yuanbiao
/
emqx
1
0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
15,074 Commits 393 Branches 684 Tags 74 MiB
Commit Graph

211 Commits

Author SHA1 Message Date
Shawn 2fb42e4d37 refactor: create emqx_resource_worker_sup for resource workers 2022-08-10 00:34:35 +08:00
Ilya Averyanov 1a236db91b chore(log): add authentication tracing 2022-07-25 17:14:19 +03:00
JimMoen 994a76510d fix(authn): jwt ssl opts use emqx_schema:ssl_clients_opts 2022-07-13 10:37:16 +08:00
Shawn 9ca5927b88 fix: issue in test cases 2022-07-08 14:07:28 +08:00
Shawn 841f816e39 refactor: improve the health_check for webhook bridges 2022-07-08 09:17:23 +08:00
Chris dbe806d950 fix: allow for exp field to optional to keep backwards compat with 4.X 2022-07-07 10:18:52 +02:00
JimMoen b88796518e fix(authn): authn http `is_superuser` field 
only support true|false|[num]
and for [num]: zero => false | non-zero => true

other type and string will fallback to default vaule => false
i.e null|undefined|[empty string]
 2022-07-01 20:55:39 +08:00
JianBo He 9acfd0ff9e chore: update emqx_authn.appup.src 2022-06-30 15:23:09 +08:00
JianBo He 7de23f5863 chore(authn-redis): checking password field 2022-06-30 13:26:58 +08:00
Ilya Averyanov d0f686d19d feat(jwt authn): allow to specify JWT field 2022-06-14 14:34:45 +03:00
JianBo He 2ad2da082b
Merge pull request #8139 from savonarola/authn-jwt-test 
chore(jwt authn): improve tests
 2022-06-14 14:23:23 +08:00
Ilya Averyanov 7301009b8e chore(jwt authn): improve tests, add pool_size to schema 2022-06-10 14:28:43 +03:00
Zhongwen Deng c7cc2e85b2 fix: add default&example for schema 2022-06-06 09:52:10 +08:00
Ilya Averyanov 1bad5f8b7c
Merge pull request #8088 from savonarola/authn-import-users-request 
feat(authn api): add method for user file upload
 2022-06-02 13:51:46 +03:00
Ilya Averyanov 2d53c21d45 chore(authn api): replace user import api with upload api 2022-06-01 19:56:23 +03:00
Ilya Averyanov 3be617cf40 feat(authn api): add method for user file upload 2022-05-31 00:40:10 +03:00
Ilya Averyanov fdee23f492 chore(mongodb authn): add defaults for field names 2022-05-27 13:21:16 +03:00
Ilya Averyanov 5dba01b8fa fix(authn): fix user search API 2022-05-25 15:50:20 +03:00
Ilya Averyanov 91da451803 feat(authz): add default authn-based authz source 2022-05-13 12:51:10 +03:00
Ilya Averyanov ca0c80965a
Merge pull request #7890 from savonarola/fix-jwt-acl-v5 
fix(jwt auth): improve JWT handling
 2022-05-12 19:48:37 +03:00
Ilya Averyanov e0fa07b679 fix(jwt auth): improve JWT handling 2022-05-12 12:10:47 +03:00
JimMoen 87af77ec35 refactor: do not destory resource when update authn/authz resource 2022-05-12 14:19:57 +08:00
Zaiming (Stone) Shi 60ca1cb2a5 refactor(authn): use hocon enum type for user_id_type 2022-05-11 09:02:55 +02:00
Zaiming (Stone) Shi 57c1c418d6 docs(authn): use a string alias for user_id_type 2022-05-10 18:28:16 +02:00
Chris Hicks 841acb7828
Merge pull request #7783 from emqx/EMQX-4199-introduce-a-new-emqx-resource-manager-module 
feat: isolate resource manager processes
 2022-05-09 18:33:01 +02:00
Chris 0b3e30e813 feat: isolate resource manager processes 2022-05-09 13:24:34 +02:00
JianBo He 6e03a7c686 fix(authn): use a random group id to void data overlap 2022-05-07 10:16:58 +08:00
JimMoen 4744e4a5e4 fix(authn): make sure http headers are bin 2022-04-29 19:44:49 +08:00
JianBo He 344a754674
Merge pull request #7817 from JimMoen/fix-auth-http 2022-04-29 16:36:10 +08:00
JimMoen ad4b70c27e fix(auth): mongo field `filter` not required and have default value 2022-04-29 13:37:29 +08:00
JimMoen 15ef9892c5 fix(auth): authn & authz http support placeholder in HTTP path 2022-04-29 12:48:00 +08:00
JimMoen dae418ae4a fix(auth): authn & authz http not required `body` field 2022-04-29 12:47:56 +08:00
JimMoen e4826400b8 fix(auth): authn & authz HTTP haeders without `content-type` via GET method 2022-04-29 12:47:52 +08:00
zhouzb afe526ba67
Merge pull request #7789 from tigercl/chore/authn-fields 
chore: rename certificate in jwt and selector in mongodb, remove pool_size in jwks
 2022-04-29 10:14:06 +08:00
DDDHuang 778973b2de
Merge pull request #7791 from DDDHuang/auto_failed_connector 
fix: disconnected status in auto_reconnect = false
 2022-04-29 09:30:16 +08:00
DDDHuang 2a2308bbf8 refactor: resource check & connector status 2022-04-28 15:32:35 +08:00
JianBo He 6535eb879c fix(authn-jwt): avoid to save empty claim name 
An empty claim_name has not a real meaning and will result in a
syntax error cluster_override.conf. i.e:
```
authentication {
  mechanism = "jwt"
  verify_claims { = "22"}
  ...
}
```
 2022-04-28 08:34:04 +08:00
zhouzb fa9bd74595 chore: rename selector to filter and fix spellcheck 2022-04-27 11:29:18 +08:00
zhouzb c384ae2534 chore: rename certificate in jwt to public_key, delete pool_size in jwks authn 2022-04-27 11:29:16 +08:00
firest 2e3033c539 fix(authn): Add support for query by is_superuser to the mensia backend 2022-04-26 14:29:48 +08:00
Ilya Averyanov fc2ea9e484 feat(emqx_auth_jwt): use JWT for ACL checks 2022-04-25 11:59:04 +03:00
