boundary

Commit Graph

Author	SHA1	Message	Date
Jeff Mitchell	8d8a7358f8	Add AdditionalVerification function (#423 )	6 years ago
Todd Knight	278902db1a	Allow target type field to be included in an update. (#412 )	6 years ago
Todd Knight	2f8d7f0a32	API Errors: Hide and log internal errors (#411 )	6 years ago
Jeff Mitchell	dd06615c2e	Add database initialization command (#400 )	6 years ago
Jeff Mitchell	7e3c174b70	Disallow deletion of r_default (#398 ) If it's a useful named resource and people accidentally delete it e.g. with TF, they can't get it back. This doesn't affect TF's ability to manage it, just delete.	6 years ago
Jeff Mitchell	f25186f78a	Standardize on one spelling of "canceled" (#399 )	6 years ago
Jeff Mitchell	6a09e0966e	Fix some broken tests that were expecting nil but are now getting an empty struct	6 years ago
Todd Knight	21f5cc274f	Don't return nil, nil for API service methods. Add tests for updating w/ wrong version. (#396 )	6 years ago
Jeff Mitchell	1adbe64160	Update some tests that are failing due to 300 nano difference in time comparisons between create and lookup (#393 )	6 years ago
Jeff Mitchell	27d728875c	Cleanup session state enum (#394 ) It's up to the worker to understand what a change in state means, so there was no functional difference between simply sending a state change request and a cancel request.	6 years ago
Jeff Mitchell	5747ea603e	Fix nil pointer with revamped chosen host ID logic	6 years ago
Jeff Mitchell	9cbc7b5c3d	Add connection close call from worker to controller (#387 )	6 years ago
Jeff Mitchell	7ff4b7f106	Send connected RPC to controller (#386 )	6 years ago
Jeff Mitchell	4669c95999	Pass more session info around, make proxy UX nicer (#385 )	6 years ago
Todd Knight	e937b0ea27	Sessions Read/List/Cancel API and SDK (#369 )	6 years ago
Jeff Mitchell	f7e48ec836	Plumb connection limit to proxy and output it (#384 )	6 years ago
Jeff Mitchell	697ea561e0	Fix breakage from dual merges	6 years ago
Jeff Mitchell	edffc7863d	Change connection limit to -1 for unlimited so it works with TF (#383 ) * Migrate connection limit unlimited value to -1 * Fix authorization check	6 years ago
Jeff Mitchell	5214f14105	Work on connection authorization (#381 )	6 years ago
Jeff Mitchell	5bf555cca2	Remove connection idle timeout seconds for now (#379 )	6 years ago
Jeff Mitchell	e002326293	Plumb timeouts to worker and set appropriate deadlines (#378 )	6 years ago
Jeff Mitchell	0a3f9b8357	Rename connection idle timeout duration -> seconds and sessions max duration -> seconds (#376 )	6 years ago
Jeff Mitchell	62baef1b7e	Add multi connection parameters through targets and into session creation (#375 ) * Update protos and gen * Add new values to targets CLI command * Lots more plumbing of new parameters through everything * allow fields to be set to zero value. * Disallow set but empty name/description strings in create/update verifiers Co-authored-by: Jim Lambert <jlambert@hashicorp.com>	6 years ago
Jeff Mitchell	07a7e9750a	Tie together the database-driven session handling with the worker and add relevant CLI comands (#370 )	6 years ago
Jeff Mitchell	ff8ce053e1	Don't try to recreate resources when adding test cluster members	6 years ago
Jim	611288bdc7	basic sessions (#337 )	6 years ago
Jeff Mitchell	a67d5c8abb	When logging urls, also log method	6 years ago
Jeff Mitchell	37e9fed2e3	Allow not destroying dev databases (#366 ) This also shifts some logic around to better prepare for non-dev-mode workloads, although it does not actually call the KMS creation functions and initial auth method creation from non-dev commands yet.	6 years ago
Jeff Mitchell	c4e2b88022	Add database URL. (#365 ) * Add database URL. This allows specification of either a file://, env://, or other string. If it starts with file:// or env:// the actual value will be read from those resources. * Tidy up the KMS output * Also run migrations in test mode when specifying the URL	6 years ago
Todd Knight	f96fa25157	Add Auth Account id to Auth Token response (#363 )	6 years ago
Jeff Mitchell	f4ad22b247	Move default port to a TCP target attribute (#361 )	6 years ago
Jeff Mitchell	eb88d0381a	Fix default port update handling	6 years ago
Jeff Mitchell	a00ee7a948	Add Result types to Go SDK and properly populate body/map fields (#358 )	6 years ago
Jeff Mitchell	6201357902	Use scope-specific token DEKs (#342 )	6 years ago
