• ale's avatar
    Switch to really opaque ResourceIDs · 78d08eef
    ale authored
    The new ResourceID is really a database ID (in our case, a LDAP DN),
    and we have completely decoupled other request attributes like type
    and owner from it.
    
    Resource ownership checks are now delegated to the backend.
    
    Also change the backend CreateResource call to CreateResources, taking
    multiple resources at once, so we can perform user-level resource
    validation, and simplify the CreateUser code path.
    78d08eef
Name
Last commit
Last update
backend Loading commit data...
cmd/accountserver Loading commit data...
debian Loading commit data...
integrationtest Loading commit data...
ldaptest Loading commit data...
server Loading commit data...
vendor Loading commit data...
.gitlab-ci.yml Loading commit data...
API.md Loading commit data...
CONTRIBUTING.md Loading commit data...
DATAMODEL.md Loading commit data...
LICENSE Loading commit data...
README.md Loading commit data...
actions.go Loading commit data...
actions_create.go Loading commit data...
actions_resource.go Loading commit data...
actions_test.go Loading commit data...
actions_user.go Loading commit data...
audit.go Loading commit data...
config.go Loading commit data...
errors.go Loading commit data...
service.go Loading commit data...
types.go Loading commit data...
types_test.go Loading commit data...
validators.go Loading commit data...
validators_test.go Loading commit data...