JimMoen 86c38d283d docs: authn i18n zh_CN support 2022-04-22 10:40:34 +08:00
DDDHuang 7417e5070d fix: perpare sql when connector doing init; add prepare statement field; bad log path 2022-04-21 16:00:15 +08:00
DDDHuang 365ca67078 fix: auth mysql prepare query 2022-04-21 16:00:15 +08:00
DDDHuang 039619ee23 feat: authz & authn mysql resource support prepare sql query 2022-04-21 16:00:15 +08:00
JimMoen c67e565755 fix(authn): merge default header after check config 2022-04-19 18:57:01 +08:00
JimMoen 88c98bb310 fix(authn): api required fields 2022-04-19 18:57:01 +08:00
Ilya Averyanov e5f04f3bf7 chore(emqx_authn_jwt): wrap JWKS connector into emqx_resourse 2022-04-18 15:47:33 +03:00
JianBo He 0fb758916f
Merge pull request #7492 from lafirest/test/gateway_authn 
test(gateway): integration gateway test with  authn
 2022-04-08 16:05:36 +08:00
firest 786be82d07 test(gateway): optimize test codes organization 2022-04-07 16:53:10 +08:00
ieQu1 8df76da9ac chore(formatting): Fix formatting of modules, authz and authn 2022-04-05 11:01:53 +02:00
ieQu1 99b3f2f83e docs(schema): Document missing records and fields 2022-04-04 23:58:43 +02:00
JianBo He 3022ee081d style(authn): reformat authn subdir source files 2022-04-01 09:55:02 +08:00
ieQu1 edb91e2e4a docs(schema): Add descriptions for authZ and connector 2022-03-30 13:01:01 +02:00
JianBo He 85d1a4f9bf
Merge pull request #7263 from HJianBo/fix-auth-jwt 
fix(authn-jwt): accept the pem conntet to create jwk authenticator
 2022-03-11 15:06:43 +08:00
JimMoen f5caf66253 refactor(api): unified api name style 2022-03-11 11:07:55 +08:00
JianBo He 333f170a30 fix(authn-jwt): accept the pem conntet to create jwk authenticator 2022-03-11 09:19:24 +08:00
JimMoen 93c74bd645
Merge pull request #7225 from JimMoen/authn-authz-mnesia-fuzzy-searching 
authn and authz mnesia searching by `clientid` or `username`
 2022-03-10 17:00:36 +08:00
Shawn 1d023b541f refactor(connnector): rename waiting_connect_complete -> wait_for_resource_ready 
Rename the option to wait_for_resource_ready and defaults to 5s.
 2022-03-10 10:46:57 +08:00
JimMoen 593e1a3efb feat(authn): authn mnesia rows fuzzy searching by `clientid` or `username` 2022-03-10 10:01:40 +08:00
EMQ-YangM 583624fb8d fix(emqx_authn): fix test suite 2022-03-09 13:53:05 +08:00
EMQ-YangM 57adbab5ea fix(emqx_authn): fix authn suite status 2022-03-08 14:09:39 +08:00
EMQ-YangM d99db4ebfa fix(emqx_authn): add default wait_connected 2022-03-08 14:09:39 +08:00
Zhongwen Deng db584f79d6 feat: upgrade hocon to 0.25.0 to replace nullable with required. 2022-02-24 22:39:03 +08:00
Zhongwen Deng 9f9bf059b9 fix(schema): remove unuse to_bin function; simplify body schema. 2022-02-21 23:02:49 +08:00
JimMoen ff68e2a20f fix(http): connector and authn/authz http `keep-alive` default 30s , max 1000 2022-02-21 16:35:15 +08:00
Yang Miao 78cad0a528
Merge pull request #6989 from EMQ-YangM/up_master 
refactor(emqx_resource): Improve grouping strategy for emqx_resource_instance
 2022-02-16 16:26:28 +08:00
JimMoen ab7c2b72e3 refactor(connector): db connector provide default port 2022-02-15 00:51:48 +08:00
EMQ-YangM 580901b678 fix(emqx_authn): fix create api 2022-02-11 18:36:55 +08:00
Shawn 8207090419 fix: format the code to remove extra spaces 2022-02-09 18:46:49 +08:00
Zaiming (Stone) Shi 252d7e85d9 refactor: call new hocon apis 2022-01-27 00:23:08 +01:00
Ilya Averyanov 6441978b08 refactor(authn,authz): unify variable interpolation 2022-01-25 20:54:12 +03:00
zhongwencool 8b31466538 chore(trace): replace trace_filter by is_trace 2022-01-14 15:33:43 +08:00
zhongwencool 681ab6b754 fix(review): refactor function name base on review sugguestion 2022-01-14 15:00:05 +08:00
zhongwencool 1cfab9fed5 chore(log): add more detail log for authz/authn query error 2022-01-14 15:00:02 +08:00
zhouzb ac631110cb chore: remove useless field 2022-01-11 10:05:11 +08:00
zhouzb 2791052135 fix: fix errors caused by concurrent parsing of sql 2022-01-11 09:39:56 +08:00
zhongwencool 3bdfa183f3
Merge pull request #6666 from JimMoen/merge-5.0-beta.3-to-master 
Merge 5.0 beta.3 to master
 2022-01-06 18:20:30 +08:00
JimMoen 9a115b99a4 Merge remote-tracking branch 'emqx/release-5.0-beta.3' into merge-5.0-beta.3-to-master 2022-01-06 14:08:45 +08:00
Zaiming (Stone) Shi 63167cea70 chore: update copyright 2022-01-05 20:55:00 +01:00
JimMoen 6affb5aca1 fix(authn): authn http resource url query string 2022-01-04 18:13:27 +08:00
Zaiming (Stone) Shi 2898fa76e1 Merge remote-tracking branch 'origin/release-5.0-beta.3' into merge-5.0-beta.3-to-master 2022-01-03 11:39:06 +01:00
Ilya Averyanov 2b3d3ebb0a chore(authn): test JWT authn with HTTPS key server 2021-12-29 16:24:57 +03:00
zhouzb d26042703e chore: provide prepared_query and equery 2021-12-28 09:52:31 +08:00
Ilya Averyanov 2b0a3e8ba3 refactor(authn): unify password hashing 2021-12-07 23:38:26 +03:00
Zaiming (Stone) Shi 5d3cb6ae1c refactor(authn): align authn config root name 
authn configs are checked independently per-auth provider,
this was to make authn providers more plugable.

