Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | rust fmt | Bryan Newbold | 2019-01-08 | 2 | -26/+31 |
| | |||||
* | better rust auth error handling/responses | Bryan Newbold | 2019-01-08 | 1 | -8/+22 |
| | |||||
* | /auth/oidc endpoint has 31 day limit | Bryan Newbold | 2019-01-08 | 1 | -2/+2 |
| | |||||
* | iterate on macaroon time caveat names | Bryan Newbold | 2019-01-08 | 1 | -20/+19 |
| | |||||
* | add auth/check endpoint | Bryan Newbold | 2019-01-07 | 2 | -19/+98 |
| | |||||
* | commit missing bits from username length change | Bryan Newbold | 2019-01-07 | 1 | -1/+3 |
| | |||||
* | only superusers get auto-magic-privs | Bryan Newbold | 2019-01-07 | 2 | -2/+2 |
| | |||||
* | add superuser role/flag | Bryan Newbold | 2019-01-04 | 4 | -21/+33 |
| | |||||
* | fix rust side of login | Bryan Newbold | 2019-01-03 | 2 | -8/+18 |
| | |||||
* | editor update | Bryan Newbold | 2019-01-03 | 2 | -4/+127 |
| | |||||
* | start to impl oidc auth | Bryan Newbold | 2019-01-03 | 4 | -8/+146 |
| | |||||
* | rust fmt | Bryan Newbold | 2018-12-31 | 1 | -1/+1 |
| | |||||
* | make editor_id optional when createding editgroup | Bryan Newbold | 2018-12-31 | 5 | -7/+24 |
| | | | | The editor_id can be infered from auth metadata. | ||||
* | allow multiple 'alt' keys to be specified in env | Bryan Newbold | 2018-12-31 | 3 | -1/+32 |
| | |||||
* | add auth middleware back in | Bryan Newbold | 2018-12-31 | 2 | -3/+95 |
| | | | | | | | | | I was hoping I didn't need this middleware, but I actually do, or the swagger generated code returns unauthenticated. The middleware doesn't actually do much validation, just extracts the (string) token and does nothing with it. Acutal verification happens in user code using AuthData struct. | ||||
* | rustfmt; implement role-based auth checks | Bryan Newbold | 2018-12-31 | 7 | -100/+299 |
| | |||||
* | wire-up auth config via ENV | Bryan Newbold | 2018-12-31 | 4 | -49/+54 |
| | |||||
* | basic auth unittests | Bryan Newbold | 2018-12-28 | 3 | -6/+7 |
| | |||||
* | more auth refactoring | Bryan Newbold | 2018-12-28 | 4 | -59/+76 |
| | |||||
* | start refactor of auth code | Bryan Newbold | 2018-12-28 | 7 | -188/+121 |
| | | | | | | | Pulls auth code (which requires the persistent state of a signing keyring) into a struct. Doesn't try verify macaroon in middleware, do it in individual wrappers. | ||||
* | more basic work on auth | Bryan Newbold | 2018-12-27 | 4 | -47/+200 |
| | |||||
* | sql codegen and WIP on auth command | Bryan Newbold | 2018-12-27 | 4 | -25/+70 |
| | |||||
* | start skeleton of auth internal bits | Bryan Newbold | 2018-12-26 | 4 | -9/+222 |
| | |||||
* | impl edit_id change | Bryan Newbold | 2018-12-26 | 4 | -15/+17 |
| | |||||
* | rust impl last webcapture schema tweaks | Bryan Newbold | 2018-12-26 | 4 | -13/+13 |
| | |||||
* | fileset/web support for exports | Bryan Newbold | 2018-12-26 | 1 | -0/+10 |
| | |||||
* | most basic fileset/web access tests | Bryan Newbold | 2018-12-26 | 1 | -2/+2 |
| | |||||
* | fileset/web basic implementation | Bryan Newbold | 2018-12-26 | 6 | -38/+928 |
| | | | | | | As well as small consistency and bugfix implementations. No new tests yet... | ||||
* | remove unused postgres-backed stats stuff | Bryan Newbold | 2018-12-24 | 2 | -98/+5 |
| | | | | Will replace with elasticsearch-based dash in webface | ||||
* | rust impl of API harmonization | Bryan Newbold | 2018-12-24 | 4 | -62/+62 |
| | |||||
* | implement release_year (and rustfmt) | Bryan Newbold | 2018-12-24 | 5 | -19/+46 |
| | |||||
* | verify checksum against regexes | Bryan Newbold | 2018-12-21 | 5 | -20/+130 |
| | |||||
* | clarify expand of non-concrete release | Bryan Newbold | 2018-12-21 | 1 | -2/+5 |
| | |||||
* | expand files for target of redirect | Bryan Newbold | 2018-12-21 | 1 | -1/+6 |
| | |||||
* | don't expand deleted entities | Bryan Newbold | 2018-12-21 | 1 | -0/+4 |
| | |||||
* | allow expand creators in release gets | Bryan Newbold | 2018-12-21 | 1 | -0/+12 |
| | |||||
* | test prev_rev behavior | Bryan Newbold | 2018-12-21 | 1 | -3/+8 |
| | |||||
* | more edit edgecases; editgroup status check | Bryan Newbold | 2018-12-21 | 3 | -1/+22 |
| | |||||
* | more state/edit edge case tests | Bryan Newbold | 2018-12-21 | 2 | -5/+63 |
| | |||||
* | GET methods not in transactions | Bryan Newbold | 2018-12-20 | 1 | -15/+15 |
| | |||||
* | fix order of entity update | Bryan Newbold | 2018-12-20 | 1 | -17/+20 |
| | |||||
* | disallow self-redirects | Bryan Newbold | 2018-12-20 | 1 | -4/+13 |
| | |||||
* | enforce no-recursive-redirects | Bryan Newbold | 2018-12-20 | 1 | -12/+39 |
| | |||||
* | allow deletion of redirect-to-deletion | Bryan Newbold | 2018-12-20 | 2 | -2/+3 |
| | |||||
* | many redirect implementations | Bryan Newbold | 2018-12-14 | 5 | -38/+272 |
| | | | | | | | | | | | | | | | | | | Probably should have split this commit up, it's huge: - accept the state of "redirect to a deletion", where redirect_id is Some but rev_id is None. call this a "redirect"; previously this was an invalid state. - GET for a deleted entity returns a 200 and a stub entity, not a 404 - to PUT a redirect, or to "revert" an entity to point at a specific pre-existing revision, PUT a stub entity. things are getting messy here... to detect this state, ensure the 'state' field is blank/none (this is for API usage ergonomics, where results from a GET are often re-used in a PUT or even POST) - rustfmt - maybe even more small tweaks along the way? mystery meat! Tests are in python, not rust (and a future commit) | ||||
* | better return status for some error conditions | Bryan Newbold | 2018-12-14 | 3 | -13/+31 |
| | |||||
* | lookups impl | Bryan Newbold | 2018-12-14 | 2 | -30/+85 |
| | |||||
* | new rustfmt (1.31) | Bryan Newbold | 2018-12-14 | 5 | -63/+114 |
| | |||||
* | skeleton out new schema features | Bryan Newbold | 2018-12-13 | 4 | -71/+485 |
| | |||||
* | implement hide flag | Bryan Newbold | 2018-11-26 | 5 | -105/+227 |
| |