TrueCloudLab/frostfs-node

Author	SHA1	Message	Date
Evgenii Stratonikov	91bed3b0ba	[#1219 ] Remove Container.SetEACL method Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2024-07-02 13:05:40 +00:00
Airat Arifullin	621dbf58ab	[#1190 ] container: GroupIDs must also be target of APE checks * Also add new test case for ape middleware in container service. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-06-25 08:49:20 +00:00
Dmitrii Stepanov	ecd1ed7a5e	[#1184 ] node: Add audit middleware for grpc services Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2024-06-19 16:05:53 +03:00
Airat Arifullin	43625e7536	[#1142 ] container: Fill APE-request property with source IP Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-05-27 10:17:17 +00:00
Airat Arifullin	952d13cd2b	[#1124 ] cli: Improve APE rule parsing All checks were successful Vulncheck / Vulncheck (pull_request) Successful in 1m25s Details DCO action / DCO (pull_request) Successful in 1m59s Details Build / Build Components (1.21) (pull_request) Successful in 2m27s Details Build / Build Components (1.22) (pull_request) Successful in 4m25s Details Pre-commit hooks / Pre-commit (pull_request) Successful in 4m57s Details Tests and linters / Staticcheck (pull_request) Successful in 5m38s Details Tests and linters / gopls check (pull_request) Successful in 5m57s Details Tests and linters / Lint (pull_request) Successful in 6m26s Details Tests and linters / Tests (1.22) (pull_request) Successful in 9m5s Details Tests and linters / Tests (1.21) (pull_request) Successful in 9m11s Details Tests and linters / Tests with -race (pull_request) Successful in 9m4s Details * Make APE rule parser to read condition's kind in unambiguous using lexemes `ResourceCondition`, `RequestCondition` instead confusing `Object.Request`, `Object.Resource`. * Fix unit-tests. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-05-14 12:23:26 +03:00
aarifullin	b60a51b862	[#1117 ] ape: Introduce `FormFrostfsIDRequestProperties` method * `FormFrostfsIDRequestProperties` gets user claim tags and group id and sets them as ape request properties. * Make tree, container and object service use the method. * Fix unit-tests. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-05-07 10:01:21 +00:00
aarifullin	6c76c9b457	[#1117 ] core: Introduce SubjectProvider interface for FrostfsID * Make tree, object and container services use SubjectProvider interface. * Fix unit-tests. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-05-07 10:01:21 +00:00
Airat Arifullin	6772976657	[#1096 ] container: Make ape middleware fill request with user claim tags Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-04-16 15:10:20 +03:00
Evgenii Stratonikov	91e79c98ba	[#1089 ] ape: Provide request actor as an additional target Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2024-04-16 11:03:50 +00:00
aarifullin	f4dcb418f2	[#1090 ] ape: Move ape request and resource implementations to common package Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-04-15 07:45:45 +00:00
Dmitrii Stepanov	d433b49265	[#973 ] node: Resolve perfsprint linter All checks were successful DCO action / DCO (pull_request) Successful in 2m40s Details Vulncheck / Vulncheck (pull_request) Successful in 3m41s Details Build / Build Components (1.20) (pull_request) Successful in 4m27s Details Build / Build Components (1.21) (pull_request) Successful in 5m6s Details Tests and linters / Staticcheck (pull_request) Successful in 6m16s Details Tests and linters / gopls check (pull_request) Successful in 6m23s Details Tests and linters / Lint (pull_request) Successful in 6m48s Details Tests and linters / Tests (1.20) (pull_request) Successful in 9m4s Details Tests and linters / Tests with -race (pull_request) Successful in 9m9s Details Tests and linters / Tests (1.21) (pull_request) Successful in 9m23s Details `fmt.Errorf can be replaced with errors.New` and `fmt.Sprintf can be replaced with string addition` Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2024-03-11 17:55:50 +03:00
Airat Arifullin	b1d171c261	[#986 ] container: Interpret APE NoRuleFound as request deny * If APE check returns NoRuleFound, then it is taken for request deny. * Add more unit-test for ape container middleware. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-02-28 19:05:57 +00:00