Todd Knight	b998591add	Adding and updating host address validation checks (#350 )	6 years ago
Todd Knight	33e7b4538e	WorkerCoordination and GetSession API refactoring (#354 ) * Possible api changes. * Worker API update. * Updating import alias name. * Moving session down a level as a member of the GetSessionResponse. * Marshal the auth flag into the GetSessionResponse proto instead of the session.	6 years ago
Jeff Mitchell	2914b4c14c	Use base58 for a few more user-facing values (#356 )	6 years ago
Jeff Mitchell	41ed95bdec	Remove old-style pathing (#353 )	6 years ago
Jeff Mitchell	60396e4384	Properly populate ScopeInfo from group member actions (#340 )	6 years ago
Jeff Mitchell	f8237fb945	Move some packages into SDK, out of internal	6 years ago
Jeff Mitchell	f94f21fd97	Update API codes (#336 )	6 years ago
Todd Knight	99d5456d7a	Scopes type field and types in updates allowed (#335 )	6 years ago
Todd Knight	c3ecea172d	Generate new version of SDK resources and Add Tests (#331 )	6 years ago
Todd Knight	1c2c078e0a	Adding Authz checks that support new pathing (#328 )	6 years ago
Jim	3d944a616f	fix name typo (#330 )	6 years ago
Jeff Mitchell	23156afa11	Add in most of the proxy flow (#326 )	6 years ago
Todd Knight	c55153ff3d	Fix allowed scope checks and added tests for creating in global scope. (#327 )	6 years ago
Todd Knight	37e56ab46b	Pathing updated to support new and old styles (#323 )	6 years ago
Todd Knight	544e78b593	Target Handler and SDK CRUDL & add\|set\|remove-host-sets methods. (#310 )	6 years ago
Todd Knight	24ec9620ca	fix: Correct missed name updates to OutgoingInterceptor.	6 years ago
Jeff Mitchell	c4522aa813	Update host sets and auth system to new paradigm (#319 )	6 years ago
Todd Knight	0aba6db720	Enable Split Cookies (#318 )	6 years ago
Jeff Mitchell	20aef738c4	Add host-catalogs CLI command. (#312 )	6 years ago
Jeff Mitchell	17ecb6f2ce	Separate accounts/host catalogs/host sets into their own packages (#311 )	6 years ago
Jeff Mitchell	274afa6b02	Shave off an IAM lookup if the user is the anonymous user (#305 ) * Shave off an IAM lookup if the user is the anonymous user * Fix build * If authz failures are turned off, make the token type unknown instead of invalid * Change returned token format when authz failures are disabled * Change logic back * Fix logic	6 years ago
Jeff Mitchell	b53812a5c1	Add ability to skip automatic auth method creation (#306 ) This is useful if you, for instance, want Terraform to be 100% responsible for creation of resources (outside of the static ones that cannot be removed or modified, like u_anon). This will mean using the recovery mechanism for initial setup, but that isn't an issue once TF supports that :-)	6 years ago
Jeff Mitchell	490be8a7e4	Add ability to skip role creation on scope create (#308 ) * Initial work on scope creation skipping * Fix things	6 years ago
Todd Knight	e4da5e9ab5	add\|set\|remove-hosts for host-sets SDK and API (#304 ) * Adding ability to add host set members. * Adding SDK and API for add\|set\|remove hosts.	6 years ago
Michael Gaffney	9ca8a4ec20	Host set members (#301 ) * Update host set member test * Add ListSetMembers method signature and doc * Move repository methods for host set members to new file * Add TestSetMembers * Implement ListSetMembers * Return hosts from ListSetMembers * Implement AddSetMembers * Implement DeleteSetMembers * Use sql.QueryContext not sql.Query * Implement SetSetMembers * Refactor: extract getHosts method * Refactor: extract createMembers method * Refactor: extract common functions * Return correct count of changed In SetSetMembers, retrieving the current list of hosts in the set happens after the transaction to modify the set has completed. This retrieval can result in an error but the number of modified rows is not effected. * Make list set members an unexported method * Get hosts within the same transaction as mutations of the set * Return hosts of set from LookupSet method * Return hosts of set from UpdateSet method * Remove listSetMembers * Fix merge conflict * Add NOTE and TODOs about using new pattern in "SetMembers" methods	6 years ago
Jeff Mitchell	39721047e4	Fix CORS test	6 years ago
Jeff Mitchell	8f579c75c3	paum -> ampw (#303 )	6 years ago
