IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-02-16 18:34:52 -06:00
Code Issues Packages Projects Releases Wiki Activity
48,752 Commits 5,454 Branches 554 Tags 1.9 GiB
d4ae10ecc6
Commit Graph

12 Commits

Author SHA1 Message Date
Gabriel MABILLE
3df0611f81
RBAC: Fix authorize in org (#81552) 
* RBAC: Fix authorize in org

* Implement option 2

* Fix typo

* Fix alerting test

* Add test to cover the not member case
 2024-02-01 12:37:01 +01:00
Karl Persson
05d1ce4026
Auth: id response header (#79757) 
* Add utility function to check if namespace is any of

* Refactor code to use identity interface
 2023-12-21 14:06:28 +01:00
Jo
8919cafcb4
Identity: Unfurl UserID and Email in pkg/api to user identity.Requester (#76112) 
* Unfurl OrgRole in pkg/api to allow using identity.Requester interface

* Unfurl Email in pkg/api to allow using identity.Requester interface

* Update UserID in pkg/api to allow using identity.Requester interface

* fix authed test

* fix datasource tests

* guard login

* fix preferences anon testing

* fix anonymous index rendering

* do not error with user id 0
 2023-10-09 16:07:28 +02:00
Karl Persson
b9b4246432
IDForwarding: Add auth hook to generate id token (#75555) 
* AuthN: Move identity struct to its own file

* IDForwarding: Add IDToken property to usr and identity structs and add GetIDToken to requester interface

* Inject IDService into background services

* IDForwarding: Register post auth hook when feature toggle is enabled
 2023-09-28 09:22:05 +02:00
Karl Persson
cebae4fb9a
Requester: Update GetCacheKey (#74834) 
* AuthN: re-export all namespaces

* Identity: Change signature of GetCacheKey

* User: check HasUniqueID

* Default to org role None if role is empty
 2023-09-14 09:19:33 +02:00
linoman
13f4382214
Auth: Implement requester interface in access control module (#74289) 
* Implement requester interface in the access control module
 2023-09-06 11:16:10 +02:00
Jo
5eed495cce
Chore: Port user services to identity.Requester (#73851) 
* port api key api to signedinuser

* port users to signed in user interface

* fix tests
 2023-08-28 10:42:24 +02:00
Jo
26339f978b
Auth: Move access control API to SignedInUser interface (#73144) 
* move access control api to SignedInUser interface

* remove unused code

* add logic for reading perms from a specific org

* move the specific org logic to org_user.go

* add a comment

---------

Co-authored-by: IevaVasiljeva <ieva.vasiljeva@grafana.com>
 2023-08-18 11:42:18 +01:00
Jo
67de18ff06
Auth: Move Service Account service to SignedInUser Interface (#73142) 
* move service account service to identity interface

* Update pkg/services/auth/identity/requester.go
 2023-08-10 14:20:58 +02:00
Jo
5d8e6aa162
Auth: Org Invite and Team API SignedInUser interfacing (#73085) 
* fix ngalert Evaluate sig change

* interface for teams and org invites

* Update pkg/api/org_invite.go

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>

---------

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
 2023-08-09 12:33:35 +02:00
Jo
bd1a856d33
Auth: Add SignedIn user interface NamespacedID (#72944) 
* wip

* scope active user to 1 org

* remove TODOs

* add render auth namespace

* import cycle fix

* make condition more readable

* convert Evaluate to user Requester

* only use active OrgID for SearchUserPermissions

* add cache key to interface definition

* change final SignedInUsers to interface

* fix api key managed roles fetch

* fix anon auth id parsing

* Update pkg/services/accesscontrol/acimpl/accesscontrol.go

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>

---------

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
 2023-08-09 09:35:50 +02:00
Jo
30274a4f88
Auth: Move Team service to SignedInUserInterface (#72674) 
* move SignedInUser to specific file

* add primitive interface for signedInUser
 2023-08-02 10:43:56 +02:00