Evgenii Stratonikov	a6c9a337cd	[#965 ] morph: Get rid of container.List invocations ContainersOf() is better in almost every aspect, besides creating a session when the containers number is between 1024 and 2048 (prefetch script does limited unwrapping). Making List() private helps to ensure it is no longer used and can be safely removed in future. Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2024-02-07 08:56:27 +00:00
Evgenii Stratonikov	602ee11123	[#934 ] containersvc: Marhal public key in short format for APE Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2024-02-02 17:51:38 +00:00
Airat Arifullin	5be2af881a	[#934 ] container: Make container APE middleware read namespaces * Those methods that can access already existing containers and thus can get container properties should read namespace from Zone property. If Zone is not set, take a namespace for root. * Otherwise, define namespaces by owner ID via frostfs-id contract. * Improve unit-tests, consider more cases. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2024-02-01 17:38:24 +00:00
Dmitrii Stepanov	5c0a736a25	[#899 ] containerSvc: Fix invalid session token type Some checks failed DCO action / DCO (pull_request) Successful in 1m23s Details Vulncheck / Vulncheck (pull_request) Successful in 3m29s Details Tests and linters / Tests (1.21) (pull_request) Failing after 3m58s Details Build / Build Components (1.21) (pull_request) Successful in 3m46s Details Build / Build Components (1.20) (pull_request) Successful in 3m52s Details Tests and linters / Lint (pull_request) Successful in 4m48s Details Tests and linters / Staticcheck (pull_request) Successful in 5m5s Details Tests and linters / Tests (1.20) (pull_request) Successful in 7m4s Details Tests and linters / Tests with -race (pull_request) Successful in 8m36s Details Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2024-01-10 18:37:54 +03:00
Dmitrii Stepanov	764f70634d	[#881 ] containerSvc: Add APE validation All checks were successful Vulncheck / Vulncheck (pull_request) Successful in 2m40s Details DCO action / DCO (pull_request) Successful in 2m27s Details Build / Build Components (1.21) (pull_request) Successful in 3m22s Details Tests and linters / Lint (pull_request) Successful in 4m52s Details Tests and linters / Staticcheck (pull_request) Successful in 4m46s Details Build / Build Components (1.20) (pull_request) Successful in 4m54s Details Tests and linters / Tests (1.20) (pull_request) Successful in 11m59s Details Tests and linters / Tests (1.21) (pull_request) Successful in 12m38s Details Tests and linters / Tests with -race (pull_request) Successful in 13m10s Details Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2023-12-27 11:05:34 +03:00
Dmitrii Stepanov	79088baa06	[#772 ] node: Apply gofumpt Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2023-10-31 17:03:03 +03:00
Evgenii Stratonikov	4caa934eea	[#729 ] containersvc: Remove load announcement IR code was removed in `8879c6ea`. Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-10-09 19:01:13 +00:00
Evgenii Stratonikov	7b0fdf0202	[#533 ] services: Assume API supports status codes Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-07-31 15:35:15 +00:00
Evgenii Stratonikov	c2617baf63	[#6 ] services/util: Remove remaining stream wrappers Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-07-21 18:39:09 +03:00
Evgenii Stratonikov	372160d048	[#6 ] services/util: Remove `SignService.HandleUnaryRequest` There is no need in a wrapper with many from-`interface{}` conversions. Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-07-21 18:36:08 +03:00
Evgenii Stratonikov	8a4e250dae	[#468 ] *: replace outdated TODO crypto-related links All checks were successful ci/woodpecker/push/pre-commit Pipeline was successful Details Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-06-28 12:13:20 +00:00
Evgenii Stratonikov	167a67f0b8	[#460 ] services/util: Remove `HandleUnaryRequest` There is no need in a wrapper with many from-`interface{}` conversions. Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-06-21 17:07:56 +03:00
Anton Nikiforov	50caa388b0	[#303 ] ir: Use pub key when validate container deletion All checks were successful ci/woodpecker/push/pre-commit Pipeline was successful Details Signed-off-by: Anton Nikiforov <an.nikiforov@yadro.com>	2023-06-20 08:02:48 +00:00
Evgenii Stratonikov	f07e2d4812	[#285 ] lint: Fix revive/unused-parameter Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-04-26 17:35:04 +03:00
Evgenii Stratonikov	0e31c12e63	[#240 ] logs: Move log messages to constants Drop duplicate entities. Format entities. Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com> Signed-off-by: Evgenii Stratonikov <e.stratonikov@yadro.com>	2023-04-14 05:06:09 +00:00
