ben-toogood
c905df3be6
Log auth verify requests ( #1422 )
...
* More auth debugging
* More auth debugging
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 17:35:28 +00:00
Asim Aslam
62f9a054a4
100mb ( #1421 )
2020-03-26 16:57:31 +00:00
ben-toogood
00e7804f96
Auth - Add debugging to loading rules ( #1420 )
...
* Fix auth multi-rule edgecase
* Add logging to auth rules
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 16:30:31 +00:00
ben-toogood
42b6bf5bbf
Fix auth multi-rule edgecase ( #1418 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-26 15:52:48 +00:00
ben-toogood
844c456839
Refactor Auth Service Protos, Add Access Rules ( #1411 )
...
* Refactor auth/service into two protos
* Accounts Proto
* Store Prefixes
* Misc
* Tweak Protos
Co-authored-by: Ben Toogood <ben@micro.mu>
Co-authored-by: Asim Aslam <asim@aslam.me>
2020-03-26 13:12:43 +00:00
Asim Aslam
7182ca1fd0
fix server logging ( #1417 )
2020-03-26 13:08:06 +00:00
Vasiliy Tolstov
02839cfba5
api/handler: use http.MaxBytesReader and buffer pool ( #1415 )
...
* api/handler: use http.MaxBytesReader
protect api handlers from OOM cases
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-26 14:29:28 +03:00
Asim Aslam
776a7d6cd6
Update filter comment for proxy ( #1416 )
2020-03-26 08:05:00 +00:00
Vasiliy Tolstov
beaa434610
logger: fix reading env var ( #1414 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-25 22:00:43 +00:00
Asim Aslam
6efc5556e5
use requested service ( #1413 )
2020-03-25 20:59:37 +00:00
Asim Aslam
8d0826a031
Add check for k8s condition ( #1412 )
2020-03-25 19:32:41 +00:00
ben-toogood
378d03eb66
Tidying up auth ( #1410 )
...
* Don't clear auth rules if request fails
* Add jitter to auth service loading rules
* Remove unused error from ContextWithToken result
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 18:34:13 +00:00
ben-toogood
56af826230
Update auth to pass seconds and not nanoseconds ( #1409 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 17:03:45 +00:00
ben-toogood
511ebd8ec2
Fix Token Expiry Bug ( #1408 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 14:40:37 +00:00
ben-toogood
1057ef6acb
Add ContextWithToken ( #1407 )
...
* Add ContextWithToken
* Tidying up BearerScheme
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 11:20:53 +00:00
ben-toogood
35e2a68a98
Fix auth bug restricting access to unauthorised endpoints ( #1405 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 10:31:33 +00:00
ben-toogood
0e56382107
Fix service level auth, add improved error descriptions to aid with debugging ( #1403 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-25 09:35:29 +00:00
Jake Sanders
dff98355be
Missing ; in SQL query
2020-03-24 23:49:09 +00:00
Vasiliy Tolstov
8100d26430
api/router/registry: use logger ( #1402 )
...
* api/router/registry: use logger
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
* api/server/acme: use logger
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-24 20:45:11 +00:00
Jake Sanders
397a8638f4
Cockroach Store bugfix ( #1401 )
2020-03-24 17:16:38 +00:00
Jake Sanders
eb4d2ae6aa
Remove useless variable from cockroach store ( #1400 )
2020-03-24 15:37:30 +00:00
Jake Sanders
914340585c
Trim space from env variables ( #1399 )
2020-03-24 14:51:43 +00:00
ben-toogood
84b4eb5404
Fix missing loop ( #1398 )
...
* WithRoles variadic args
* Load Rules
* Timer => Ticker
* Add missing for loop in auth service
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-24 14:16:57 +00:00
ben-toogood
fd664f4392
Auth load rules ( #1397 )
...
* WithRoles variadic args
* Load Rules
* Timer => Ticker
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-24 13:48:37 +00:00
ben-toogood
86272a3064
WithRoles variadic args ( #1395 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-24 10:18:34 +00:00
ben-toogood
c1978265ab
Auth Wildcard Endpoints ( #1394 )
...
* Auth Wildcard Endpoints
* Fix joinkey bug, improve tests
* Change joinKey
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-24 09:39:33 +00:00
ben-toogood
e0e77f3983
Updated auth interface ( #1384 )
...
