Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Membership decision includes 'approved' field. Only trigger athenz sync on ↵ | Ola Aunrønning | 2022-03-17 | 2 | -1/+16 |
| | | | | approval | ||||
* | Merge pull request #21714 from vespa-engine/hakonhall/add-ntokengenerator | Valerij Fredriksen | 2022-03-16 | 2 | -5/+124 |
|\ | | | | | Add NTokenGenerator | ||||
| * | Use Clock | Håkon Hallingstad | 2022-03-16 | 1 | -7/+6 |
| | | |||||
| * | Add NTokenGenerator | Håkon Hallingstad | 2022-03-16 | 2 | -5/+125 |
| | | |||||
* | | Include assertion effect in entity | Ola Aunrønning | 2022-03-15 | 3 | -5/+20 |
| | | |||||
* | | Consider effect equality | Ola Aunrønning | 2022-03-14 | 1 | -0/+1 |
| | | |||||
* | | Infer managed access through assertion existence | Ola Aunrønning | 2022-03-14 | 1 | -0/+6 |
|/ | |||||
* | Merge pull request #21626 from vespa-engine/olaa/return-preapprove-payload | Ola Aunrønning | 2022-03-10 | 1 | -4/+5 |
|\ | | | | | Payload contains pre-approval status | ||||
| * | Use Optional | Ola Aunrønning | 2022-03-10 | 1 | -4/+5 |
| | | |||||
| * | RoleEntity parameters can be null | Ola Aunrønning | 2022-03-10 | 1 | -3/+3 |
| | | |||||
* | | Json property of role name is 'name' | Ola Aunrønning | 2022-03-09 | 1 | -1/+1 |
|/ | |||||
* | Fetch audit log and pending membership requests for athenz role | Ola Aunrønning | 2022-03-04 | 4 | -15/+198 |
| | | | | | Athenz synchronizer accepts tenant name ZMSClient membership requests can be rejected | ||||
* | Add API for toggling self-served access role | Ola Aunrønning | 2022-03-03 | 3 | -1/+29 |
| | |||||
* | Pass along auth0 credentials to ZMS | Valerij Fredriksen | 2022-02-21 | 2 | -2/+6 |
| | |||||
* | Merge OktaAccessToken and OktaIdentityToken into OAuthCredentials | Valerij Fredriksen | 2022-02-21 | 5 | -101/+68 |
| | |||||
* | Adds parent and adminUsers to subdomain creation payload | Ola Aunrønning | 2022-02-15 | 1 | -2/+5 |
| | |||||
* | Post subdomain | Ola Aunrønning | 2022-02-15 | 1 | -1/+1 |
| | |||||
* | Remove duplicate toJsonStringEntity | Ola Aunrønning | 2022-02-14 | 1 | -1/+1 |
| | |||||
* | Creates tenant domain if not exists | Ola Aunrønning | 2022-02-10 | 2 | -0/+12 |
| | |||||
* | Pending role approvals contains all athenz identity types | Ola Aunrønning | 2022-02-10 | 2 | -4/+3 |
| | |||||
* | Request, list, and approve ssh access | Ola Aunrønning | 2022-02-09 | 2 | -4/+4 |
| | |||||
* | Read policy from resource name | Morten Tokle | 2022-02-04 | 1 | -1/+11 |
| | |||||
* | Revert "Allow developers to deploy application in manual zones" | Morten Tokle | 2022-02-03 | 1 | -11/+1 |
| | |||||
* | Read policy from resource name | Morten Tokle | 2022-02-02 | 1 | -1/+11 |
| | |||||
* | Support new SAN format for principal name in Athenz role certificates | Bjørn Christian Seime | 2022-01-07 | 1 | -3/+19 |
| | |||||
* | Add helpers to extract Athenz instance id from X.509 certificate | Bjørn Christian Seime | 2021-12-09 | 1 | -0/+46 |
| | |||||
* | Auditref is not always present (#20351) | Bjørn Christian Seime | 2021-12-03 | 1 | -1/+1 |
| | |||||
* | Moves role maintainer to controller-api. Adds ZMS role deletion functionality | Ola Aunrønning | 2021-11-23 | 2 | -0/+9 |
| | |||||
* | Update 2020 Oath copyrights. | gjoranv | 2021-10-27 | 2 | -2/+2 |
| | |||||
* | Update 2019 Oath copyrights. | gjoranv | 2021-10-27 | 5 | -5/+5 |
| | |||||
* | Read/write SignedIdentityDocument without going via File | Valerij Fredriksen | 2021-10-15 | 1 | -5/+8 |
| | |||||
* | Update Verizon Media copyright notices. | gjoranv | 2021-10-07 | 11 | -11/+11 |
| | |||||
* | Update 2018 copyright notices. | gjoranv | 2021-10-07 | 64 | -64/+64 |
| | |||||
* | Update 2017 copyright notices. | gjoranv | 2021-10-07 | 10 | -10/+10 |
| | |||||
* | Add ZmsClient.getPolicy() | Bjørn Christian Seime | 2021-10-01 | 5 | -7/+156 |
| | |||||
* | Merge pull request #19256 from vespa-engine/bjorncs/s3-athenz-access-control | Bjørn Christian Seime | 2021-09-23 | 4 | -18/+59 |
|\ | | | | | Bjorncs/s3 athenz access control | ||||
| * | Add createTenantResourceGroup and getTenantResourceGroups to ZmsClient | Bjørn Christian Seime | 2021-09-22 | 3 | -17/+58 |
| | | |||||
| * | Use logger instance of implementor | Bjørn Christian Seime | 2021-09-22 | 1 | -1/+1 |
| | | |||||
* | | pass audit ref back to athenz when approving ssh | andreer | 2021-09-20 | 2 | -6/+11 |
|/ | |||||
* | implement athenzidentity | Morten Tokle | 2021-09-15 | 1 | -1/+16 |
| | |||||
* | Add policy name in body (#19066) | Morten Tokle | 2021-09-10 | 1 | -1/+9 |
| | |||||
* | list(Policies/Roles) (#19059) | Morten Tokle | 2021-09-10 | 3 | -4/+41 |
| | |||||
* | return audit refs when listing pending approvals (#19045) | Andreas Eriksen | 2021-09-10 | 3 | -8/+14 |
| | |||||
* | Add name to map when creating role | Morten Tokle | 2021-09-09 | 1 | -1/+5 |
| | |||||
* | Create roles and policies | Morten Tokle | 2021-09-08 | 2 | -0/+25 |
| | |||||
* | andreer/manage services in zms client (#18717) | Andreas Eriksen | 2021-08-12 | 4 | -3/+84 |
| | | | | | | | * create, put and delete athenz services * newline at eof * createOrUpdate is better than "put" outside http context | ||||
* | Add optional reason to membership request | Morten Tokle | 2021-06-21 | 2 | -6/+13 |
| | |||||
* | Only approve allowed operators | Morten Tokle | 2021-06-21 | 4 | -11/+97 |
| | |||||
* | Add request and acl mapping values as metric dimensions | Morten Tokle | 2021-06-11 | 1 | -0/+11 |
| | |||||
* | Expiration is minutes | Morten Tokle | 2021-06-04 | 1 | -1/+1 |
| |