status-im/consul
2
0
Fork 0
mirror of https://github.com/status-im/consul.git synced 2025-02-08 11:54:12 +00:00
Code Issues Projects Releases Wiki Activity
consul/acl
History
Matt Keeler 883c5dd001 Fix ACL enforcement 
This creates one function that takes a rule and the required permissions and returns whether it should be allowed and whether to leave the decision to the parent acl.

Then this function is used everywhere. This makes acl enforcement consistent.

There were several places where a default allow policy with explicit deny rules wasnt being handled and several others where it wasn’t using the parent acl appropriately but would lump no policy in with a deny policy. All of that has been fixed.
2018-07-24 16:21:56 -04:00
..
acl_test.go
acl: IntentionDefault => IntentionDefaultAllow
2018-06-14 09:41:55 -07:00
acl.go
Fix ACL enforcement
2018-07-24 16:21:56 -04:00
cache_test.go
Introduce Code Policy validation via sentinel, with a noop implementation
2017-09-25 13:44:55 -05:00
cache.go
Introduce Code Policy validation via sentinel, with a noop implementation
2017-09-25 13:44:55 -05:00
errors.go
Spelling (#3958)
2018-03-19 16:56:00 +00:00
policy_test.go
agent/consul: convert intention ACLs to testify/assert
2018-06-14 09:41:46 -07:00
policy.go
acl: parsing intentions in service block
2018-06-14 09:41:44 -07:00