Age | Commit message (Collapse) | Author | Files | Lines |
|
Change-Id: Iceb888ed5cccc46bde9e479a2b1ae9a5a6c4ee53
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: I838788b71908a287fe45c59ed51c20a3f8007a70
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: If2f4c07addbf7843f6c4cb2b26da1f9b902ee60f
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: I73f7a7cc6ab96cc7e6064e267b126b883b94bc69
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: I5479c9e35512ab77a005692903733f7d1af627a3
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: I393d6aa53b98aff102417c263447e2d34e80d531
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: Ifb780ac4133732a4218fa3018b9ecec9f3b67718
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: Ica1479c4ccac93ff153c0e0bf79a3eab6ae882f9
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: I3aa631e0348ab2b1a80b5976e19829ffe75fa673
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
The idea is to allow a client to disconnect
and reconnect without losing its cache.
Change-Id: I017176e5eb5f553b961a32ee466d1b7a175532bb
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Agent are now named and called when the
value returned is prefixed by name+colon.
For example, the agent 'me' receives the requests
'request' and the asked key for the rule:
* * * * me:request forever
Add the always available AGENT-AT implementation.
The AGENT-AT handles the value prefix @: to re-ask
the database with a query derived from the value.
Example: the rule
* * 1001 * @:%c:%s:OWNER:%p forever
if selected for the query key
{client=C, session=S, user=1001, permission=P}
will produce the evaluation of the key
{client=C, session=S, user=OWNER, permission=P}
The values @: are structured as 4 field separated
by colons (:). The sequences %c, %s, %u, %p, %%
and %: are substituted by client, session, user,
permission, % and :, with values coming from the
original request.
Change-Id: I7043845292f13f9c269a71cfabc4715330eaff34
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
The stored sessions MUST be *.
Some thing still have to be set for sessions.
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Change-Id: Iadeba6f0602f7be017244c2602fae2bbe2abf74e
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Also set constants compliant to chump compilers.
Change-Id: Id22672f8077a9fe6377a10043efec3e78e8eb3a7
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
The DB now records sessions. It has expiration
management (currently coarse: ~16s, see db.c)
that is propagated to caches.
Values are now strings. Default values are
"yes" and "no" for allowed or denied permissions.
new program: cynadm
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
|
|
Signed-off-by: Jose Bollo <jose.bollo@iot.bzh>
|