rancher/steve
1
0
Fork 0
mirror of https://github.com/rancher/steve.git synced 2025-07-03 10:06:35 +00:00
Code Issues Projects Releases Wiki Activity
587 Commits 105 Branches 56 Tags 18 MiB
392a95f753
Commit Graph

40 Commits

Author SHA1 Message Date
Sakala Venkata Krishna Rohit
5ae8585e5d
Fix namespace access control in steve (#568) 
* Fix adding namespace resource access

* Add tests for addResourceAccess func
 2025-04-07 17:40:43 -07:00
Tom Lebreux
b29f7d505c
Reapply "Fix not finding ClusterRoleBinding or RoleBinding for service account…" (#540) (#550) 
This reverts commit 53f2165aee.
 2025-03-14 11:52:28 -04:00
Tom Lebreux
53f2165aee
Revert "Fix not finding ClusterRoleBinding or RoleBinding for service account…" (#540) 
This reverts commit 0f4fd1fde6.
 2025-03-11 11:14:21 -04:00
Tom Lebreux
0f4fd1fde6
Fix not finding ClusterRoleBinding or RoleBinding for service accounts (#539) 2025-03-10 13:35:01 -04:00
Alejandro Ruiz
8ae74491e7
Fix race in accessstore test (#466) 2025-01-28 20:35:24 -05:00
Felipe Gehrke
6ee8201c8d
#47483 - Adding NonResourceURLs support to AccessStore (#299) 
* adding NonResourceURLs support to access_store

* added tests to AccessSet NonResourceURLs handling

* change on test script suggested by @tomleb + go mod tidy

* added nonresource to ext api authorization

* added NonResourceURLs implementation in Authorizes + test

* removed non-resource-url tests from the main test

* added new tests for non-resource-urls

* removed unused test data

* changed nonResourceKey to point to struct{}

* addressed comments from @tomleb

* addressed more comments

* fixing typo

* check for empty accessSet
 2024-11-04 23:47:48 -03:00
Alejandro Ruiz
fd9a516ecb
refactor(accesscontrol): deterministic cache key hashing (#292) 
* refactor(accesscontrol): make addAccess directly accept PolicyRules

* refactor(accesscontrol): add new types for encapsulating all needed data

* refactor(accesscontrol): make getRules return resource version

* refactor(accesscontrol): add new getRoleRefs to policyRuleIndex

* refactor(accesscontrol): make accessStore use the new types and method

* cleanup(accesscontrol): remove unused code

* cleanup(accesscontrol): adapt tests

* cleanup(accesscontrol): add some comments and remove unused function

* refactor(accesscontrol): rework indexer to make it more readable and testable

* Fix typo

* test: consistent use of t.Error

* test: refactor policyRulesMock to just use a map

* misc: rename toUserInfo function

* refactor: consistent sort by UID
 2024-10-28 09:35:59 +01:00
Eric Promislow
6a11ffb660
Migrate the mocking library to uber's (#291) 
* Migrate from golang/mock to uber/mock.

* Update go.mod

* Continue migration to uber/mock.

* Tweaks from running the go.uber.mock's mockgen.
 2024-10-10 10:28:25 -07:00
Alejandro Ruiz
484ce1c9e9
refactor(accesscontrol): use interface for AccessStore cache (#290) 2024-10-09 10:21:29 +02:00
Alejandro Ruiz
5c1a56204d
Add tests for concurrent AccessControl store usage (#286) 
* refactor(accesscontrol): use interface for AccessStore cache

