aboutsummaryrefslogtreecommitdiffstats
path: root/rust/src
Commit message (Collapse)AuthorAgeFilesLines
* iterate on macaroon time caveat namesBryan Newbold2019-01-081-20/+19
|
* add auth/check endpointBryan Newbold2019-01-072-19/+98
|
* commit missing bits from username length changeBryan Newbold2019-01-071-1/+3
|
* only superusers get auto-magic-privsBryan Newbold2019-01-072-2/+2
|
* add superuser role/flagBryan Newbold2019-01-044-21/+33
|
* fix rust side of loginBryan Newbold2019-01-032-8/+18
|
* editor updateBryan Newbold2019-01-032-4/+127
|
* start to impl oidc authBryan Newbold2019-01-034-8/+146
|
* rust fmtBryan Newbold2018-12-311-1/+1
|
* make editor_id optional when createding editgroupBryan Newbold2018-12-315-7/+24
| | | | The editor_id can be infered from auth metadata.
* allow multiple 'alt' keys to be specified in envBryan Newbold2018-12-313-1/+32
|
* add auth middleware back inBryan Newbold2018-12-312-3/+95
| | | | | | | | | I was hoping I didn't need this middleware, but I actually do, or the swagger generated code returns unauthenticated. The middleware doesn't actually do much validation, just extracts the (string) token and does nothing with it. Acutal verification happens in user code using AuthData struct.
* rustfmt; implement role-based auth checksBryan Newbold2018-12-317-100/+299
|
* wire-up auth config via ENVBryan Newbold2018-12-314-49/+54
|
* basic auth unittestsBryan Newbold2018-12-283-6/+7
|
* more auth refactoringBryan Newbold2018-12-284-59/+76
|
* start refactor of auth codeBryan Newbold2018-12-287-188/+121
| | | | | | | Pulls auth code (which requires the persistent state of a signing keyring) into a struct. Doesn't try verify macaroon in middleware, do it in individual wrappers.
* more basic work on authBryan Newbold2018-12-274-47/+200
|
* sql codegen and WIP on auth commandBryan Newbold2018-12-274-25/+70
|
* start skeleton of auth internal bitsBryan Newbold2018-12-264-9/+222
|
* impl edit_id changeBryan Newbold2018-12-264-15/+17
|
* rust impl last webcapture schema tweaksBryan Newbold2018-12-264-13/+13
|
* fileset/web support for exportsBryan Newbold2018-12-261-0/+10
|
* most basic fileset/web access testsBryan Newbold2018-12-261-2/+2
|
* fileset/web basic implementationBryan Newbold2018-12-266-38/+928
| | | | | | As well as small consistency and bugfix implementations. No new tests yet...
* remove unused postgres-backed stats stuffBryan Newbold2018-12-242-98/+5
| | | | Will replace with elasticsearch-based dash in webface
* rust impl of API harmonizationBryan Newbold2018-12-244-62/+62
|
* implement release_year (and rustfmt)Bryan Newbold2018-12-245-19/+46
|
* verify checksum against regexesBryan Newbold2018-12-215-20/+130
|
* clarify expand of non-concrete releaseBryan Newbold2018-12-211-2/+5
|
* expand files for target of redirectBryan Newbold2018-12-211-1/+6
|
* don't expand deleted entitiesBryan Newbold2018-12-211-0/+4
|
* allow expand creators in release getsBryan Newbold2018-12-211-0/+12
|
* test prev_rev behaviorBryan Newbold2018-12-211-3/+8
|
* more edit edgecases; editgroup status checkBryan Newbold2018-12-213-1/+22
|
* more state/edit edge case testsBryan Newbold2018-12-212-5/+63
|
* GET methods not in transactionsBryan Newbold2018-12-201-15/+15
|
* fix order of entity updateBryan Newbold2018-12-201-17/+20
|
* disallow self-redirectsBryan Newbold2018-12-201-4/+13
|
* enforce no-recursive-redirectsBryan Newbold2018-12-201-12/+39
|
* allow deletion of redirect-to-deletionBryan Newbold2018-12-202-2/+3
|
* many redirect implementationsBryan Newbold2018-12-145-38/+272
| | | | | | | | | | | | | | | | | | Probably should have split this commit up, it's huge: - accept the state of "redirect to a deletion", where redirect_id is Some but rev_id is None. call this a "redirect"; previously this was an invalid state. - GET for a deleted entity returns a 200 and a stub entity, not a 404 - to PUT a redirect, or to "revert" an entity to point at a specific pre-existing revision, PUT a stub entity. things are getting messy here... to detect this state, ensure the 'state' field is blank/none (this is for API usage ergonomics, where results from a GET are often re-used in a PUT or even POST) - rustfmt - maybe even more small tweaks along the way? mystery meat! Tests are in python, not rust (and a future commit)
* better return status for some error conditionsBryan Newbold2018-12-143-13/+31
|
* lookups implBryan Newbold2018-12-142-30/+85
|
* new rustfmt (1.31)Bryan Newbold2018-12-145-63/+114
|
* skeleton out new schema featuresBryan Newbold2018-12-134-71/+485
|
* implement hide flagBryan Newbold2018-11-265-105/+227
|
* enforce some controlled vocabularies in APIBryan Newbold2018-11-144-0/+128
|
* fix date/datetime confusion on rust/API sideBryan Newbold2018-11-141-5/+2
| | | | | | Should have dug in to this earlier; python code was getting confused. This is a breaking API change, from a practical standpoint, as both python and rust code had been hacked to work around this.
* rustfmt, and implement schema tweaksBryan Newbold2018-09-226-105/+75
|