Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | rust: fix macaroon expiry check | Bryan Newbold | 2019-04-09 | 1 | -10/+19 |
| | | | | | | | | | | | | | There were two bugs with this code: the expiry timestamps were getting enclosed in double-quotes (which caused parse bugs), and the actual caveat check itself was backwards (expires < now instead of expires > now). An underlying issue was that these caveats weren't actually getting checked in the tests. Should fix a bug where users don't get auth'd correctly when logging in via mechanisms other than tokens. | ||||
* | auth editor not-found is a 403 auth response | Bryan Newbold | 2019-01-29 | 1 | -1/+13 |
| | |||||
* | yet more edit lifecycle progress | Bryan Newbold | 2019-01-11 | 1 | -4/+4 |
| | |||||
* | code docs/comments and rustfmt | Bryan Newbold | 2019-01-10 | 1 | -0/+4 |
| | |||||
* | HUGE refactor of error types (to use failure) | Bryan Newbold | 2019-01-09 | 1 | -20/+21 |
| | |||||
* | refactor: FatCatId -> FatcatId | Bryan Newbold | 2019-01-09 | 1 | -8/+8 |
| | |||||
* | some clippy nits | Bryan Newbold | 2019-01-09 | 1 | -23/+20 |
| | |||||
* | huge refactor of rust modules/files | Bryan Newbold | 2019-01-08 | 1 | -3/+28 |
| | | | | | | Taking advantage of new Rust 2018 crate/module path changes, and re-organizing things. Somewhat optimistic this could help with partial rebuild speed also. | ||||
* | rust 2018 edition! | Bryan Newbold | 2019-01-08 | 1 | -4/+4 |
| | | | | Only the basics to get things to compile/test again in this commit. | ||||
* | rust fmt | Bryan Newbold | 2019-01-08 | 1 | -21/+25 |
| | |||||
* | better rust auth error handling/responses | Bryan Newbold | 2019-01-08 | 1 | -8/+22 |
| | |||||
* | iterate on macaroon time caveat names | Bryan Newbold | 2019-01-08 | 1 | -20/+19 |
| | |||||
* | add auth/check endpoint | Bryan Newbold | 2019-01-07 | 1 | -5/+16 |
| | |||||
* | only superusers get auto-magic-privs | Bryan Newbold | 2019-01-07 | 1 | -1/+1 |
| | |||||
* | add superuser role/flag | Bryan Newbold | 2019-01-04 | 1 | -11/+21 |
| | |||||
* | allow multiple 'alt' keys to be specified in env | Bryan Newbold | 2018-12-31 | 1 | -0/+6 |
| | |||||
* | add auth middleware back in | Bryan Newbold | 2018-12-31 | 1 | -3/+94 |
| | | | | | | | | | I was hoping I didn't need this middleware, but I actually do, or the swagger generated code returns unauthenticated. The middleware doesn't actually do much validation, just extracts the (string) token and does nothing with it. Acutal verification happens in user code using AuthData struct. | ||||
* | rustfmt; implement role-based auth checks | Bryan Newbold | 2018-12-31 | 1 | -41/+151 |
| | |||||
* | wire-up auth config via ENV | Bryan Newbold | 2018-12-31 | 1 | -5/+15 |
| | |||||
* | basic auth unittests | Bryan Newbold | 2018-12-28 | 1 | -4/+1 |
| | |||||
* | more auth refactoring | Bryan Newbold | 2018-12-28 | 1 | -54/+59 |
| | |||||
* | start refactor of auth code | Bryan Newbold | 2018-12-28 | 1 | -183/+110 |
| | | | | | | | Pulls auth code (which requires the persistent state of a signing keyring) into a struct. Doesn't try verify macaroon in middleware, do it in individual wrappers. | ||||
* | more basic work on auth | Bryan Newbold | 2018-12-27 | 1 | -19/+178 |
| | |||||
* | sql codegen and WIP on auth command | Bryan Newbold | 2018-12-27 | 1 | -14/+35 |
| | |||||
* | start skeleton of auth internal bits | Bryan Newbold | 2018-12-26 | 1 | -0/+106 |