-
Notifications
You must be signed in to change notification settings - Fork 272
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Backport 2.x] Rest admin permissions (#2411) #2466
Conversation
|
@willyborankin There was a commit merged yesterday to fix the build in 2.x: d86dc3f. Can you rebase with the latest from 2.x? |
@cwperks hmmm From github.com:opensearch-project/security
* branch 2.x -> FETCH_HEAD
Current branch 2.x is up to date. I can fix manually. Is it okay? |
If it is easier to manually swap stuff over to match the changes instead of rebasing that is fine. You will just want to double check you get all the differences so that your backport is the only diffs being merged with your PR. Thank you for taking the time. It has been a busy couple days with the release so your changes got caught in the middle. We appreciate your contribution greatly. |
@cwperks I think I got it compilation error is: /home/ples/workspace/security/src/main/java/org/opensearch/security/configuration/ConfigurationRepository.java:383: error: incompatible types: XContentType cannot be converted to ToXContent
fields.put(configurationType.toLCString(), Strings.toString(XContentType.JSON, retVal.get(configurationType)));
^
/home/ples/workspace/security/src/main/java/org/opensearch/security/action/whoami/WhoAmIResponse.java:109: error: incompatible types: XContentType cannot be converted to ToXContent
return Strings.toString(XContentType.JSON,this, true, true);
^
/home/ples/workspace/security/src/main/java/org/opensearch/security/configuration/DlsFlsValveImpl.java:213: error: incompatible types: XContentType cannot be converted to ToXContent
sb.append(Strings.toString(XContentType.JSON, searchRequest.source()) + System.lineSeparator());
^
/home/ples/workspace/security/src/main/java/org/opensearch/security/configuration/DlsFlsValveImpl.java:216: error: incompatible types: XContentType cannot be converted to ToXContent
sb.append(Strings.toString(XContentType.JSON, af) + System.lineSeparator());
^
/home/ples/workspace/security/src/main/java/org/opensearch/security/configuration/DlsFlsValveImpl.java:226: error: incompatible types: XContentType cannot be converted to ToXContent
+ (searchRequest.source() == null ? "<NULL>" : Strings.toString(XContentType.JSON, searchRequest.source())));
^
/home/ples/workspace/security/src/main/java/org/opensearch/security/tools/SecurityAdmin.java:1002: error: incompatible types: XContentType cannot be converted to ToXContent
sb.append(Strings.toString(XContentType.JSON, nir, true, true)); the branch has this commit d86dc3f, but it complains about |
#2451 was just merged. @willyborankin Could you merge in the latest changes from 2.x? 2.x is stable now. |
Permissions for REST admin user Added granular permissions for all REST API actions in OpenSearch to be individually assigned. Permissions are: - 'restapi:admin/actiongroups' - allow full access to actiongroups - 'restapi:admin/allowlist' - allow full access to allowlist - 'restapi:admin/internalusers'- allow full access to internalusers - 'restapi:admin/nodesdn'- allow full access to nodesdn - 'restapi:admin/roles' - allow full access to roles - 'restapi:admin/rolesmapping' - allow full access to roles mappings - 'restapi:admin/ssl/certs/info' - allow full access to certs info - 'restapi:admin/ssl/certs/reload' - allow full access to certs reload - 'restapi:admin/tenants' - allow full access to tenants Adds tests for these permissions. Signed-off-by: Andrey Pleskach <ples@aiven.io>
Codecov Report
📣 This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more @@ Coverage Diff @@
## 2.x #2466 +/- ##
============================================
+ Coverage 61.01% 61.15% +0.14%
- Complexity 3248 3303 +55
============================================
Files 258 258
Lines 18137 18262 +125
Branches 3232 3250 +18
============================================
+ Hits 11066 11168 +102
- Misses 5494 5509 +15
- Partials 1577 1585 +8
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. |
I'm updating the branch right now |
CI will be fixed once #2484 is merged |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thank you for all your work!
…project#2466)" This reverts commit 076715d.
…project#2466)" This reverts commit 076715d.
…project#2466)" This reverts commit 076715d.
…project#2466)" This reverts commit 076715d. Signed-off-by: Andrey Pleskach <ples@aiven.io>
Backport of d676716