* Chore: Bump github.com/go-jose/go-jose/v3 to v3.0.4
* Chore: Bump github.com/ua-parser/uap-go to v0.0.0-20250213224047-9c035f085b90
* Chore: Bump golang.org/x/net to v0.36.0
* Chore: Use github.com/moby/moby version 27.4.1 instead of 26.0.0
* Chore: Bump github.com/openfga/openfga to v1.8.5
* update github.com/prometheus/prometheus to v0.301.0
* have an adapter for infra logger
* go mod tidy and go work sync
* remvoe the cuelang.org/go replace
* remove slog_adapter
* Create go.mod files for plugins and core kinds
* Update go work and main go.mod dependencies
* Update pfs import
* Missing update of pfs dependency
* Remove fixed cuelang dependency
* Update codeowners
* Update workspace
* Update Dockerfile
* Missing go.mod codeowner
* Use intermediate kin-openapi dependency to make all workspaces to work
* Create and use common ResourceInfo struct
* Add support for formatting group resource with subresource
* Add initial support for handling subresource
* Add test for checking subresource for generic resource
* Bump authlib
* Update dependency golang.org/x/crypto to v0.31.0
* Update dependency golang.org/x/crypto to v0.31.0 - based on Trivy Scan
* Chore: go mod tidy
* Chore: make update-workspace
* Chore: manually update more sum files
---------
Co-authored-by: Mariell Hoversholm <mariell.hoversholm@grafana.com>
* Bump github.com/grafana/grafana-plugin-sdk-go to v0.260.1
* run make update-workspace
* make update-workspace
---------
Co-authored-by: Andres Martinez Gotor <andres.martinez@grafana.com>
* Support importing local cue modules when generating TS types with cog
* Generate enums as unions of values instead of an actual `enum` statement
* Update transformers to use the new TS enums
* Update go workspaces
---------
Co-authored-by: Ivan Ortega <ivanortegaalba@gmail.com>
* Rename from AllowedKubernetesNamespace to Namespace
* Use a sync hook to always set namespace for Identity.
* format
* Don't set uid when authenticating as user
* Support getting full path of UIDs
* Use full path to set parents field
* Update get folder test
* Add folder store test for getting with full path UIDs
* Add test for parsing parent titles
* Test nested folder create payload
* Extract a helper funtion to perform list with authorization checks
* Add k8s verb to utils package
* Construct default mapping when no custom mapping is passed
* Configure authorization checks for service accounts
* Fix helper and add filtering to service accounts
* Add authlib gRPC authenticators for in-proc mode
* implement `StaticRequester` signing in the unified resource client
- [x] when the `claims.AuthInfo` value type is `identity.StaticRequester`, and there's no ID token set, create an internal token and sign it with symmetrical key. This is a workaround for `go-jose` not offering the possibility to create an unsigned token.
- [x] update `IDClaimsWrapper` to support the scenario above
- [x] Switch to using `claims.From()` in `dashboardSqlAccess.SaveDashboard()`
---------
Co-authored-by: gamab <gabriel.mabille@grafana.com>
* Unexport store and create new constructor function
* Add ResourceAuthorizer and LegacyAccessClient
* Configure checks for user store
* List with checks if AccessClient is configured
* Allow system user service account to read all users
---------
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
Matheus Macabu
Gabriel MABILLE
dependabot[bot]
ismail simsek
Selene
Karl Persson
Will Browne
Karl Persson
Ryan McKinley
Robert Goltz
Stephanie Hingtgen
Ivana Huckova
Kévin Gomez
Andreas Christou
Todd Treece
Yuri Tseretyan
Marcus Efraimsson
Alexander Zobnin
Arati R.
Santiago
Claudiu Dragalina-Paraipan