authelia

Commit Graph

Author	SHA1	Message	Date
James Elliott	b4e570358e	fix: include major in go.mod module directive (#2278 ) * build: include major in go.mod module directive * fix: xflags * revert: cobra changes * fix: mock doc	2021-08-11 11:16:46 +10:00
James Elliott	1e30b00f7e	fix(validator): misleading warning for empty acl domains (#1898 ) This fixes misleading errors for ACL rules with an empty list of domains. This also enables admins to have a default policy with zero ACL rules as long as the default policy is not deny or bypass. It also adds a rule number to all ACL rule related log messages which is the position in the YAML list plus 1. Lastly it adds comprehensive per rule HIT/MISS logging when Authelia trace logging is enabled. This trace logging includes the rule number.	2021-04-14 20:53:23 +10:00
James Elliott	4dce8f9496	perf(authorizer): preload access control lists (#1640 ) * adjust session refresh to always occur (for disabled users) * feat: adds filtering option for Request Method in ACL's * simplify flow of internal/authorization/authorizer.go's methods * implement query string checking * utilize authorizer.Object fully * make matchers uniform * add tests * add missing request methods * add frontend enhancements to handle request method * add request method to 1FA Handler Suite * add internal ACL representations (preparsing) * expand on access_control next * add docs * remove unnecessary slice for network names and instead just use a plain string * add warning for ineffectual bypass policy (due to subjects) * add user/group wildcard support * fix(authorization): allow subject rules to match anonymous users * feat(api): add new params * docs(api): wording adjustments * test: add request method into testing and proxy docs * test: add several checks and refactor schema validation for ACL * test: add integration test for methods acl * refactor: apply suggestions from code review * docs(authorization): update description	2021-03-05 15:18:31 +11:00

Author

SHA1

Message

Date

James Elliott

b4e570358e

fix: include major in go.mod module directive (#2278 )

* build: include major in go.mod module directive

* fix: xflags

* revert: cobra changes

* fix: mock doc

2021-08-11 11:16:46 +10:00

James Elliott

1e30b00f7e

fix(validator): misleading warning for empty acl domains (#1898 )

This fixes misleading errors for ACL rules with an empty list of domains. This also enables admins to have a default policy with zero ACL rules as long as the default policy is not deny or bypass. It also adds a rule number to all ACL rule related log messages which is the position in the YAML list plus 1. Lastly it adds comprehensive per rule HIT/MISS logging when Authelia trace logging is enabled. This trace logging includes the rule number.

2021-04-14 20:53:23 +10:00

James Elliott

4dce8f9496

perf(authorizer): preload access control lists (#1640 )

* adjust session refresh to always occur (for disabled users)

* feat: adds filtering option for Request Method in ACL's

* simplify flow of internal/authorization/authorizer.go's methods

* implement query string checking

* utilize authorizer.Object fully

* make matchers uniform

* add tests

* add missing request methods

* add frontend enhancements to handle request method

* add request method to 1FA Handler Suite

* add internal ACL representations (preparsing)

* expand on access_control next

* add docs

* remove unnecessary slice for network names and instead just use a plain string

* add warning for ineffectual bypass policy (due to subjects)

* add user/group wildcard support

* fix(authorization): allow subject rules to match anonymous users

* feat(api): add new params

* docs(api): wording adjustments

* test: add request method into testing and proxy docs

* test: add several checks and refactor schema validation for ACL

* test: add integration test for methods acl

* refactor: apply suggestions from code review

* docs(authorization): update description

2021-03-05 15:18:31 +11:00

3 Commits (b770939983c17fc8b878de6f875c5cceb4e8b97d)