64aa30ec63
chore(authn/authz): better handling of placeholder interpolation errors
2022-08-10 18:22:37 +03:00
dd59c850e0
chore: make sure swagger's tags always titlecase
2022-07-25 16:09:17 +08:00
a12478225a
fix: fix bad swagger format
2022-07-20 16:56:07 +08:00
e49686a276
fix(authz): should apply no rule on superuser
2022-07-08 22:35:15 +02:00
4c17b38102
chore: treat 200/204 as acl nomatch
2022-07-01 20:42:22 +08:00
83f5da8f9d
fix(authz-http): fix https://github.com/emqx/emqx/pull/8377#discussion_r911743360
2022-07-01 17:46:55 +08:00
52b77b570f
refactor: authz-http return body to reject pub/sub
2022-07-01 17:46:55 +08:00
8f429b5ea3
Merge pull request #8316 from zmstone/0624-chore-add-a-note-in-authz-config
...
docs: refine authz file path doc
2022-07-01 16:56:27 +08:00
c32a416a2a
Merge pull request #8371 from HJianBo/auto-retry-auth-resource
...
AuthN/Z: automaticly re-connect to disconnected resources
2022-07-01 14:32:50 +08:00
eac21e5b0a
chore: make spellcheck happy
2022-07-01 12:10:37 +08:00
c3ffdef872
docs: Update apps/emqx_authz/i18n/emqx_authz_schema_i18n.conf
...
Co-authored-by: JianBo He <heeejianbo@163.com>
2022-07-01 12:10:36 +08:00
fd86e8bf0b
docs: Update apps/emqx_authz/i18n/emqx_authz_schema_i18n.conf
...
Co-authored-by: JianBo He <heeejianbo@163.com>
2022-07-01 12:10:36 +08:00
3963856480
docs: Update apps/emqx_authz/i18n/emqx_authz_schema_i18n.conf
...
Co-authored-by: JianBo He <heeejianbo@163.com>
2022-07-01 12:10:36 +08:00
5ac9e9f824
docs: refine authz file path doc
2022-07-01 12:10:36 +08:00
f8c90452cc
chore: auto retry disconnected authn/authz resources
2022-07-01 12:01:39 +08:00
95706cf45f
chore: update authz default config style
2022-06-30 08:09:38 +02:00
a9ec193ef8
fix(prometheus): Disable authorization for metrics scraping endpoint
2022-06-23 00:31:53 +02:00
51efe22e57
chore: update the appup files for authz/authn
2022-06-22 15:54:37 +08:00
defacb97df
fix: disabled resources for authz/authn started after emqx reboot
2022-06-22 14:34:30 +08:00
3b00b16abe
Merge pull request #8221 from terry-xiaoyu/fix_delayed_module_disbled_after_emqx_stop
...
feat: fix the hook priorities
2022-06-16 09:42:42 +08:00
39b1b20506
feat: fix the hook priorities
2022-06-15 19:03:40 +08:00
03967a83de
chore(authz): make `authorization.cache.enable` required
2022-06-15 13:46:17 +08:00
45aa9d604b
fix(metrics): remove the client. prefix for AuthN/AuthZ metrics
2022-06-14 14:08:25 +08:00
f18eab402a
fix(CI): don't use any authz sources when testing
2022-06-10 14:21:20 +08:00
f159e081fa
fix: deny all subscribes to '#' topics in the default acl.conf
2022-06-10 14:21:20 +08:00
86a3ac0bef
fix(authz): prohibit overriding of existing client/user
2022-06-07 16:34:01 +08:00
91000eb342
fix: authz ct failed
2022-06-06 10:57:26 +08:00
c7cc2e85b2
fix: add default&example for schema
2022-06-06 09:52:10 +08:00
9ec804ae03
feat: generate example.conf from schemas
2022-05-31 19:20:27 +08:00
8aa60cc0a5
feat: generate a minimized emqx.conf
2022-05-31 19:20:27 +08:00
2eb621ba57
fix: hint metrics merge errors
2022-05-13 21:38:51 +02:00
91da451803
feat(authz): add default authn-based authz source
2022-05-13 12:51:10 +03:00
ca0c80965a
Merge pull request #7890 from savonarola/fix-jwt-acl-v5
...
fix(jwt auth): improve JWT handling
2022-05-12 19:48:37 +03:00
e0fa07b679
fix(jwt auth): improve JWT handling
2022-05-12 12:10:47 +03:00
87af77ec35
refactor: do not destory resource when update authn/authz resource
2022-05-12 14:19:57 +08:00
5220869dd8
fix(authz): add authz source type into the authorize logger
2022-05-11 17:54:42 +08:00
841acb7828
Merge pull request #7783 from emqx/EMQX-4199-introduce-a-new-emqx-resource-manager-module
...
feat: isolate resource manager processes
2022-05-09 18:33:01 +02:00
0b3e30e813
feat: isolate resource manager processes
2022-05-09 13:24:34 +02:00
30b3060327
fix: improve authn, authz metrics
2022-05-05 18:53:31 +08:00
d36d27c533
Merge pull request #7781 from HJianBo/rename-acl-metrics
...
feat(metrics): refactor authz metrics name
2022-04-29 16:52:43 +08:00
344a754674
Merge pull request #7817 from JimMoen/fix-auth-http
2022-04-29 16:36:10 +08:00
1632df9ebb
Merge pull request #7837 from EMQ-YangM/reduce_duplicate_field
...
fix: reduce duplicate field
2022-04-29 15:50:27 +08:00
7bbed713f4
Merge pull request #7835 from JimMoen/fix-mongo-require-fields
...
fix(auth): mongo field `filter` not required and have default value
2022-04-29 15:38:54 +08:00
4989ce7a0d
test(authz-jwt): fix flaky test t_check_expire
2022-04-29 15:20:05 +08:00
1597ea50c1
feat(metrics): refactor authz metrics name
...
In the current implementation:
```
Authz checking times = client.authorize + client.authorization.cache_hit
= client.authorization.allow + client.authorization.deny
client.authorize means how many times the `client.authorize` hook has been executed.
client.authorize = client.authorization.matched.allow +
client.authorization.matched.deny +
client.authorization.nomatch
```
2022-04-29 15:20:05 +08:00
110f0d0e94
fix: reduce duplicate field
2022-04-29 14:37:49 +08:00
ad4b70c27e
fix(auth): mongo field `filter` not required and have default value
2022-04-29 13:37:29 +08:00
5f75f6e3be
docs: refine auth http i18n description
2022-04-29 12:48:21 +08:00
c1dfd0aa36
test(auth): authn & authz http placeholder in HTTP path
2022-04-29 12:48:17 +08:00
15ef9892c5
fix(auth): authn & authz http support placeholder in HTTP path
2022-04-29 12:48:00 +08:00
Ilya Averyanov