bratseth | 2019-01-16 | 1 | -1/+1 |
| | |||||
* | Nonfunctional changes only | Jon Bratseth | 2019-01-10 | 1 | -1/+1 |
| | |||||
* | Allow okta headers | Morten Tokle | 2018-10-22 | 1 | -4/+1 |
| | |||||
* | Add passthrough mode to AthenzPrincipalFilter | Bjørn Christian Seime | 2018-10-04 | 1 | -5/+25 |
| | | | | | | - No http response when passthrough mode is enable - Introduce attributes for error code and message - Introduce attribute for AthenzPrincipal instance | ||||
* | Move AthenzPrincipalFilter to jdisc-security-filters | Bjørn Christian Seime | 2018-07-26 | 1 | -0/+95 |
| | |||||
* | Rename 'AccessCheckResult' -> 'AuthorizationResult' | Bjørn Christian Seime | 2018-06-21 | 1 | -5/+5 |
| | |||||
* | Disable client caching of error responses | Bjørn Christian Seime | 2018-06-20 | 1 | -0/+1 |
| | |||||
* | Correct unintentional method name | Bjørn Christian Seime | 2018-06-20 | 3 | -3/+3 |
| | |||||
* | Add new Athenz security filter based on ZPE | Bjørn Christian Seime | 2018-06-20 | 4 | -0/+223 |
| | | | | | - Allow flexible configuration of filter using a resource mapper - Add helper class to extract role and identity from role certificates | ||||
* | Add X-Content-Type-Options header | Morten Tokle | 2018-06-13 | 1 | -0/+1 |
| | |||||
* | Add jdisc filter that adds recommened security-related response headers | Bjørn Christian Seime | 2018-06-05 | 2 | -0/+29 |
| | |||||
* | Make CorsRequestFilterBase extend JsonSecurityRequestFilterBase | Bjørn Christian Seime | 2018-04-24 | 1 | -43/+8 |
| | |||||
* | Add base class for security filters rendering errors as json | Bjørn Christian Seime | 2018-04-24 | 2 | -0/+94 |
| | |||||
* | Change package name and class name of Cors filters | Bjørn Christian Seime | 2018-04-09 | 5 | -0/+241 |
* Change package name to 'com.yahoo.jdisc.filter.security.cors' * Remove 'Security' from names of Cors class names |