Dmitrii Stepanov	206458c841	[#217 ] containersvc: Resolve containedctx linter All checks were successful ci/woodpecker/push/pre-commit Pipeline was successful Details Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2023-04-05 14:38:00 +00:00
Dmitrii Stepanov	279261ace3	[#217 ] containersvc: Refactor route passing Resolve containedctx for routeCtx. Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2023-04-05 14:38:00 +00:00
Dmitrii Stepanov	56161d39b4	[#168 ] node: Refactor container services Resolve containedctx for remoteLoadAnnounceWriter struct Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2023-03-31 09:32:59 +03:00
Dmitrii Stepanov	cc8ff015b4	[#148 ] linter: Add containedctx linter Context has to be passed as an argument: https://pkg.go.dev/context Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com>	2023-03-21 09:52:39 +03:00
Alex Vanin	20de74a505	Rename package name Due to source code relocation from GitHub. Signed-off-by: Alex Vanin <a.vanin@yadro.com>	2023-03-07 16:38:26 +03:00
Alejandro Lopez	cb5468abb8	[#66 ] node: Replace interface{} with any Signed-off-by: Alejandro Lopez <a.lopez@yadro.com>	2023-02-21 16:47:07 +03:00
Stanislav Bogatyrev	cb016d53a6	[#1 ] Fix comments and error messages Signed-off-by: Stanislav Bogatyrev <s.bogatyrev@yadro.com>	2023-02-06 17:41:14 +03:00
Pavel Karpy	923f84722a	Move to frostfs-node Signed-off-by: Pavel Karpy <p.karpy@yadro.com>	2022-12-28 15:04:29 +03:00
Evgenii Stratonikov	d772e35aba	[#1910 ] .golangci.yml: Add `godot` linker Signed-off-by: Evgenii Stratonikov <evgeniy@morphbits.ru>	2022-10-18 15:08:26 +03:00
Pavel Karpy	f037022a7a	[#1770 ] logger: Refactor `Logger` component Make it store its internal `zap.Logger`'s level. Also, make all the components to accept internal `logger.Logger` instead of `zap.Logger`; it will simplify future refactor. Signed-off-by: Pavel Karpy <carpawell@nspcc.ru>	2022-10-12 18:11:05 +03:00
Evgenii Stratonikov	236414df49	[#1817 ] network: Allow to use network addresses from the iterator Signed-off-by: Evgenii Stratonikov <evgeniy@morphbits.ru>	2022-10-04 12:12:18 +03:00
Pavel Karpy	4f18893d9b	[#1628 ] node: Move common `EACLSource` interface to `core` pkg Signed-off-by: Pavel Karpy <carpawell@nspcc.ru>	2022-09-13 10:33:50 +03:00
Evgenii Stratonikov	10c855efef	[#1624 ] go.mod: Update dependencies Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru>	2022-07-25 16:56:02 +03:00
Pavel Karpy	c8506b247e	[#1582 ] *: Fix linter warnings Signed-off-by: Pavel Karpy <carpawell@nspcc.ru>	2022-07-06 11:56:01 +03:00
Leonard Lyubich	c165d1a9b5	[#1556 ] Upgrade NeoFS SDK Go with changed container API Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2022-07-05 11:26:06 +03:00
Pavel Karpy	e812d78672	[#1537 ] node: Remove "trust" from non-reputation logs Signed-off-by: Pavel Karpy <carpawell@nspcc.ru>	2022-06-23 10:06:36 +03:00
Leonard Lyubich	b67974a8d3	[#xxx] Upgrade NeoFS SDK Go with changed container sessions After recent changes in NeoFS SDK Go library session tokens aren't embedded into `container.Container` and `eacl.Table` structures. Group value, session token and signature in a structure for container and eACL. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2022-06-22 16:38:57 +03:00
Leonard Lyubich	21d2f8f861	[#1513 ] Upgrade NeoFS SDK Go with changed `netmap` package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2022-06-17 15:53:18 +03:00
Leonard Lyubich	ff576d125d	[#1454 ] container: Fix reading session token from request origin Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2022-06-01 17:41:45 +03:00
Leonard Lyubich	1c30414a6c	[#1454 ] Upgrade NeoFS SDK Go module with new IDs Core changes: * avoid package-colliding variable naming * avoid using pointers to IDs where unnecessary * avoid using `idSDK` import alias pattern * use `EncodeToString` for protocol string calculation and `String` for printing Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2022-06-01 17:41:45 +03:00
Evgenii Stratonikov	855cbf5a3a	[#1159 ] services/container: Remove `ContainerWithContext` struct Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru>	2022-05-30 15:40:22 +03:00
Leonard Lyubich	4c8ec20e32	[#1423 ] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2022-05-27 15:45:33 +03:00
Leonard Lyubich	bb25ecbd15	[#1400 ] owner: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2022-05-23 15:33:14 +03:00

1 2 3

109 commits