Sam Batschelet
|
15903736d5
auth: fix cherry-pick
|
5 anni fa |
Sam Batschelet
|
c7f744d6d3
auth: disable CommonName auth for gRPC-gateway
|
5 anni fa |
Sam Batschelet
|
7292963ae7
auth: fix panic using WithRoot and improve JWT coverage
|
6 anni fa |
Hitoshi Mitake
|
37767bc6e2
auth: a new auth token provider nop
|
6 anni fa |
Gyuho Lee
|
1f191a0e34
auth: use NewIncomingContext for "WithRoot"
|
7 anni fa |
Gyuho Lee
|
645c7c9a92
auth: use "sort.Strings" instead of StringSlice
|
7 anni fa |
Hitoshi Mitake
|
f649132a5a
auth, etcdserver: follow the correct usage of context
|
7 anni fa |
Gyu-Ho Lee
|
38942a2a51
auth: clean up mutex lock/unlocks
|
7 anni fa |
Gyu-Ho Lee
|
568b856be8
auth: pre-allocate slices in store
|
7 anni fa |
Hitoshi Mitake
|
da0a387aac
auth: use binary search for checking root permission
|
7 anni fa |
Gyu-Ho Lee
|
f65aee0759
*: replace 'golang.org/x/net/context' with 'context'
|
7 anni fa |
Gyu-Ho Lee
|
35b11bf438
auth: replace NewContext with NewOutgoingContext
|
7 anni fa |
Hitoshi Mitake
|
e0c33ef881
auth, etcdserver: allow users to know their roles and permissions
|
7 anni fa |
Xiang Li
|
44a6c2121b
Merge pull request #7999 from hexfusion/grpc-gateway-auth
|
7 anni fa |
Gyu-Ho Lee
|
5e059fd8dc
*: use metadata Incoming/OutgoingContext
|
7 anni fa |
Sam Batschelet
|
0caab26310
auth: support "authorization" token for grpc-gateway
|
7 anni fa |
Hitoshi Mitake
|
0c655902f2
auth, etcdserver: protect revoking lease with auth
|
7 anni fa |
Hitoshi Mitake
|
e1306bff8f
*: simply ignore ErrAuthNotEnabled in clientv3 if auth is not enabled
|
7 anni fa |
Hitoshi Mitake
|
c4a45c5713
auth, adt: introduce a new type BytesAffineComparable
|
7 anni fa |
Gyu-Ho Lee
|
3edd36315d
auth: use atomic access to 'authStore.revision'
|
7 anni fa |
Hitoshi Mitake
|
ad2111a6f4
auth: store cached permission information in a form of interval tree
|
7 anni fa |
Hitoshi Mitake
|
c40b86bcde
auth, etcdserver: forbid invalid auth management
|
7 anni fa |
Hitoshi Mitake
|
068d806bde
*: revoke a deleted role
|
7 anni fa |
Anthony Romano
|
52bc997e0b
auth: nil check AuthInfo when checking admin permissions
|
7 anni fa |
Hitoshi Mitake
|
f8a290e7ca
*: support jwt token in v3 auth API
|
8 anni fa |
Gyu-Ho Lee
|
6431382a75
auth: keep old revision in 'NewAuthStore'
|
7 anni fa |
Hitoshi Mitake
|
9976d869c1
auth: correct initialization in NewAuthStore()
|
7 anni fa |
Hitoshi Mitake
|
0191509637
auth, etcdserver: authenticate clients based on certificate CommonName
|
8 anni fa |
Hitoshi Mitake
|
9886e9448e
auth, etcdserver: let maintenance services require root role
|
8 anni fa |
Anthony Romano
|
c39a59c0be
auth: reject empty user name when checking op permissions
|
7 anni fa |