apache/cloudstack
1
0
Fork 0
mirror of https://github.com/apache/cloudstack.git synced 2025-12-16 02:22:52 +01:00
Code Issues Packages Projects Releases Wiki Activity
21,337 Commits 312 Branches 325 Tags
Commit Graph

21337 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Prachi Damle
6cd121fe7b RootAdmin and DomainAdmin access check via IAM 2014-01-10 17:06:10 -08:00
Prachi Damle
4bb31c2044 - Adding path to default group policy permission 2014-01-10 16:38:06 -08:00
Min Chen
43f0f901dd Remove VO and DAO from cloud-engine-schema. 2014-01-10 15:57:39 -08:00
Prachi Damle
723f6c48eb - Adding 'path' to IAM group and policy 
- Adding the default 'SystemCapability' action for root admin policy
- Adding the default 'DomainCapability' action for domain admin policy
- Adding the default 'DomainResourceCapability' action for domain admin policy
 2014-01-10 15:53:35 -08:00
Min Chen
48ed96d36b Fix pom.xml error due to removal of old plugin. 2014-01-10 15:08:05 -08:00
Min Chen
e42a262f6c Remove old APIs and old security checker plugins. Also use QuerySelector 
adapater in ACL search routine.
 2014-01-10 14:54:31 -08:00
Prachi Damle
e6238baa3a - Adding @ACL and EntityType values to SecurityGroup, Snapshot 
- Correctinf the VM and Volume APIs
 2014-01-06 16:58:42 -08:00
Prachi Damle
2ee1ad16e9 Fixing unit tests for cloud-iam 2014-01-06 14:18:05 -08:00
Min Chen
7114d49c14 Some cleanup on AclApiService and remove array copy in some 
implementations of IAMServiceImpl
 2014-01-06 13:27:29 -08:00
Min Chen
e02e19a6f1 Make AclApiServiceTest pass without changing ApiServerService signature. 2014-01-06 10:43:01 -08:00
Prachi Damle
28b81e423e Changing the access checkers to work with IAM server 2014-01-05 21:41:39 -08:00
Min Chen
d374cd5a2c Add Unit Testcases for AclApiService. 2014-01-03 17:18:44 -08:00
Prachi Damle
04a0d12a68 Adding @ACL annotation to Volume commands 2014-01-02 18:39:20 -08:00
Prachi Damle
e5b4a1d869 Moved the loading of commands.properties to the IAM plugin 2014-01-02 18:39:18 -08:00
Min Chen
dd8dcd9492 Implementing listAclGroup and listAclPolicy API based on iam plugin 
model without using db views. AclGroupJoinVO and AclPolicyJoinVO can be
removed later.
 2014-01-02 16:18:29 -08:00
Min Chen
d9be7bb968 Move ACL response class into iam plugin, also fix AclAPiService to 
invoke IAMService method to hide internal IAM schema.
 2013-12-27 17:17:54 -08:00
Prachi Damle
08122c9adb - Added basic unit test for IAMService 
- Removed Event geenration annotations from IAM server
 2013-12-27 16:06:06 -08:00
Min Chen
01e6f47d41 Move ACL APIs from server to plugin. Server can have its own APIs for 
standalone use (compared to integration with CloudStack), which can be
done at later phase.
 2013-12-27 15:09:31 -08:00
Min Chen
c950651fe2 Use IAMService to implement QuerySelector adapter. 2013-12-26 19:53:49 -08:00
Min Chen
e280095536 Fix build issue for cloud-plugin-iam. 2013-12-26 17:56:10 -08:00
Prachi Damle
2543fbe846 Adding new IAM service under services. There are two modules to this component: 
part a) plugin - This contains all adapter implementations and components necessary to interact with CloudStack.

part b) server - This contains IAM interfaces that are not aware of any CloudStack entities, they are pure IAM interface that can be implemented in varied ways.
The default implementation provided just works on DB and generic Dao layer.
But these interfaces can be implemented using connectors interacting with LDAP or AD.
