Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ACL Role: add RPC, HTTP API, and API SDK functionality. #14057

Merged
merged 3 commits into from
Aug 11, 2022
Merged

ACL Role: add RPC, HTTP API, and API SDK functionality. #14057

merged 3 commits into from
Aug 11, 2022

Conversation

jrasell
Copy link
Member

@jrasell jrasell commented Aug 9, 2022

New ACL Role RPC endpoints have been created to allow the creation,
update, read, and deletion of ACL roles. All endpoints require a
management token; in the future readers will also be allowed to
view roles associated to their ACL token.

The create endpoint in particular is responsible for deduplicating
ACL policy links and ensuring named policies are found within
state. This is done within the RPC handler so we perform a single
loop through the links for slight efficiency.

These new HTTP endpoints are exposed under the /v1/acl/roles
and /v1/acl/role endpoints.

related: #13120
targets: feature branch
notes: best viewed by commit which each represents a different
Nomad system.

@jrasell jrasell added this to the 1.4.0 milestone Aug 9, 2022
@jrasell jrasell requested review from schmichael and shoenig August 9, 2022 08:26
@jrasell jrasell self-assigned this Aug 9, 2022
@jrasell jrasell force-pushed the f-gh-13120-acl-role-rpc-endpoints branch from 1baab62 to e83b637 Compare August 9, 2022 11:24
shoenig
shoenig approved these changes Aug 9, 2022
View reviewed changes
Copy link
Member

@shoenig shoenig left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! just a couple suggestions

api/acl.go Outdated Show resolved Hide resolved
command/agent/acl_endpoint.go Show resolved Hide resolved
command/agent/acl_endpoint.go Outdated Show resolved Hide resolved
jrasell added 3 commits August 11, 2022 08:43
@jrasell
rpc: add ACL Role RPC endpoint for CRUD actions.
4efb82a 
New ACL Role RPC endpoints have been created to allow the creation,
update, read, and deletion of ACL roles. All endpoints require a
management token; in the future readers will also be allowed to
view roles associated to their ACL token.

The create endpoint in particular is responsible for deduplicating
ACL policy links and ensuring named policies are found within
state. This is done within the RPC handler so we perform a single
loop through the links for slight efficiency.
@jrasell
http: add ACL Role HTTP endpoints for CRUD actions.
fafc100 
These new endpoints are exposed under the /v1/acl/roles and
/v1/acl/role endpoints.
@jrasell
api: add ACL Role API implementation for CRUD actions.
3826b1f
@jrasell jrasell force-pushed the f-gh-13120-acl-role-rpc-endpoints branch from e83b637 to 3826b1f Compare August 11, 2022 07:44
@jrasell jrasell merged commit b8fe43a into f-gh-13120-sso-umbrella Aug 11, 2022
@jrasell jrasell deleted the f-gh-13120-acl-role-rpc-endpoints branch August 11, 2022 08:32
@github-actions
Copy link

I'm going to lock this pull request because it has been closed for 120 days ⏳. This helps our maintainers find and focus on the active contributions.
If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Dec 10, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@shoenig shoenig shoenig approved these changes

@schmichael schmichael Awaiting requested review from schmichael

Assignees

@jrasell jrasell

Labels
None yet
Projects
None yet
Milestone
1.4.0
Development

Successfully merging this pull request may close these issues.
2 participants
@jrasell @shoenig