uc-cdis / arborist Goto Github PK
View Code? Open in Web Editor NEWGen3 policy engine
License: Apache License 2.0
Gen3 policy engine
License: Apache License 2.0
token:
{u'aud': [u'openid',
u'user',
u'credentials',
u'data',
u'admin',
u'google_credentials',
u'google_service_account'],
u'azp': u'',
u'context': {u'user': {u'google': {u'proxy_group': None},
u'is_admin': True,
u'name': u'[email protected]',
u'policies': [u'programs.QA.projects.test-read',
u'programs.QA.projects.test-create',
u'programs.QA.projects.test-upload',
u'programs.QA.projects.test-update',
u'programs.QA.projects.test-delete'],
u'projects': {u'QA': [u'read', u'create', u'upload', u'update', u'delete'],
u'test': [u'read', u'create', u'upload', u'update', u'delete']}}},
u'exp': 1536638433,
u'iat': 1536637233,
u'iss': u'https://qa-brain.planx-pla.net/user',
u'jti': u'445e363b-d5b5-46c4-8b50-8e1c6dbe5ff9',
u'pur': u'access',
u'sub': u'17'}
response to /auth/resources:
{"resources":["/programs/QA/projects/test","/programs/QA/projects/test","/programs/QA/projects/test","/programs/QA/projects/test","/programs/QA/projects/test"]}```
restful api that supports:
unittests
Dockerize it
as an auditor, I want to see all the admin actions that happened yesterday
Scope include;
Existing Pull request: uc-cdis/cloud-automation#400
Scope include;
Scope include;
I think permissions and roles should have many-to-many relationships, not one-to-one like now.
Likely just a make([]string, len(...))
somewhere using append
instead of index assignment.
Decide on and implement some method to persist the model stored in memory for the authorization engine.
Scope include;
in server/router_auth.go
, change the request fields in handleListResourceAuth
to not use the normal json.Unmarshal
and return an error if the fields are wrong
Line 512 in 0bf6496
If the user is logged in, need another UNION
on grp_policy.grp_id = 2
(group 2 is logged-in):
UNION
SELECT grp_policy.policy_id
FROM grp
JOIN grp_policy ON grp_policy.grp_id = 2;
The method POST /auth/resources
is used by Guppy.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.