feat+refactor: filtering of assigned resource groups in entitlements, filtering of groups in access control filter, refactor PerunRPC Adapter (!396) · Merge requests · Perun / Perun ProxyIdP / v1 / OpenID-Connect-Java-Spring-Server · GitLab

Snippets Groups Projects

Merged Ghost User requested to merge dBucik/resource_tags_entitlements_groupcheck into main 1 year ago

Entitlements claim sources now support specifying a resource attribute, which, if set and non-null on the Resource object, groups from this resource will not be considered for producing group-based entitlements. Use option custom.claim.[claimName].source.groupEntitlementDisabledAttribute to configure the attribute name and add the attribute name mapping (to LDAP, RPC names) into the resource attribute mappings file.
AccessControl filter (PerunAuthorizationFilter) now supports specifying a resource attribute, which, if set and non-null on the Resource object, groups from this resource will not be considered for controlling access. Use option filter.[name].accessControlDisabledAttr to configure the attribute name and add the attribute name mapping (to LDAP, RPC names) into the resource attribute mappings file.
Refactor the PerunRPC Adapter and extract strings as constants (methods, parameters, etc.)

Activity

Ghost User enabled an automatic merge when the pipeline for f2b295e8 succeeds 1 year ago

enabled an automatic merge when the pipeline for f2b295e8 succeeds
Perun-GitLab Service Account assigned to @445348 1 year ago

assigned to @445348
A deleted user merged 1 year ago

merged
Ghost User mentioned in commit 79d3865b 1 year ago

mentioned in commit 79d3865b
Perun-GitLab Service Account @9045464 · 1 year ago

Owner

This MR is included in version 18.5.0

The release is available on GitLab release.

Your semantic-release bot
Perun-GitLab Service Account added released label 1 year ago

added released label

Please register or sign in to reply