forked from TrueCloudLab/frostfs-node
ead4513feb
Session token can be presented `Put`, `Delete` and `SetEACL` notification events. IR should consider this case as issuing a power of attorney to a third party. Thus, checking the eligibility for an operation should be complicated: - token owner should be the owner of the related container; - the intent must be signed with a session key; - the power of attorney must be signed by the owner of the container. Omitted checks (TBD): - session token should have container session context; - the verb of the context should correspond to the operation. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> |
||
---|---|---|
.. | ||
config | ||
processors | ||
timers | ||
alphabet.go | ||
bindings.go | ||
blocktimer.go | ||
indexer.go | ||
innerring.go | ||
locode.go | ||
notary.go | ||
rpc.go | ||
settlement.go | ||
state.go |