Radoslaw Zarzynski
|
d3b04dfed7
|
rgw: the S3's local v2 auth engine becomes a fallback conditionally.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 22:45:28 +01:00 |
|
Radoslaw Zarzynski
|
030a6fc9c5
|
rgw: implement SwiftAnonymousEngine.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 22:45:28 +01:00 |
|
Radoslaw Zarzynski
|
92d44fe3a1
|
rgw: parametrize the implicit tenancy of rgw::auth::RemoteApplier.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 22:45:28 +01:00 |
|
Radoslaw Zarzynski
|
f13f04bbb3
|
rgw: RGWPostObj_ObjStore_S3 doesn't instantiate auth strategy for each request anymore.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 22:45:27 +01:00 |
|
Radoslaw Zarzynski
|
1ad1d83997
|
rgw: fix appending '\0' in the rgw::auth::LocalApplier::to_str().
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 22:43:59 +01:00 |
|
Radoslaw Zarzynski
|
1184f1dd75
|
rgw: improve logs in the RGWAccessControlPolicy class.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:43 +01:00 |
|
Radoslaw Zarzynski
|
cbb32a92a6
|
rgw: improve logs in rgw::auth::Strategy.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:43 +01:00 |
|
Radoslaw Zarzynski
|
fb8ee7af5c
|
rgw: RGWOp is responsible now for the authentication process.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:43 +01:00 |
|
Radoslaw Zarzynski
|
2d51d1d7d7
|
rgw: refactor error handling in rgw::auth::keystone.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:42 +01:00 |
|
Radoslaw Zarzynski
|
463fb1f9e4
|
rgw: implement descriptive authentication failure reasons.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:42 +01:00 |
|
Radoslaw Zarzynski
|
e5f4ea2f7d
|
rgw: unify handling S3's ::authorize_v2 and ::get_policy methods.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:42 +01:00 |
|
Radoslaw Zarzynski
|
be9dabaf35
|
rgw: remove the parts of auth framework that aren't necessary anymore.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:42 +01:00 |
|
Radoslaw Zarzynski
|
95f2180204
|
rgw: move ACL Strategies to the newer auth framework.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:41 +01:00 |
|
Radoslaw Zarzynski
|
38e1af31f9
|
rgw: switch from req_state::auth_identity to req_state::auth::identity.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:41 +01:00 |
|
Radoslaw Zarzynski
|
0e79c29b1c
|
rgw: remove rgw/rgw_auth_decoimpl.h as it isn't necessary anymore.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
Signed-off-by: Matt Benjamin <mbenjamin@redhat.com>
|
2017-03-24 16:55:32 +01:00 |
|
Radoslaw Zarzynski
|
8ce76ec6ca
|
rgw: add rgw::auth::s3::AWSv2AuthStrategy and switch the S3 auth to it.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:27 +01:00 |
|
Radoslaw Zarzynski
|
c7288bf24d
|
rgw: replace RGWDummyIdentityApplier with rgw::auth::DummyIdentityApplier.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:26 +01:00 |
|
Radoslaw Zarzynski
|
764ba0a49a
|
rgw: apply the new filters over appliers in the Swift's auth strategy.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:26 +01:00 |
|
Radoslaw Zarzynski
|
89d813a392
|
rgw: implement the rgw::auth::SysReqApplier over IdentityApplier.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:26 +01:00 |
|
Radoslaw Zarzynski
|
61aac9795f
|
rgw: implement rgw::auth::ThirdPartyAccountApplier.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:25 +01:00 |
|
Radoslaw Zarzynski
|
d912f9e0ae
|
rgw: add Control::FALLBACK mode to rgw::auth::AuthStrategy.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:25 +01:00 |
|
Radoslaw Zarzynski
|
aeb26c22c3
|
rgw: aggregate S3's external auth engine as the ExternalAuthStrategy.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:24 +01:00 |
|
Radoslaw Zarzynski
|
c777810e32
|
rgw: make rgw::keystone::TokenEnvelope::expired() to be const-correct.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:23 +01:00 |
|
Radoslaw Zarzynski
|
a16d301626
|
rgw: switch S3-specific auth engines to the new infra.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:23 +01:00 |
|
Radoslaw Zarzynski
|
c9b90ccf41
|
rgw: integrate the new EC2Engine with current S3 auth code.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:22 +01:00 |
|
Radoslaw Zarzynski
|
c7de0827d5
|
rgw: introduce basement for all S3 auth engines.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:22 +01:00 |
|
Radoslaw Zarzynski
|
0dadcbcdfb
|
rgw: fix indentation in RGWPostObj_ObjStore_S3::get_policy().