 2013-12-26 15:17:13 -08:00
Prachi Damle
b7c3411be9 Fixing the issues in loading the beans 2013-12-26 15:17:10 -08:00
Prachi Damle
337e33a014 Adding EntityType for listAccounts 2013-12-26 15:17:08 -08:00
Min Chen
630b7fb4a1 Fix listTemplates issues with new ACL model. 2013-12-20 17:57:44 -08:00
Prachi Damle
4bd2df42d0 Adding @ACL and EntityType to VM commands. 2013-12-18 16:34:37 -08:00
Prachi Damle
ce774e184e Fixing the management server startup 2013-12-18 14:14:55 -08:00
Min Chen
729a79e85c Refactor db view based list apis to use new IAM acl search criteria. 2013-12-16 14:31:32 -08:00
Min Chen
841dcb0e8e Handle special scopeId = -1 case for current domain or current account 
in AclPolicyPermission table.
 2013-12-16 10:08:28 -08:00
Prachi Damle
3f092d14cc Adding the AclEntityType attribute to APICommand annotation 2013-12-13 16:04:25 -08:00
Min Chen
d2922b9254 Separate ListAccounts cmd to use two different views. 2013-12-12 17:52:45 -08:00
Min Chen
312ff76f69 Separate listZones cmd to use two different views, also renamed previous 
listZonesByCmd to listZonesCmd.
 2013-12-12 17:40:30 -08:00
Min Chen
a6d03cd826 Separate IpAddress related cmds to use two different views. 2013-12-12 17:20:34 -08:00
Min Chen
add277a4aa Separate network and VPC related cmd to use two different views. 2013-12-12 16:53:59 -08:00
Prachi Damle
7c6f1c14c2 ControlledEntity Interface change to return EntityType and added values to the AclEntityType enum and 2013-12-12 16:31:00 -08:00
Prachi Damle
d2c74bcf14 Changes to RoleBasedEntityAccessChecker to replace Role by Policy 2013-12-12 16:30:56 -08:00
Prachi Damle
1a985227b5 Changes to SecurityChecker 2013-12-12 16:30:53 -08:00
Min Chen
67b97539ac Separate ListTemplatePermissions and ListIsoPermissions commands to use 
two different views.
 2013-12-11 17:41:10 -08:00
Min Chen
8f21eca922 Separate Template/ISO related APIs to use two different views. 2013-12-10 12:23:39 -08:00
Min Chen
e66b58b65f Separate AttachIso and DetachIso to use different response views. 2013-12-10 10:52:19 -08:00
Min Chen
d252d95c26 Separate all vm related user APIs to have two different views. 2013-12-09 17:30:57 -08:00
Min Chen
6730fa2b47 Fill in implementation of AclService.getGrantedDomains, 
getGrantedAccounts and getGrantedResources.
 2013-12-09 14:08:54 -08:00
Min Chen
288a81180c Populate default group, policy, account mapping. 2013-12-09 11:29:39 -08:00
Min Chen
a416f6c3c3 Fix API build error based on new DB schema, now only 
RoleBasedEntityAccessChecker needs to be fixed.
 2013-12-06 15:09:00 -08:00
Min Chen
c3f480e9b9 Updated db schema based on latest FS. Still need to fix old code in 
AclServiceImpl, RoleBasedEntityAccessChecker and QueryManagerImpl to
make all build.
 2013-12-04 18:44:30 -08:00
Prachi Damle
cf69731a52 Suring startup load the API permissions from commands.properties and @APICommand annotations 2013-11-25 17:01:56 -08:00
Prachi Damle
f231cec5b7 Loading api permissions from commands.properties during startup 2013-11-25 10:59:12 -08:00
Min Chen
015d06e7fc Separate all volume related APIs to two Cmd classes based on two 
response views.
 2013-11-22 18:48:20 -08:00
Min Chen
f3ef86d296 Add QueryChecker adapter implementation skeleton. 2013-11-22 16:37:14 -08:00
Min Chen
11c0c263f2 QueryChecker interface and ACL search criteria to be used for query api 
for entities with db views created.
 2013-11-22 16:36:38 -08:00
Prachi Damle
9d0d96225d more of account_type refactoring 2013-11-21 16:03:19 -08:00