apache/cloudstack
1
0
Fork 0
mirror of https://github.com/apache/cloudstack.git synced 2025-12-15 18:12:35 +01:00
Code Issues Packages Projects Releases Wiki Activity
22,284 Commits 311 Branches 325 Tags
Commit Graph

33 Commits

Author SHA1 Message Date
Prachi Damle
022b9b8f80 Add access for domain wide createAffinityGroup 2014-02-03 18:14:56 -08:00
Prachi Damle
a6d07c873c Changes to QuerySelector to list the parent group resources with recursive = true access 2014-02-03 17:49:33 -08:00
Prachi Damle
939b15169c changes to support the domain wide resources for Network 2014-02-03 17:34:03 -08:00
Prachi Damle
d12422bf68 Add policies to domain group for CreateNetwork usecase for a domain wide shared network 2014-01-29 23:56:25 -08:00
Min Chen
81323dce5d Add support to grant acl permission to access an individual resource. 2014-01-29 17:59:24 -08:00
Min Chen
0063b60701 Remove ACL permission for a particular entity when it is deleted. The 
hook is currently only done for deleteTemplateCmd.
 2014-01-28 18:17:01 -08:00
Min Chen
72812cdf22 Grant public template permission to domain admin and normal user policy. 2014-01-28 17:41:27 -08:00
Min Chen
748dc1541c Support attaching policy to account. 2014-01-28 10:00:17 -08:00
Prachi Damle
91317dc497 Changes for createDomain - create new group AND createAccount - add account to domain group 2014-01-28 09:48:19 -08:00
Min Chen
344d3a37cc Add missing AclApiServiceImpl bean into spring xml. 2014-01-23 18:32:48 -08:00
Prachi Damle
af14699c4c fixing the build _ AffinityGroup command changes 2014-01-23 18:17:43 -08:00
Prachi Damle
96a64b933e - Adding OperateEntry during loading of commands 
- Replace ListEntry By OperateEntry
- ApiDispatcher should pass on the API name
 2014-01-23 17:50:59 -08:00
Prachi Damle
39c0a302b4 Fix the isRootAdmin and isDomainAdmin to return true or false even if the permission is denied by IAM 2014-01-22 13:59:59 -08:00
Min Chen
82bdde70a2 Fix NPE during MS startup. 2014-01-17 18:14:04 -08:00
Prachi Damle
b444136166 Adding the correct policyIds for the command permission loading 2014-01-17 16:55:32 -08:00
Min Chen
929fbabaa2 Merge branch 'master' into rbac. 2014-01-17 14:37:08 -08:00
Min Chen
b725035b22 Fix NPE about accessType in RoleBasedApiAccessChecker.start. 2014-01-14 18:20:32 -08:00
Min Chen
6583cb3800 Add listAclGroupsByAccount to QuerySelector adapters and remove 
AclProxyService interface.
 2014-01-14 16:19:25 -08:00
Prachi Damle
fac9f2da0f Adding messageBus events for adding and removal of an account. 2014-01-13 22:12:39 -08:00
Prachi Damle
6cd121fe7b RootAdmin and DomainAdmin access check via IAM 2014-01-10 17:06:10 -08:00
Min Chen
43f0f901dd Remove VO and DAO from cloud-engine-schema. 2014-01-10 15:57:39 -08:00
Min Chen
e42a262f6c Remove old APIs and old security checker plugins. Also use QuerySelector 
adapater in ACL search routine.
 2014-01-10 14:54:31 -08:00
Min Chen
7114d49c14 Some cleanup on AclApiService and remove array copy in some 
implementations of IAMServiceImpl
 2014-01-06 13:27:29 -08:00
Min Chen
e02e19a6f1 Make AclApiServiceTest pass without changing ApiServerService signature. 2014-01-06 10:43:01 -08:00
Prachi Damle
28b81e423e Changing the access checkers to work with IAM server 2014-01-05 21:41:39 -08:00
Min Chen
d374cd5a2c Add Unit Testcases for AclApiService. 2014-01-03 17:18:44 -08:00
Prachi Damle
e5b4a1d869 Moved the loading of commands.properties to the IAM plugin 2014-01-02 18:39:18 -08:00
Min Chen
dd8dcd9492 Implementing listAclGroup and listAclPolicy API based on iam plugin 
model without using db views. AclGroupJoinVO and AclPolicyJoinVO can be
removed later.
 2014-01-02 16:18:29 -08:00
Min Chen
d9be7bb968 Move ACL response class into iam plugin, also fix AclAPiService to 
invoke IAMService method to hide internal IAM schema.
 2013-12-27 17:17:54 -08:00
Min Chen
01e6f47d41 Move ACL APIs from server to plugin. Server can have its own APIs for 
standalone use (compared to integration with CloudStack), which can be
done at later phase.
 2013-12-27 15:09:31 -08:00
Min Chen
c950651fe2 Use IAMService to implement QuerySelector adapter. 2013-12-26 19:53:49 -08:00
Min Chen
e280095536 Fix build issue for cloud-plugin-iam. 2013-12-26 17:56:10 -08:00
Prachi Damle
2543fbe846 Adding new IAM service under services. There are two modules to this component: 
part a) plugin - This contains all adapter implementations and components necessary to interact with CloudStack.

part b) server - This contains IAM interfaces that are not aware of any CloudStack entities, they are pure IAM interface that can be implemented in varied ways.
The default implementation provided just works on DB and generic Dao layer.
But these interfaces can be implemented using connectors interacting with LDAP or AD.
 2013-12-26 15:17:13 -08:00