in order to make environment variable overrides work for authn,
we need to have a unified view of the config layout,
no matter from root level, or partially checking per-provider
config independently, i.e. we try to use the same config envelop.
 2021-12-04 09:33:14 +01:00
JimMoen 68af284570 fix(authz): http source create and update 2021-12-02 10:12:10 +08:00
zhouzb b983a18cdf fix(auth): replace query with cmd 2021-12-01 20:24:43 +08:00
zhouzb 6b8997cbda fix(authn): fix superuser when missing is_superuser_field 2021-12-01 09:23:36 +08:00
Ilya Averyanov e6d7e59c18
Merge pull request #6278 from savonarola/test-authn-resources-mongo 
chore(authn): add MongoDB backend tests
 2021-11-29 22:27:52 +03:00
Ilya Averyanov 390575eafb chore(authn): add MongoDB backend tests 2021-11-29 21:17:56 +03:00
Ilya Averyanov 726e25d6ae chore(authn): add JWKS backend tests 2021-11-26 18:40:21 +03:00
tigercl 124ba7a071
Merge pull request #6311 from emqx/release-5.0-beta.2 
Sync bug fixes
 2021-11-26 14:24:19 +08:00
zhouzb 349fd1608b style(authn): improve code formatting 2021-11-26 10:29:57 +08:00
Ilya Averyanov e6c2600718 chore(authn): add HTTP backend tests 2021-11-25 15:09:13 +03:00
zhouzb ecd3c9f85c test(authn): add test cases for jwt authn 2021-11-25 19:03:11 +08:00
zhouzb 15654b5b28 fix(authn): add handling of invalid secret 2021-11-25 17:17:44 +08:00
zhouzb d88bfdfe14 fix(authn): verify claims type is wrong 2021-11-25 16:42:08 +08:00
DDDHuang 21bd9bba55
fix: generate palce holder (#6250) 
* fix: generate place holder

* style: whitespace cleanup

* refactor(authz): placeholder for athuz

* test: authz test suite for placeholder

* fix: lw place holder suite

* fix: auth n redis suite

Co-authored-by: JimMoen <LnJimMoen@outlook.com>
 2021-11-23 10:56:43 +08:00
Ilya Averyanov 071c2c99e8 refactor(authn resources): add `emqx_resource` and `emqx_authn` tests 2021-11-22 21:08:04 +03:00