public/grafana
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,561 Commits 655 Branches 650 Tags
c440bd2bdaec8fed13f47fdfe76dda63e7d0008a
Commit Graph

11 Commits

Author SHA1 Message Date
Alexander Zobnin
87d86e81ce Zanzana: Evaluate permissions alongside with RBAC engine (#90064) 
* Zanzana: Evaluate permissions if feature flag enabled

* Fix tests

* adjust logs

* fix spelling

* remove unused

* only evaluate implemented resources

* refactor
 2024-07-05 11:31:23 +02:00
Jeff Levin
cfe8317d45 Add auth spans and remove deduplication code for scopes (#89804) 
Adds more spans for timing in accesscontrol and remove permission deduplicating code after benchmarking

---------

Signed-off-by: Dave Henderson <dave.henderson@grafana.com>
Co-authored-by: Dave Henderson <dave.henderson@grafana.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
 2024-07-02 22:08:57 -08:00
Ieva
167151b211 Chore: Remove use of deprecated method in AC code (#87541) 
* switch from using cfg to using featuremgmt for checking a feature toggle in AC code

* merge test fixes
 2024-05-10 11:56:52 +01:00
Misi
b1dc505a2b Auth: Validate admin assignment in SSO Settings (#82233) 
* Add validation for allowAssignGrafanaAdmin

* Update default values

* Do not render hidden fields

* Change error message

* Improve tests

---------

Co-authored-by: Clarity-89 <homes89@ukr.net>
 2024-02-09 13:10:23 +01:00
Misi
8246d97587 Auth: Introduce configurable_providers config option for SSO settings (#80911) 
* Add SSOSettingsConfigurableProviders config option

* Add check to Delete and ListWithRedactedSecrets

* Add check to GET, small improvements
 2024-01-23 15:48:06 +01:00
Misi
20bb0a3ab1 AuthN: Support reloading SSO config after the sso settings have changed (#80734) 
* Add AuthNSvc reload handling

* Working, need to add test

* Remove commented out code

* Add Reload implementation to connectors

* Align and add tests, refactor

* Add more tests, linting

* Add extra checks + tests to oauth client

* Clean up based on reviews

* Move config instantiation into newSocialBase

* Use specific error
 2024-01-22 14:54:48 +01:00
colin-stuart
e241188f00 Auth: Implement the SSO Settings List endpoint (#80769) 
* add list endpoint & initial tests

* add tests and ETag

* format service_test.go

* add list swagger param, generate openAPI, remove ETag, use RedactedPassword

* correct swagger param name

* Align tests to latest changes

* use setting.RedactedValue()

* add string assertion

* lint & require no error on res.Body.Close()

* add custom response type

---------

Co-authored-by: Mihaly Gyongyosi <mgyongyosi@users.noreply.github.com>
 2024-01-19 14:39:09 -05:00
colin-stuart
062e772bb2 Auth: Implement the SSO Settings GET endpoint (#79144) 
* Return data in camelCase from the OAuth fb strategy

* changes

* wip

* Add defaults for oauth fb strategy

* revert other changes

* basic includeDefaults query param implementation

* basic secret removal and etag implementation

* correct imports

* rebase

* move default settings filter to models

* only replace ClientSecret value if set

* first GetForProvider test & use FNV for ETag to avoid Blocklisted import error

* add tests

* add annotation for the openapi spec & generate spec

* remove TODO

* use IsSecret, improve tests, remove DefaultOAuthSettings

* add comment explaining generateFNVETag

* add error handling for generateFNVETag

* run go generate

* Update pkg/services/ssosettings/api/api.go

Co-authored-by: Mihai Doarna <mihai.doarna@grafana.com>

* move isSecret to service, create GetForProviderWithRedactedSecrets func

* add unit test for GetForProviderWithRedactedSecrets & remove duplicated code

* regen openapi/swagger

* revert dependency bumps

---------

Co-authored-by: Mihaly Gyongyosi <mgyongyosi@users.noreply.github.com>
Co-authored-by: Mihai Doarna <mihai.doarna@grafana.com>
 2024-01-08 09:35:14 -05:00
Mihai Doarna
ade91e5038 Auth: Implement the SSO Settings update endpoint (#79676) 
* merge with system settings before storing them in the db

* add base for validating sso settings

* add unit tests for sso settings validation

* call Reload() from sso service upsert()

* remove actual validation because it was moved in a separate pr

* use constant to fix lint error

* check if provider is configurable in service Upsert() method

* add unit tests for update provider settings api method

* fix lint error
 2024-01-03 13:04:35 +02:00
Mihai Doarna
f0d3e27ea7 Add unit tests for the removeSSOSettings API method (#78476) 
add unit tests for the removeSSOSettings api method
 2023-11-22 15:57:12 +02:00
Misi
5285e9503b Auth: SSO settings foundations (#77724) 
* inital changes, db migration

* changes

* Implement basic GetAll, Delete

* Add first batch of tests

* Add more tests

* Add service tests for GetForProvider, List

* Update http_server.go + wire.go

* Lint + update fixed role

* Update CODEOWNERS

* Change API init

* Change roles, rename

* Review with @kalleep

* Revert a mistakenly changed part

* Updates based on @dmihai 's feedback

---------

Co-authored-by: Karl Persson <kalle.persson@grafana.com>
 2023-11-08 10:50:01 +01:00