Iryna Shustava dfea3a0efe acls,catalog,mesh: properly authorize workload selectors on writes (#19260) ... To properly enforce writes on resources that have workload selectors with prefixes, we need another service authorization rule that allows us to check whether read is allowed within a given prefix. Specifically we need to only allow writes if the policy prefix allows for a wider set of names than the prefix selector on the resource. We should also not allow policies with exact names for prefix matches. Part of [NET-3993]		2023-10-19 11:09:41 -06:00
..
auth	catalog, mesh: implement missing ACL hooks (#19143)	2023-10-13 23:16:26 +00:00
catalog	acls,catalog,mesh: properly authorize workload selectors on writes (#19260)	2023-10-19 11:09:41 -06:00
controller	Prevent circular dependencies between v2 resources and generate a mermaid diagram with their dependencies (#19230)	2023-10-18 10:55:32 -04:00
go-sso	[COMPLIANCE] License changes (#18443)	2023-08-11 09:12:13 -04:00
mesh	fix expose paths (#19257)	2023-10-17 14:47:21 -07:00
protohcl	protohcl: allow attribute syntax for all map fields (#19108)	2023-10-06 19:07:08 -04:00
protoutil	mesh: compute more of the xRoute features into ComputedRoutes (#18980)	2023-09-22 16:13:24 -05:00
radix	[COMPLIANCE] License changes (#18443)	2023-08-11 09:12:13 -04:00
resource	mesh: add DestinationPolicy ACL hook tenancy tests (#19178)	2023-10-16 13:44:24 -05:00
resourcehcl	mesh: rename Upstreams and UpstreamsConfiguration to Destinations* (#18995)	2023-09-25 12:03:45 -06:00
storage	resource: Require scope for resource registration (#18635)	2023-09-01 09:44:53 -05:00
tenancy	v2tenancy: rename v1alpha1 -> v2beta1 (#19227)	2023-10-16 21:43:47 +00:00
testing/golden	NET-5132 - Configure multiport routing for connect proxies in TProxy mode (#18606)	2023-09-12 01:17:56 +00:00
tools	Remove old build tags (#19128)	2023-10-10 10:58:06 -04:00