Jeff Mitchell	74544f6324	Encrypt tokens on the way out and decrypt on the way in (#302 ) * Encrypt tokens on the way out and decrypt on the way in This isn't a security feature related to tokens specifically; it's so that we can discard cryptographically bad tokens before we ever hit the DB. This way we can't pass through a DDoS to the database due to fetching obviously invalid token values. I'm using base58 to encode the resulting value as there aren't great base62 options, and allowing base64 / and + values can hamper usability by creating copying/highlighting breaks.	6 years ago
Jeff Mitchell	ac4d9fa311	Add nonce storage and replay prevention test (#293 )	6 years ago
Jeff Mitchell	a1490228b8	Add address to worker status tracing	6 years ago
Todd Knight	c4d3414016	Add Host Set CUDLR handler and SDK (#290 )	6 years ago
Todd Knight	e423b6589e	Request Validation logic moved into a helper (#296 ) * Move all the validation logic into a helper tool. * Adding tests for verifier helpers.	6 years ago
Jeff Mitchell	b47cca0329	Add (non-db aspects of) the recovery key workflow (#286 )	6 years ago
Todd Knight	d5678c4f80	Handler for Host CRUDL actions (#287 )	6 years ago
Todd Knight	7474e956dd	List Catalogs for Repo and API Handler (#288 )	6 years ago
Jim	9570897032	basic keys mgmt repo (#264 )	6 years ago
Todd Knight	eaae887bbe	Don't require type for children of subtyped resources. (#285 )	6 years ago
Todd Knight	d86e58476f	Version can be passed through request body (#281 ) * Scopes inline version into update request body. * Users inline version into update request body. * Group inline version into update and add\|set\|remove member request body. * Role inline version into update and add\|set\|remove grant\|principal request body. * Auth method inline version into update request body. * Auth Account inline version into update request body. * host catalog version is inlined for update. * Gen after merge. * Submitting template changes for version handling.	6 years ago
Jeff Mitchell	282177afc2	Remove the default org (#270 )	6 years ago
Todd Knight	e14f968fc3	Account (Set\|Change)Passsword (#267 )	6 years ago
Jeff Mitchell	7b36571788	Change auth validity feedback (#273 ) * Change auth validity feedback Move from a bool indicating validity to lack of an error. This allows the error to be directly returned and typed. * Fix erroneous line	6 years ago
Todd Knight	23b437894a	Masks can now update attribute fields. (#271 )	6 years ago
Jeff Mitchell	fff15bc9f3	Rename KMS purpose 'controller' to 'root'	6 years ago
Jeff Mitchell	bb6b189513	Create a default role on new scope creation (#265 )	6 years ago
Jeff Mitchell	e89e9d1349	Add groups CLI command (#266 )	6 years ago
Jeff Mitchell	5d104a7a01	Migrate off Vault's internalshared folder to the separated-out repo	6 years ago
Todd Knight	245c7fbb44	Add Account Update handler (#257 ) * Allow updating accounts (not username or pw). * Updating new field names to LoginName. * Adding creation with password test. * Fixing documentation for WithLoginName	6 years ago
Jeff Mitchell	203e2b5dc2	Initial worker porting steps (#232 )	6 years ago
Jeff Mitchell	73a38b1433	Remove some unneeded resource types and fix the resource typing for default role in global scope (#256 )	6 years ago
Jeff Mitchell	4cfab04307	Migrate user name to login name (#255 )	6 years ago
Jeff Mitchell	78d7f539c5	Add versioning to host catalogs/sets/hosts and fix up tests (#247 ) * Start adding version to host resources and fixing up tests * Add versioning to host resources and update API tests * Fix nil in test * Add missing update	6 years ago
Jeff Mitchell	565059ed63	Add versioning to auth methods and accounts (#249 )	6 years ago
Jeff Mitchell	6661117d4c	The name. The name. The name!	6 years ago
Jeff Mitchell	0c18e35b9d	Fix group service proto for versions	6 years ago
Jeff Mitchell	827d86bef1	Update API role tests and fix the structure of the protos so versioning works	6 years ago
Jeff Mitchell	bbd200101f	Move update versioning to query parameter, and fix up scope API tests (#244 ) * Move update versioning to query parameter, and fix up scope API tests * Add version checks for update requests in other services	6 years ago
Jeff Mitchell	0d0660b061	Fix some tests I broke	6 years ago
Jeff Mitchell	df4730b1a0	Minor fixes and first API test changeover (#243 )	6 years ago
Todd Knight	f84991c0f1	Use authenticate and Auth Method repo functions (#242 )	6 years ago
Jeff Mitchell	908a299ea3	Convert SDK to the new options API (#238 )	6 years ago
Todd Knight	b5acf6afdf	Connecting the auth method service to the api handler. (#241 )	6 years ago
