leviathonbeast/ionscale
1
0
Fork 0
mirror of https://github.com/jsiebens/ionscale.git synced 2026-03-31 15:07:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

feat: remove auth-filter in favor of a new IAM Policy setup

Browse Source
This commit is contained in:
Johan Siebens
2022-06-10 15:32:36 +02:00
parent eefa150738
commit a94e0ce9b8
22 changed files with 1005 additions and 812 deletions
Download Patch File Download Diff File Expand all files Collapse all files
proto/ionscale/v1/auth_filter.proto
-37
View File
@@ -1,37 +0,0 @@
syntax = "proto3";
package ionscale.v1;
option go_package = "github.com/jsiebens/ionscale/pkg/gen/ionscale/v1;ionscalev1";
import "ionscale/v1/ref.proto";
message AuthFilter {
uint64 id = 1;
Ref auth_method = 2;
Ref tailnet = 3;
string expr = 4;
}
message CreateAuthFilterRequest {
uint64 auth_method_id = 1;
uint64 tailnet_id = 2;
string expr = 3;
}
message CreateAuthFilterResponse {
AuthFilter auth_filter = 1;
}
message ListAuthFiltersRequest {
optional uint64 auth_method_id = 1;
}
message ListAuthFiltersResponse {
repeated AuthFilter auth_filters = 1;
}
message DeleteAuthFilterRequest {
uint64 auth_filter_id = 1;
}
message DeleteAuthFilterResponse {}
proto/ionscale/v1/iam.proto
+26
View File
@@ -0,0 +1,26 @@
syntax = "proto3";
package ionscale.v1;
option go_package = "github.com/jsiebens/ionscale/pkg/gen/ionscale/v1;ionscalev1";
message GetIAMPolicyRequest {
uint64 tailnet_id = 1;
}
message GetIAMPolicyResponse {
IAMPolicy policy = 1;
}
message SetIAMPolicyRequest {
uint64 tailnet_id = 1;
IAMPolicy policy = 2;
}
message SetIAMPolicyResponse {
}
message IAMPolicy {
repeated string subs = 1;
repeated string emails = 2;
repeated string filters = 3;
}
proto/ionscale/v1/ionscale.proto
+4 -5
View File
@@ -10,11 +10,11 @@ import "ionscale/v1/version.proto";
import "ionscale/v1/auth.proto";
import "ionscale/v1/tailnets.proto";
import "ionscale/v1/auth_methods.proto";
import "ionscale/v1/auth_filter.proto";
import "ionscale/v1/auth_keys.proto";
import "ionscale/v1/machines.proto";
import "ionscale/v1/routes.proto";
import "ionscale/v1/dns.proto";
import "ionscale/v1/iam.proto";
import "ionscale/v1/acl.proto";
import "ionscale/v1/derp.proto";
@@ -29,10 +29,6 @@ service IonscaleService {
rpc CreateAuthMethod (CreateAuthMethodRequest) returns (CreateAuthMethodResponse) {}
rpc ListAuthMethods (ListAuthMethodsRequest) returns (ListAuthMethodsResponse) {}
rpc CreateAuthFilter (CreateAuthFilterRequest) returns (CreateAuthFilterResponse) {}
rpc DeleteAuthFilter (DeleteAuthFilterRequest) returns (DeleteAuthFilterResponse) {}
rpc ListAuthFilters (ListAuthFiltersRequest) returns (ListAuthFiltersResponse) {}
rpc CreateTailnet (CreateTailnetRequest) returns (CreateTailnetResponse) {}
rpc GetTailnet (GetTailnetRequest) returns (GetTailnetResponse) {}
rpc ListTailnets (ListTailnetRequest) returns (ListTailnetResponse) {}
@@ -41,6 +37,9 @@ service IonscaleService {
rpc GetDNSConfig (GetDNSConfigRequest) returns (GetDNSConfigResponse) {}
rpc SetDNSConfig (SetDNSConfigRequest) returns (SetDNSConfigResponse) {}
rpc GetIAMPolicy (GetIAMPolicyRequest) returns (GetIAMPolicyResponse) {}
rpc SetIAMPolicy (SetIAMPolicyRequest) returns (SetIAMPolicyResponse) {}
rpc GetACLPolicy (GetACLPolicyRequest) returns (GetACLPolicyResponse) {}
rpc SetACLPolicy (SetACLPolicyRequest) returns (SetACLPolicyResponse) {}