grafana/pkg/services/accesscontrol at 1247fba905f2d18732caf69957d564a1a7435a21 - grafana - Personal Gitea

public/grafana

Files

T

History

grafana-delivery-bot[bot] 278681f173 [v11.2.x] RBAC: Fix an issue with server admins not being able to manage users in orgs that they don't belong to (#92274 )

* RBAC: Fix an issue with server admins not being able to manage users in orgs that they don't belong to (#92024)

* look at global perms if user is not a part of the target org

* use constant

* update tests

(cherry picked from commit 41ac5b5ae7)

* fix tests

---------

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>

2024-08-22 13:30:50 +03:00

..

[v11.2.x] Zanzana: Evaluate dashboard and folder permissions (#92253 )

2024-08-21 17:54:50 -04:00

Chore: Move identity and errutil to apimachinery module (#89116 )

2024-06-13 07:11:35 +03:00

Identity: Rename "namespace" to "type" in the requester interface (#90567 )

2024-07-25 12:52:14 +03:00

Identity: Rename "namespace" to "type" in the requester interface (#90567 )

2024-07-25 12:52:14 +03:00

[v11.2.x] Zanzana: Evaluate dashboard and folder permissions (#92253 )

2024-08-21 17:54:50 -04:00

RBAC: Refactor RBAC plugin interface code (#90679 )

2024-07-22 09:31:36 +01:00

ossaccesscontrol

RBAC: Allow omitting default permissions when a new resource is created (#90720 )

2024-07-24 19:31:26 +03:00

RBAC: Add permission registry (#91247 )

2024-08-02 09:32:06 +02:00

Actionsets: Add ability for plugins to add actions for core actionsets (i.e. folders:edit) (#88776 )

2024-07-19 16:16:23 +01:00

resourcepermissions

Folders: Allow folder editors and admins to create subfolders without any additional permissions (#91215 )

2024-08-01 18:20:38 +03:00

Auth: Improve /admin/authentication permission checks and include new SSO pages (#81183 )

2024-01-25 11:13:24 +01:00

accesscontrol_test.go

Add auth spans and remove deduplication code for scopes (#89804 )

2024-07-02 22:08:57 -08:00

accesscontrol.go

Identity: Rename "namespace" to "type" in the requester interface (#90567 )

2024-07-25 12:52:14 +03:00

authorize_in_org_test.go

[v11.2.x] RBAC: Fix an issue with server admins not being able to manage users in orgs that they don't belong to (#92274 )

2024-08-22 13:30:50 +03:00

cacheutils_test.go

Identity: extend k8s user.Info (#90937 )

2024-07-30 08:27:23 +03:00

cacheutils.go

Chore: Move identity and errutil to apimachinery module (#89116 )

2024-06-13 07:11:35 +03:00

checker_test.go

Chore: Fix goimports grouping (#62426 )

2023-01-30 09:34:18 +01:00

checker.go

RBAC: Permission check performance improvements for the new search (#60729 )

2023-01-27 12:12:30 +00:00

errors.go

Actionsets: Add ability for plugins to add actions for core actionsets (i.e. folders:edit) (#88776 )

2024-07-19 16:16:23 +01:00

evaluator_test.go

RBAC: handle partially resolved scopes (#85323 )

2024-03-28 10:08:07 +01:00

evaluator.go

Zanzana: Evaluate permissions alongside with RBAC engine (#90064 )

2024-07-05 11:31:23 +02:00

filter_bench_test.go

Chore: Remove Result field from datasources (#63048 )

2023-02-09 15:49:44 +01:00

filter_test.go

Chore: Update test database initialization (#81673 )

2024-02-09 09:35:39 -05:00

filter.go

Chore: Move identity and errutil to apimachinery module (#89116 )

2024-06-13 07:11:35 +03:00

metadata_bench_test.go

Chore: Fix error handling in postDashboard, remove UserDisplayDTO, fix live redis client initialization (#87206 )

2024-05-06 14:17:34 -04:00

metadata_test.go

RBAC: Add function to generate wildcards from prefix (#54275 )

2022-08-26 17:10:35 +02:00

metadata.go

RBAC: Add function to generate wildcards from prefix (#54275 )

2022-08-26 17:10:35 +02:00

middleware_test.go

Zanzana: Evaluate permissions alongside with RBAC engine (#90064 )

2024-07-05 11:31:23 +02:00

middleware.go

[v11.2.x] RBAC: Fix an issue with server admins not being able to manage users in orgs that they don't belong to (#92274 )

2024-08-22 13:30:50 +03:00

models_test.go

ExtSvcAuth: Assign roles locally (#78669 )

2023-11-29 12:12:30 +01:00

models.go

Access Control: Make it possible to exclude role grants (#91647 )

2024-08-08 14:11:17 +02:00

resolvers_test.go

Chore: Fix goimports grouping (#62426 )

2023-01-30 09:34:18 +01:00

resolvers.go

RBAC: Add and resolve action sets when searching user's permissions (#88694 )

2024-06-12 11:20:19 +03:00

roles_test.go

AccessControl: Remove package lists for roles and grants (#47141 )

2022-04-06 09:31:14 +02:00

roles.go

Add support ticket fixed roles to cloud role sync (#90864 )

2024-07-24 17:58:21 +02:00

scope_test.go

RBAC: Add function to generate wildcards from prefix (#54275 )

2022-08-26 17:10:35 +02:00

scope.go

Zanzana: Evaluate permissions alongside with RBAC engine (#90064 )

2024-07-05 11:31:23 +02:00