Todd Knight	b7bf76a9ba	Auth Method API Handler for CRUDL (not updating password specific fields)(#239 )	6 years ago
Todd Knight	e5ec1f48b2	Account API handler for CRDL operations (#228 )	6 years ago
Todd Knight	f47046f158	Update Watchtower to use grpc-gateway v2 (#204 ) * Migration to grpc gateway v2.	6 years ago
Todd Knight	6de1f7ee16	Auth Token Read/List/Delete handler and Go SDK (#199 ) * Creating Auth Token Get List and Delete API.	6 years ago
Todd Knight	ed05652729	Add Handlers for Add/Set/Remove Group Members (#209 ) * Adding members to groups. * Adding Group membership handler and API methods. * Adding custom methods to permision actions list.	6 years ago
Todd Knight	078376da07	Fixing some errors.	6 years ago
Jeff Mitchell	e8325a9f59	Don't rely on token for scopes collection actions (#210 ) Don't rely on token for scopes collection actions This requires `scope_id` to be passed (via query param) for actions on the scopes collection; that is, listing or creating. However, it removes the dependency on using the token for the scope of the command. For actions on a specific scope, we use the given ID to determine the scope we should be operating at, doing a lookup if necessary. Existing tests have been updated. Of particular note, the CORS test was already operating on the scopes collection so served as a good test to ensure that from an API level the scope_id parameter was being parsed and passed through (the tests fail without adding that query parameter in).	6 years ago
Jeff Mitchell	388a13b10d	Convert scopes to the new paradigm (#206 )	6 years ago
Todd Knight	168ae3a726	Create MaskManager to guarantee wire/storage update mask consistency (#121 ) * Feature: Create MaskManager logic to handle project -> scope update mask logic. * Updating resource protos and services to use new mask manager setup. Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	6 years ago
Todd Knight	5bb13e71fe	Include Principals and Grants on Roles When Updating the Role. (#203 )	6 years ago
Jeff Mitchell	99653727bb	Migrate grants to more structured output (#194 )	6 years ago
Jeff Mitchell	1a1d3058c9	Move verification to a shared package (#197 ) * Move verification to a shared package The verifier is constructed at HTTP request time and added to the context. It can then be called from appropriate handlers with standardized error handling after all the routing. I intentionally did not add to the handlers yet as I am a good distance into the scope updates and didn't want to cause even more merge conflicts. So at the moment authz is again disabled, but once the scope updates are done, this will be integrated back in.	6 years ago
Todd Knight	28dbcd84bd	Authenticate Handler API and SDK, and much more (#183 )	6 years ago
Jeff Mitchell	acce195dcb	Organizations -> orgs consistency (#189 ) * Organizations -> orgs consistency * Fix up some tests and some mistaken substitutions	6 years ago
Jim	e1afed75ff	fix dbMask and role tests... (#188 ) * fix up tests. * case sensitive dbMask	6 years ago
Todd Knight	847ca1cc78	Grant management added to Roles API and SDK (#185 ) * Adding grants related methods to Roles. * Adding grants back after the merge of Principals. * Adding tests for Grant related custom methods. * Improving api handler methods. * Fixing tests and sdk field. * Adding todos for adding principals and grants to List and Update Role responses. * Fix up Set* tests and fix SetPrincipals bug. * Making AddPrincipals and RemovePrincipals similar to the tests for AddGrants and RemoveGrants. * Add JSON grants to output (#187) I also changed canonical_grants to grants_canonical and used grants_json. I believe that when members are simply different formats of other members this is the preferred way to have it in the API. Let me know if you disagree and we can dig in more. * Regenerate the API role resource. Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	6 years ago
Jeff Mitchell	f30d4d08ef	Pass grant scope ID through API handlers (#184 )	6 years ago
Jeff Mitchell	bcdcaffa6f	Port over 162 and 165 to master (#176 ) Co-authored-by: Jim Lambert <jlambert@hashicorp.com> Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com>	6 years ago
Todd Knight	1ddc59f81e	Adding principal custom methods to roles handler. (#180 ) * Adding Add/Set/Remove principals API calls. * Add SDK custom methods. Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	6 years ago
