TrueCloudLab/frostfs-node
19
1
Fork 27
Code Issues 91 Pull requests 6 Projects Releases 1 Activity Actions
frostfs-node/pkg/services/object/acl
History
Alex Vanin ca552f53c6 [#115] Check session token validity 
Malicious user can stole public session key and use
it by sending request from it's own scope. To prevent
this each session token is signed and signature private
key must be corresponded with owner id in token. Therefore
malicious node cannot impersonate request without private
key to sign token.

Signed-off-by: Alex Vanin <alexey@nspcc.ru>
2020-10-22 11:55:28 +03:00
..
eacl [#88] object/eacl: Use String() methods to calculate ID values 2020-10-21 18:53:04 +03:00
acl.go [#73] Use request owner public key in eACL check 2020-10-05 18:02:37 +03:00
basic_helper.go [#32] Add basic ACL helper 2020-10-02 11:25:36 +03:00
basic_helper_test.go [#32] Add tests for basic ACL helper 2020-10-02 11:25:36 +03:00
classifier.go [#115] Check session token validity 2020-10-22 11:55:28 +03:00
opts.go [#69] object/acl: Add eACL components to service 2020-10-05 14:02:14 +03:00