f8e6aab86f
Merge branch 'release-57' into 0617-release-57-sync
...
* release-57:
chore(auth,http): cache REs for parsing URIs
fix(auth,http): improve URI handling
chore: revert ULOG/ELOG
test: generate dispatch.eterm in dashboard test
docs: refine change log
feat: make the dashboard restart quicker
chore: fix typo
fix(http authz): handle unknown content types in responses
chore: change types of mysql and mongodb fields to `template()`
fix(client mgmt api): allow projecting `client_attrs` from client fields
fix(emqx_rule_funcs): expose regex_extract function to rule engine
2024-06-17 18:53:39 +03:00
f7ac829f28
fix(auth,http): improve URI handling
2024-06-17 14:42:29 +03:00
d39b8caff9
Merge branch 'release-57' into merge/william/sync-rel57-to-master
2024-06-14 08:17:09 +02:00
2c264d9a4b
fix(http authz): handle unknown content types in responses
...
Fixes https://emqx.atlassian.net/browse/EMQX-12530
2024-06-12 14:31:12 -03:00
751f7a24e9
feat(authn): support ${cert_pem} placeholder
2024-06-11 19:54:24 +02:00
ebf17c8143
Merge remote-tracking branch 'origin/release-57' into 0606-merge-release-57-to-master
2024-06-06 17:43:36 +02:00
6fe8a09e97
fix(authz/http): rename PH_ACCESS to VAR_ACCESS
2024-05-31 14:49:54 +02:00
ca32cf8d29
Merge branch 'emqx-12487-fix-authz-http-content-type' into 0530-http-acl-compatibility-with-v4
2024-05-30 22:30:20 +02:00
238c207b09
chore: bump app versions
2024-05-27 20:26:52 +02:00
acb19a06cf
Merge remote-tracking branch 'origin/release-57'
2024-05-21 15:04:46 +02:00
6940930c3e
chore: bump emqx_auth_http app vsn
2024-05-19 09:30:39 +02:00
daf2e5a444
chore(auth_http): unify http request generation
...
Co-authored-by: Thales Macedo Garitezi <thalesmg@gmail.com>
2024-05-16 11:36:52 +03:00
93232d4253
fix(authn/http): log meaningful error message if http header is missing
2024-05-14 10:22:07 +02:00
bca3782d73
fix(auth_http): fix query encoding
...
* ignore authenticator if JSON format is set up for requests, but non-utf8 data is going to be sent
* use application/json format by default
* fix encoding of query part of the requests
2024-05-14 10:32:53 +03:00
3b655f56cb
fix(auth,http): improve URI handling
2024-05-04 09:47:13 +03:00
db9efb9317
chore: bump apps versions
2024-03-28 10:19:09 +01:00
3136ec5958
feat: allow mountpoint to use client_attrs
2024-03-23 10:16:05 +01:00
0cf61932b6
feat: allow using client_attrs in authentication templates
2024-03-23 10:16:05 +01:00
c75840306b
fix: restrict client_attr key and value string format
...
The keys and values are used to render templates for
authz rules, such as topic names, and SQL statements etc.
2024-03-23 10:16:02 +01:00
9ec99fef4a
feat: allow client_attr used in authz rules
2024-03-23 10:16:02 +01:00
e5816f5a13
refactor: rename attr to client_attr
...
client_attr is unique enough for all contexts
so the name can be unified from external responses
to internal template rendering, and rule-engine template rendering
2024-03-23 10:16:02 +01:00
cc4805b1ac
feat: extract attrs field from http and jwt auth response
2024-03-23 10:16:02 +01:00
46877e979b
chore: update copyright-year
2024-02-23 08:21:06 +01:00
c7bfaf51fd
chore: typo error (templete -> template)
2024-02-20 09:41:09 +08:00
5e100f52b8
style: erlfmt all `rebar.config` files and `bin/nodetool`
2023-12-29 09:08:03 +08:00
322b7bb7d2
chore: bump app vsn
2023-12-22 13:00:37 +01:00
7286f773ba
feat: don't merge authz default headers if user already setting
2023-12-15 09:45:42 +08:00
28a577ad09
chore: bump apps versions
2023-11-14 11:02:26 +01:00
06e440260f
refactor(schema): add args to map alias
2023-11-12 11:29:33 +01:00
f1de0aa176
fix(schema): add namespace to authn schemas
2023-11-10 13:41:51 +01:00
b24b66081a
refactor(authn/authz_http_schema): use typerefl alias
2023-11-10 13:41:51 +01:00
3d20e566d8
docs: add namespace to authn and authz schema
2023-11-10 08:45:20 +01:00
49fba40ee7
fix(tpl): ensure backward compat with authz / authn templates
...
This commit leans heavy into discouraging the former approach where
only part of placeholders were interpolated, depending on `placeholders`
option.
2023-11-02 17:11:10 +07:00
49f5325c67
feat(tpl): unify validations / errors var representations
2023-11-02 17:11:10 +07:00
0538a77700
feat(tpl): use `emqx_connector_template` in `emqx_authn`, `emqx_authz`
...
This slightly changes semantics: now the attempt to create authenticator
with illegal bindings in templates will fail, instead of treating them
as literals. The runtime behaviour on the other hand should be the same.
2023-11-02 17:11:10 +07:00
c2c56ba481
chore(auth): update tests
2023-10-05 13:41:50 +03:00
1eb75b43c4
chore(auth): split emqx_authn and emqx_authz apps
2023-10-05 13:41:50 +03:00
c24f3688c4
build: delete needless auth plugins
2021-06-25 18:45:34 +08:00
31cbb7aa97
Merge branch 'master' of github.com:emqx/emqx into merge-master
2021-05-25 12:50:50 +09:00
f21ef50938
chore: add missing parameter in available variables
2021-05-17 13:15:04 +08:00
0d9a9fc966
Merge branch 'dev/v5.0' into resolve-conflict-master-to-v5.0
2021-05-07 08:43:26 +02:00
f68a89c9ba
fix(auth-http): support content-type header env variable override
2021-05-07 10:14:19 +08:00
d904a1048b
Merge remote-tracking branch 'origin/master' into merge-master-to-dev/v5.0
2021-04-30 15:09:31 +02:00
078ca67268
test(emqx_auth_http): test ipv6 + hostname resolution
2021-04-28 10:43:36 +02:00
a37f47887a
fix(ipv6): add ipv6_probe socket option only when supported
...
ipv6_probe is a socket option supported in EMQ's otp.git fork.
If the target hostname has a ipv6 DNS resolution, gen_tcp
tries to establish a connection on ipv6.
If it fails, then a fallback to default gen_tcp:connection
2021-04-28 10:43:36 +02:00
d9c7c72612
feat(ipv6 probe): automatically probe whether it is IPv6
2021-04-28 10:43:36 +02:00
6354e75626
chore: update copyrights
2021-04-23 20:43:00 +02:00
97f2e5d544
test(auth_http): test unset acl_req app env
2021-04-19 08:39:26 +02:00
8eed34c939
chore(auth_http): fix typo
2021-04-19 08:39:26 +02:00
e02eb5f939
docs(auth_http): Update config doc
2021-04-19 08:39:26 +02:00
Ilya Averyanov