public/grafana
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
62,065 Commits 655 Branches 650 Tags
f2f1663dba8a5f6884df19bebd2dbe61c831d8d5
Commit Graph

22 Commits

Author SHA1 Message Date
Mariell Hoversholm
757be6365a CI: Bump golangci-lint to 2.0.2 (#103572) 2025-04-10 14:42:23 +02:00
Mariell Hoversholm
2dee9ccbbc APIServer: Cancel forked context after handler returns (#100504) 
We currently cancel the context when the adapter function is done. We should wait for the entire handler we're wrapping
to finish before cancelling our context.
 2025-02-12 23:54:58 -08:00
Mariell Hoversholm
a0701a42f1 APIServer: Propagate a new context with limited information (#100374) 
* APIServer: Propagate a new context with limited information

* APIServer: Remove error return

* APIServer: Test that context propagation does fork

* APIServer: Fix golangci-lint lints

* chore: make update-workspace
 2025-02-12 10:11:52 +01:00
Andres Martinez Gotor
f8efdaf88c apiserver: Avoid panic for DELETE requests (#100372) 2025-02-11 09:18:57 +01:00
Karl Persson
39d94eabcd Auth: Fix function name (#100122) 
Fix spelling
 2025-02-05 15:32:22 +01:00
Misi
437b7a565d Auth: Add access token to in-proc communication and ServiceIdentity (#98926) 
Use fake access token for in-proc grpc and add ServiceIdentity 
---------

Co-authored-by: gamab <gabriel.mabille@grafana.com>
Co-authored-by: Karl Persson <23356117+kalleep@users.noreply.github.com>
 2025-01-24 14:03:23 +01:00
Ryan McKinley
680e6bc1f8 Authlib: Use types package rather than claims (#99243) 2025-01-21 12:06:55 +03:00
Karl Persson
8d74296b6c Authn: Always set namespace (#96230) 
* Rename from AllowedKubernetesNamespace to Namespace

* Use a sync hook to always set namespace for Identity.

* format

* Don't set uid when authenticating as user
 2024-11-12 10:12:47 +01:00
Marcus Efraimsson
e22b510cd8 API Server: Fix extracting jaeger remote trace from incoming request (#93998) 2024-10-02 17:07:31 +02:00
Karl Persson
2e38329026 RBAC: Add required component to perform access control checks for user api when running single tenant (#93104) 
* Unexport store and create new constructor function

* Add ResourceAuthorizer and LegacyAccessClient

* Configure checks for user store

* List with checks if AccessClient is configured

* Allow system user service account to read all users

---------

Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
 2024-09-23 11:26:44 +02:00
Ryan McKinley
21d4a4f49e Auth: use IdentityType from authlib (#91763) 2024-08-12 09:26:53 +03:00
Ryan McKinley
9db3bc926e Identity: Rename "namespace" to "type" in the requester interface (#90567) 2024-07-25 12:52:14 +03:00
Charandas
4abb4d1662 ExtJwt: don't log verify errors as they spam for grafana-agent (#90351) 
* ExtJwt: don't log verify errors as they spam for grafana-agent

* remove dead code

* revert unintended change

* revert unintended change
 2024-07-11 18:23:43 -07:00
Charandas
c210617735 K8s: use contexthandler in standalone handler chain (#90102) 2024-07-08 12:22:10 -07:00
Ryan McKinley
70cd002826 Storage: Make entity to runtime.Object conversion public (#89549) 
* make conversion public

* make conversion public
 2024-06-21 16:28:09 +03:00
Ryan McKinley
5e95c1bdf8 Storage: Move grpc helper from entity store to resource store (#89490) 2024-06-20 22:32:19 +03:00
Ryan McKinley
27e800768e K8s: Improve identity mapping setup (#89450) 2024-06-20 17:53:07 +03:00
Todd Treece
22989acf95 K8s: Improve response writer error handling (#88926) 
---------

Co-authored-by: Diego Augusto Molina <diegoaugustomolina@gmail.com>
 2024-06-07 16:10:02 -04:00
Marcus Efraimsson
8ea0b336d5 API Server: Include traceID in HTTP request logs (#88179) 2024-05-22 17:56:34 +02:00
Todd Treece
f342217158 K8s: Add path rewriter filter (#87456) 2024-05-08 18:08:43 +03:00
Todd Treece
869b89dce4 K8s: Add accept header to ctx (#83802) 2024-03-01 20:32:59 -05:00
Todd Treece
e5a26a3f7c K8s: Add apimachinery and apiserver packages (#83190) 2024-02-23 15:15:43 -05:00