Use access policy engine to permit PUT request #770

Merged

fyrchik merged 4 commits from aarifullin/frostfs-node:feature/ape_rules_impl into master 2023-11-08 13:34:05 +00:00

Conversation 2 Commits 4 Files changed 25 +1180 -10

4 commits

Author	SHA1	Message	Date
Airat Arifullin	624f9deb87	[#770] cli: Add methods to work with APE rules via control svc ... * Add methods to frostfs-cli * Implement rpc in control service Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2023-11-08 15:37:06 +03:00
Airat Arifullin	d04a00800b	[#770] object: Introduce ape chain checker for object svc ... * Introduce Request type converted from RequestInfo type to implement policy-engine's Request interface * Implement basic ape checker to check if a request is permitted to be performed * Make put handlers use APE checker instead EACL Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2023-11-07 22:28:33 +03:00
Airat Arifullin	70b2d00f9c	[#770] node: Introduce ape chain source ... * Provide methods to access rule chains with access policy engine (APE) chain source * Initialize apeChainSource within object service initialization * Share apeChainSource with control service * Implement dummy apeChainSource instance based on in-memory implementation Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2023-11-07 22:28:33 +03:00
Airat Arifullin	2ca021ac43	[#770] control: Generate gRPC methods to manipulate APE chains ... * Define new types and gRPC methods to manipulate APE chains in control service. * Stub gRPC handlers for the generated methods. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>	2023-11-07 22:28:33 +03:00