* Updated auth interface
* Add Rule
* Remove Rule
* Return token from Renew
* Renew => Refresh
* Implement Tokens & Default Auth Implementation
* Change default auth to noop
* Change default auth to noop
* Move token.Token to auth.Token
* Remove Token from Account
* Auth service implementation
* Decode JWT locally
* Cookie for secret
* Move string to bottom of interface definition
* Depricate auth_exclude
* Update auth wrappers
* Update go.sum
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-23 16:19:30 +00:00
Vasiliy Tolstov
9826ddbd64
api/handler/rpc: log errors ( #1390 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-23 10:31:35 +03:00
0987363
87617be227
Add client header to rpcRequest header; issue #957 ( #1378 )
...
Co-authored-by: Asim Aslam <asim@aslam.me>
2020-03-21 23:25:23 +00:00
Vasiliy Tolstov
d559587807
client/grpc: remove json-iterator usage ( #1387 )
...
* minimize external deps and binary size
* if user wants json-iterator codec it must be used in server and
client code. so best to use it via go-plugins
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-21 09:40:58 +00:00
Janos Dobronszki
9501512219
Auth util func RequestToContext ( #1386 )
2020-03-20 15:23:12 +00:00
Asim Aslam
d2f153d795
Add type of service ( #1385 )
2020-03-20 12:48:12 +00:00
Asim Aslam
e49be1da42
fix local runtime ( #1383 )
2020-03-19 22:38:37 +00:00
Jake Sanders
4c6f68d537
Implement store read cache ( #1366 )
...
* Implement store read cache
* Added cache tests and fixed a bug in memory store
2020-03-19 18:19:07 +00:00
Vasiliy Tolstov
cbb958def5
config: fix panic on multiple Close() ( #1374 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-19 12:54:59 +03:00
Asim Aslam
40ff6ddfcf
sigh, further status changes ( #1371 )
2020-03-18 22:47:03 +00:00
Asim Aslam
5ad7c36bd4
Fix labels for k8s ( #1370 )
2020-03-18 22:13:21 +00:00
Asim Aslam
99c3fe2bb8
fix status parsing ( #1368 )
2020-03-18 21:50:52 +00:00
Asim Aslam
1bd340701b
add k8s service ip to metadata ( #1367 )
...
* add k8s service ip to metadata
* go fmt
* use same port as container
2020-03-18 18:27:29 +00:00
Jake Sanders
c91bf7e9e7
[WIP] Store Sync ( #1365 )
...
* Initial cache implementation
* Write queue implementation
* Accidentally started writing the storage sync service
2020-03-18 16:39:36 +00:00
Vasiliy Tolstov
41f8a8cb00
errors: add FromError func ( #1362 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-18 03:10:38 +03:00
ben-toogood
cd04111e3d
Pass redirect_to param on auth ( #1361 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-17 20:04:16 +00:00
ben-toogood
00cd2448a4
Fix bug where auth token is not set from cookie when excluded endpoint ( #1360 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-17 19:24:10 +00:00
ben-toogood
8a41d369f2
Auth JWT ID Fix ( #1359 )
...
* Auth JWT ID Fix
* Remove unused ID in jwt claims
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-17 16:59:57 +00:00
Jake Sanders
638c219736
Cockroach store feature completion ( #1358 )
...
* Start fixing cockroach store
* Add prefix, suffix, limit, offset for cockroachdb store
2020-03-17 16:15:23 +00:00
ben-toogood
b3c631dd38
Support Wildcard Auth Excludes ( #1357 )
...
Co-authored-by: Ben Toogood <ben@micro.mu>
2020-03-17 16:03:49 +00:00
Vasiliy Tolstov
ab73127063
grpc client/server fixes ( #1355 )
...
* grpc client/server fixes
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-17 14:27:20 +03:00
Asim Aslam
03031a694d
use pod phase/status ( #1356 )
2020-03-16 23:47:34 +00:00
li.peng
5712aafba9
fix: context cancel ( #1350 )
...
Co-authored-by: Asim Aslam <asim@aslam.me>
2020-03-16 10:45:33 +00:00
Vasiliy Tolstov
ac333d9d47
client/grpc: unwrap error after call ( #1352 )
...
Signed-off-by: Vasiliy Tolstov <v.tolstov@unistack.org>
2020-03-16 13:33:38 +03:00