7bf70aaab6
feat(scram): supports ACL rules in `scram_restapi` backend
2024-07-26 14:30:28 +08:00
141d8144e4
fix(scram): change the name from `scram_http` to `scram_restapi`
2024-07-25 17:01:49 +08:00
c7a7658c7a
Merge pull request #13449 from zhongwencool/resource-log
...
feat: add group/type to resource slog
2024-07-24 14:34:25 +08:00
e7d07ea17c
feat: add resource_type to emqx_resource behaviour
2024-07-23 18:24:28 +08:00
878b218692
feat(authn): added a HTTP backend for the authentication mechanism scram
2024-07-23 16:07:32 +08:00
0a04b1ad6e
feat: add group/type to resource slog
2024-07-23 15:14:41 +08:00
b333babb4c
Merge pull request #13401 from thalesmg/20240703-r57-authz-ignore-api-metrics
...
fix(authz api): add new `ignore` metric to status response
2024-07-04 17:07:08 -03:00
7ee5b90084
Merge pull request #13400 from zmstone/0605-ACL-rules-in-http-authentication-response
...
feat(auth): support HTTP authn return ACL rules
2024-07-03 21:51:07 +02:00
afb65817c4
ci(mix): refactor to avoid conflicts
...
This introduces a refactoring that will hopefully help avoid conflicts with ongoing work
to migrate our build / CI tooling to Mix.
2024-07-03 14:37:25 -03:00
9194756963
feat(auth): support HTTP authn return ACL rules
2024-07-03 15:37:11 +02:00
c3579f338b
fix(authz api): add new `ignore` metric to status response
...
Fixes https://emqx.atlassian.net/browse/EMQX-12411
2024-07-03 10:16:18 -03:00
19f3b030f9
chore: preparing to run common tests / eunit with mix
2024-07-02 09:45:45 -03:00
b74828d7ea
perf: "mixify" project to improve release speed
...
Fixes https://emqx.atlassian.net/browse/EMQX-12527
2024-07-02 09:39:48 -03:00
ff8c2bc1d8
feat(authz): add `ignore` metric for each source type
...
Fixes https://emqx.atlassian.net/browse/EMQX-12411
2024-06-27 09:22:45 -03:00
f7ac829f28
fix(auth,http): improve URI handling
2024-06-17 14:42:29 +03:00
2c264d9a4b
fix(http authz): handle unknown content types in responses
...
Fixes https://emqx.atlassian.net/browse/EMQX-12530
2024-06-12 14:31:12 -03:00
751f7a24e9
feat(authn): support ${cert_pem} placeholder
2024-06-11 19:54:24 +02:00
6fe8a09e97
fix(authz/http): rename PH_ACCESS to VAR_ACCESS
2024-05-31 14:49:54 +02:00
ca32cf8d29
Merge branch 'emqx-12487-fix-authz-http-content-type' into 0530-http-acl-compatibility-with-v4
2024-05-30 22:30:20 +02:00
6940930c3e
chore: bump emqx_auth_http app vsn
2024-05-19 09:30:39 +02:00
93232d4253
fix(authn/http): log meaningful error message if http header is missing
2024-05-14 10:22:07 +02:00
db9efb9317
chore: bump apps versions
2024-03-28 10:19:09 +01:00
3136ec5958
feat: allow mountpoint to use client_attrs
2024-03-23 10:16:05 +01:00
0cf61932b6
feat: allow using client_attrs in authentication templates
2024-03-23 10:16:05 +01:00
c75840306b
fix: restrict client_attr key and value string format
...
The keys and values are used to render templates for
authz rules, such as topic names, and SQL statements etc.
2024-03-23 10:16:02 +01:00
9ec99fef4a
feat: allow client_attr used in authz rules
2024-03-23 10:16:02 +01:00
e5816f5a13
refactor: rename attr to client_attr
...
client_attr is unique enough for all contexts
so the name can be unified from external responses
to internal template rendering, and rule-engine template rendering
2024-03-23 10:16:02 +01:00
cc4805b1ac
feat: extract attrs field from http and jwt auth response
2024-03-23 10:16:02 +01:00
46877e979b
chore: update copyright-year
2024-02-23 08:21:06 +01:00
c7bfaf51fd
chore: typo error (templete -> template)
2024-02-20 09:41:09 +08:00
5e100f52b8
style: erlfmt all `rebar.config` files and `bin/nodetool`
2023-12-29 09:08:03 +08:00
322b7bb7d2
chore: bump app vsn
2023-12-22 13:00:37 +01:00
7286f773ba
feat: don't merge authz default headers if user already setting
2023-12-15 09:45:42 +08:00
28a577ad09
chore: bump apps versions
2023-11-14 11:02:26 +01:00
06e440260f
refactor(schema): add args to map alias
2023-11-12 11:29:33 +01:00
f1de0aa176
fix(schema): add namespace to authn schemas
2023-11-10 13:41:51 +01:00
b24b66081a
refactor(authn/authz_http_schema): use typerefl alias
2023-11-10 13:41:51 +01:00
3d20e566d8
docs: add namespace to authn and authz schema
2023-11-10 08:45:20 +01:00
49fba40ee7
fix(tpl): ensure backward compat with authz / authn templates
...
This commit leans heavy into discouraging the former approach where
only part of placeholders were interpolated, depending on `placeholders`
option.
2023-11-02 17:11:10 +07:00
49f5325c67
feat(tpl): unify validations / errors var representations
2023-11-02 17:11:10 +07:00
0538a77700
feat(tpl): use `emqx_connector_template` in `emqx_authn`, `emqx_authz`
...
This slightly changes semantics: now the attempt to create authenticator
with illegal bindings in templates will fail, instead of treating them
as literals. The runtime behaviour on the other hand should be the same.
2023-11-02 17:11:10 +07:00
c2c56ba481
chore(auth): update tests
2023-10-05 13:41:50 +03:00
1eb75b43c4
chore(auth): split emqx_authn and emqx_authz apps
2023-10-05 13:41:50 +03:00
c24f3688c4
build: delete needless auth plugins
2021-06-25 18:45:34 +08:00
31cbb7aa97
Merge branch 'master' of github.com:emqx/emqx into merge-master
2021-05-25 12:50:50 +09:00
f21ef50938
chore: add missing parameter in available variables
2021-05-17 13:15:04 +08:00
0d9a9fc966
Merge branch 'dev/v5.0' into resolve-conflict-master-to-v5.0
2021-05-07 08:43:26 +02:00
f68a89c9ba
fix(auth-http): support content-type header env variable override
2021-05-07 10:14:19 +08:00
d904a1048b
Merge remote-tracking branch 'origin/master' into merge-master-to-dev/v5.0
2021-04-30 15:09:31 +02:00
078ca67268
test(emqx_auth_http): test ipv6 + hostname resolution
2021-04-28 10:43:36 +02:00
firest