* refactor(accesscontrol): early return when cache is disabled

* test(accesscontrol): add failing unit test

* test(accesscontrol): skip failing test
 2024-10-08 11:18:44 -04:00
Alejandro Ruiz
32c30149a6
refactor(accesscontrol): add unit tests for CacheKey (#245) 
This is a follow up to 435e220 with a small refactor to make the function easier to test, and adding unit tests for CacheKey.
 2024-08-28 10:06:21 +02:00
Alejandro Ruiz
435e220795 fix(accesscontrol): CacheKey could not be stable 2024-07-31 10:24:23 +02:00
vardhaman22
dae842ea98 updated wrangler from v2 to v3 
also updated k8s dependencies to v0.30.1
 2024-06-05 22:53:08 +05:30
Kevin Joiner
e35a044d5a Bumps rancher/wrangler to it's tagged v2 version. 
The previous wrangler commit included all of the v2 changes.
Except for the import paths changes.
 2024-01-24 10:24:01 -05:00
Kevin Joiner
e0480051d9
Merge pull request #61 from KevinJoiner/schema-wather 
Updates Schemas watch logic.
 2022-12-02 10:29:04 -05:00
Kevin Joiner
72ab913c4c Updates Schemas watch logic. 
Updated logic used to decide when and what schema events are sent
during a watch.
 2022-10-27 22:12:39 -04:00
Colleen Murphy
95da447d90 cleanup: remove duplicate apiserver import 
Remove duplicate import and make aliasing of other apiserver imports
consistent throughout steve.
 2022-10-27 14:27:13 -07:00
Michael Bolot
115eb31f57 Adding logic to limit number of cached schemas 
Adds logic to ensure that only one schema/access set
is cached for each user. This should improve memory
consumption
 2022-08-26 09:27:57 -05:00
Ryan Sanna
fe125f80f3 fix role revision index for rolebindings that bind to clusterroles 2021-09-14 15:36:51 -07:00
Darren Shepherd
b219ba5d7c Don't cache the user's schema cache key 2021-08-10 14:02:22 -07:00
Darren Shepherd
9f5d802708 Cleanup schema change reporting 2021-08-09 16:47:09 -07:00
Darren Shepherd
bed06c1320 Drop unused variable 2021-08-04 15:03:57 -07:00
Darren Shepherd
eba8358f2a Fix issues when creating clusterrolebindings to namespaces objects 2021-07-23 23:46:03 -07:00
Darren Shepherd
a1ef4004f8 Implement generic CanDo against k8s roles 2021-05-18 22:34:46 -07:00
Darren Shepherd
4911ec913f Support lookups where user.Info refers to a serviceaccount. 2020-08-11 10:59:02 -07:00
Darren Shepherd
33b6924291 Update imports for wranger-api 2020-07-14 13:27:47 -07:00
Darren Shepherd
d1a7dbb0b9 Shuffle around code and use rancher/apiserver 2020-06-11 21:51:19 -07:00
Darren Shepherd
c61e788d6e Don't use slow strings.Compare 2020-03-21 07:49:17 -07:00
Darren Shepherd
6dafed731f RBAC performance improvements 2020-03-01 22:23:36 -07:00
Darren Shepherd
51274d07e7 Fix compile error 2020-02-10 21:02:42 -07:00
Darren Shepherd
3a8e216ec8 Rename variable 2020-02-10 20:54:33 -07:00
Darren Shepherd
e64845dcb9 Full dynamic RBAC and pagination 2020-02-10 10:18:20 -07:00
Darren Shepherd
9f771dcf65 RBAC caching 2020-02-08 13:03:57 -07:00
Darren Shepherd
b51e14edfb Allow passing in access control impl to the server 2020-02-04 14:11:21 -07:00
Darren Shepherd
c7ac7f35af Add impersonation support 2020-02-03 14:28:25 -07:00
Darren Shepherd
8b42d0aff8 Refactor 2020-01-30 22:37:59 -07:00
Darren Shepherd
fab677b2ec Steve! 2019-09-11 14:05:00 -07:00
Darren Shepherd
5671b6c3f9 Watch counts 2019-08-12 16:47:23 -07:00
Darren Shepherd
674f957b8b Delete unused code 2019-08-12 13:02:03 -07:00
Darren Shepherd
c0299c1506 Initial commit 2019-08-04 10:41:32 -07:00