public/grafana
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
56,768 Commits 655 Branches 650 Tags
ac41c193508ac514b85ebafa15442df583fa0992
Commit Graph

15 Commits

Author SHA1 Message Date
Ieva
33a53d170b AuthZ service: Add metrics (#99007) 
* add metrics for authZ MT service

* remove metrics that are already tracked by the GRPC server metrics

Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>

* undo unneeded change

* test fix

---------

Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
 2025-01-24 14:03:23 +00:00
Gabriel MABILLE
a9f0e15778 AuthZ: Change cache interface (#99058) 
* Authz: Switch to remotecache

* Todos

* lint

* lint test

* test readibility

* Remove ttls

* implement a cache wrap

* Rm unused func

* Comment

* Update workspace:

* Use cache

* Fix comment
 2025-01-24 09:51:39 +01:00
Karl Persson
7329d2c34b Authz: Account for fixed roles when running oss and using authz service (#99244) 
* Extract "PermissionStore" from general store interface

* Add static and union permission stores

* Add GetStaticRoles

* Use accesscontrol.Service for inproc to provide static permissions
 2025-01-20 16:00:36 +01:00
Gabriel MABILLE
4d699d4810 AuthZ: Use M3 AuthZ Service (#98621) 
* AuthZ: Use M3 AuthZ Service

Co-authored-by: ievaVasiljeva <ieva.vasiljeva@grafana.com>

* Fix oss

* fake auth info

---------

Co-authored-by: ievaVasiljeva <ieva.vasiljeva@grafana.com>
 2025-01-13 16:03:14 +01:00
Ieva
ded90fa28d App platform: Implement perm check with direct db access (#97579) 
* implement perm check with direct db access

* add tests

* more tests

* Update pkg/services/authz/rbac/service.go

Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>

* Update pkg/services/authz/rbac/service.go

Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>

* allow fetching permissions for a user who is not a member of the org

* linting

* fix typo

---------

Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
 2024-12-12 08:52:14 +00:00
Gabriel MABILLE
aa2b4751a0 AuthZ: Launch service within IAM app (#96421) 2024-11-20 11:13:33 +01:00
Gabriel MABILLE
2788817107 AuthZ: Implement Check (#95162) 
* AuthZ: Implement Check


---------

Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
 2024-10-25 14:57:39 +02:00
Gabriel MABILLE
0704ae734f AuthZ: Refactor authentication modes for the Authz package (#95120) 
* AuthZ: Fix authentication modes for the Authz package

Co-Authored-By: Claudiu Dragalina-Paraipan <drclau@users.noreply.github.com>
 2024-10-22 13:38:59 +02:00
Karl Persson
a82d01214d Auth: Update authlib (#94947) 
* Update authlib
 2024-10-18 13:36:21 +02:00
Alexander Zobnin
9f1b584c85 Chore: Update authlib version (#94714) 
* Chore: Update authlib version

* update workspace

* use ParseNamespace()
 2024-10-15 16:58:46 +02:00
Karl Persson
8bcd9c2594 Identity: Remove typed id (#91801) 
* Refactor identity struct to store type in separate field

* Update ResolveIdentity to take string representation of typedID

* Add IsIdentityType to requester interface

* Use IsIdentityType from interface

* Remove usage of TypedID

* Remote typedID struct

* fix GetInternalID
 2024-08-13 10:18:28 +02:00
Claudiu Dragalina-Paraipan
cf55ac5813 authz: set authzv1.ReadResponse.Found (#91212) 
Co-authored-by: Gabriel MABILLE <gabriel.mabille@grafana.com>
 2024-07-30 18:26:54 +03:00
Ryan McKinley
9db3bc926e Identity: Rename "namespace" to "type" in the requester interface (#90567) 2024-07-25 12:52:14 +03:00
Gabriel MABILLE
5f83fdef2c AuthZ: GRPC client init and config options (#89161) 2024-06-18 06:13:24 +02:00
Gabriel MABILLE
afcb5a855c AuthZ: embed an authorization server (#89018) 
* AuthZ: embed an authorization server

* CODEOWNERS

* Remove swagger

* WIP

* Flatten structure and inject wireset

* sync mod files

* Rename authorization package

* Fix swagger gen

* CODEOWNERS

* Use itf instead of impl

---------

Co-authored-by: Karl Persson <kalle.persson@grafana.com>
 2024-06-13 11:41:35 +02:00