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:22 +01:00 |
|
Radoslaw Zarzynski
|
fa02054684
|
rgw: improve const-correctness and refactor S3 canonized string crafting.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:55:21 +01:00 |
|
Radoslaw Zarzynski
|
d9c723cf50
|
rgw: add rgw::auth::keystone::EC2Engine.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
Signed-off-by: Matt Benjamin <mbenjamin@redhat.com>
|
2017-03-24 16:55:13 +01:00 |
|
Radoslaw Zarzynski
|
e4e7b576b2
|
rgw: the authorize() method of Swift's handler operates on auth strategy now.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:53 +01:00 |
|
Radoslaw Zarzynski
|
0134241b63
|
rgw: the Swift's auth strategy is instantiated and injected from rgw_main.cc.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
Signed-off-by: Matt Benjamin <mbenjamin@redhat.com>
|
2017-03-24 16:54:39 +01:00 |
|
Radoslaw Zarzynski
|
da14fd9364
|
rgw: settle rgw::auth::{IdentityApplier,Completer} in req_state.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:34 +01:00 |
|
Radoslaw Zarzynski
|
58f0df7a17
|
rgw: port the TempURL auth engine to the new auth infrastructure.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:34 +01:00 |
|
Radoslaw Zarzynski
|
c5f8e8c8c0
|
rgw: port Swift's Signed and External auth engines.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:34 +01:00 |
|
Radoslaw Zarzynski
|
2fd0a50fa5
|
rgw: implement rgw::auth::DecoratedApplier.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:33 +01:00 |
|
Radoslaw Zarzynski
|
1f7a802ef1
|
rgw: implement rgw::auth::swift::DefaultStrategy.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:33 +01:00 |
|
Radoslaw Zarzynski
|
9aa6d17db0
|
rgw: implement rgw::auth::AnonymousEngine.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:33 +01:00 |
|
Radoslaw Zarzynski
|
d5945e1511
|
rgw: implement rgw::auth::LocalApplier.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:32 +01:00 |
|
Radoslaw Zarzynski
|
9651b4acbe
|
rgw: inject token cache as a dependency in rgw::auth::keystone::TokenEngine.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:32 +01:00 |
|
Radoslaw Zarzynski
|
2016d460de
|
rgw: implement the rgw::auth::KeystoneEngine.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:32 +01:00 |
|
Radoslaw Zarzynski
|
9ddb0494c5
|
rgw: Keystone implementation can support multiple instances now.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:54:32 +01:00 |
|
Radoslaw Zarzynski
|
f82af9ca95
|
rgw: only move Keystone-related things into rgw::keystone namespace.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
Signed-off-by: Matt Benjamin <mbenjamin@redhat.com>
|
2017-03-24 16:54:05 +01:00 |
|
Radoslaw Zarzynski
|
a22a7132ac
|
rgw: add the rgw::auth::TokenExtractor interface.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:31:43 +01:00 |
|
Radoslaw Zarzynski
|
41403c2092
|
rgw: introduce the rgw::auth::RemoteApplier interface.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 16:31:43 +01:00 |
|
Radoslaw Zarzynski
|
4d03f7b637
|
rgw: introduce the rgw::auth::Applier interface.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 15:57:25 +01:00 |
|
Radoslaw Zarzynski
|
f799efe02e
|
rgw: implement the rgw::auth::Strategy.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 15:57:24 +01:00 |
|
Radoslaw Zarzynski
|
b560d98431
|
rgw: introduce and document new interfaces to the auth subsystem.
Signed-off-by: Radoslaw Zarzynski <rzarzynski@mirantis.com>
|
2017-03-24 15:57:24 +01:00 |
|
Mykola Golub
|
9804468266
|
Merge pull request #13986 from dillaman/wip-19081
librbd: image create validates that pool supports overwrites
Reviewed-by: Mykola Golub <mgolub@mirantis.com>
|
2017-03-16 13:38:28 +02:00 |
|
Haomai Wang
|
98a14c369e
|
Merge pull request #13905 from yuyuyu101/wip-fix-assert
msg/async/rdma: fix outstanding queuepair when destruct RDMAStack
Reviewed-by: Adir lev <adirl@mellanox.com>
|
2017-03-16 16:35:58 +08:00 |
|
Nathan Cutler
|
6e18866b92
|
Merge pull request #13983 from gaurav36/bug-19273-fix-typo
rbd: fix typo in Kernel.cc
Reviewed-by: Nathan Cutler <ncutler@suse.com>
|
2017-03-16 05:07:35 +01:00 |
|