Todd Knight	2ce9affeea	Don't use repo to check impossible token requests and repo doesn't return error on token value mismatch. (#171 ) * Remove error when tokens mismatch from public id but log returned errors from repo.	6 years ago
Jeff Mitchell	4decf9502a	Fix handler test by moving it to a new file with a build tag	6 years ago
Jeff Mitchell	8987d8d435	Separate out ui handler under build tag (#170 )	6 years ago
Todd Knight	c44a4c4795	Tools for auth token interception and authentication (#152 )	6 years ago
Todd Knight	bb4a185412	Pushing test db cleanup up to where the database objects are created using t.Cleanup. (#166 )	6 years ago
Todd Knight	c017da7087	Add ListUsers handler implementation. (#160 )	6 years ago
Jeff Mitchell	c965cf1bc5	Attempt to fix content-length header in index (#159 )	6 years ago
Todd Knight	9a1539867e	Adding SDK ability to do CRUD operations on groups and roles under the project scope. (#157 )	6 years ago
Jeff Mitchell	8da4effd5e	Add mechanism for bundling UI assets. (#153 ) * Add mechanism for bundling UI assets. The scripts/uigen.sh script will check out the UI repo, build assets, create a static assets file, and clean up. The dev Makefile target has been modified to run this script if no assets file is found. There is also a build-ui target that will unilaterally update (the dev target only builds if the file isn't found, but doesn't update). The handler has been updated to add the default org ID as a header if the request path is "/". Co-authored-by: Randall Morey <randall@randallmorey.com>	6 years ago
Todd Knight	8399764442	Roles and Groups Handlers Support Project Scope (#154 ) * Adding project level scopes for groups and roles. * Adding tests to verify the routes are working as expected.	6 years ago
Todd Knight	08e9a027fa	API for authenticate/deauthenticate (#151 ) * Creating the authentication API.	6 years ago
Jeff Mitchell	d8f11af4d7	Move actions, resource (types), and scopes to packages. (#149 )	6 years ago
Jeff Mitchell	9d1d0ba08e	Simplify UI passthrough logic (#148 ) I realized we can handle the special case of `/index.html` by ensuring that `/` does the right thing because that's _also_ standard behavior to fetch `/index.html`. As a result this allows a lot of simplification.	6 years ago
Jeff Mitchell	8de5371499	Enable UI handling logic with dev passthrough directories. (#145 ) * Enable UI handling logic with dev passthrough directories. * Add tests and fix a couple of things	6 years ago
Jeff Malnick	6c2a17c845	feat: use root path for passthrough (#141 )	6 years ago
Todd Knight	a02222c1f0	Adding List functionality for projects. (#140 )	6 years ago
Todd Knight	766c174fe9	Implement List Groups (#133 ) * Implement List Groups * Updating ListGroup's comments and tweaking variable name.	6 years ago
Todd Knight	5b1e4a680d	Create Role CUDLR API and SDK (#135 ) * Implement the Role CRUD API. * Implement the Role List API. * Adding Roles SDK.	6 years ago
Todd Knight	0a0d37668d	Org List and Get API Methods (#132 ) * Create the organization Get handler. * Added org listing. * Make sure the cmp.Diff always sorts the returned organizations before comparing. * Connect organization service to the Controller handler.	6 years ago
Todd Knight	6ea448a7f3	Adding Groups API endpoint and SDK (#122 ) * feat: Add group grpc handler. * feat: Add group sdk hooks. * fix: Adding forgotten generated group sdk file. * fix: Fix a copy/paste error in test msg. * fix: Correct assert error msg. * fix: Remove unused proto imports.	6 years ago
Todd Knight	df6ca5289f	Create User Service Handler and SDK (#106 ) * Create user handler stuff. * Fixing Not Found errors from DB. * Fixing param names. * Update the proto's go package generation. * Generate the user resource. * Adding SDK methods for users. * Fix the base type of Users and add tests. * Connect user service to the controller handler. * Attach the default org to the Test Controller's client. * Take into account the provided request paths when the client builds the org/project path prefix. * Adding comments to the API. * rename repo function to repoFn. * Fix typo in update mask errors. * Clean up tests. * Remove special checks for request url content in the api client and fix CORS test.	6 years ago
Todd Knight	2c3fbe3024	Invalid Argument errors provide per field details. (#110 ) * Invalid Argument errors now return a per field error message. * Creating an API error struct. * SDK uses field error details proto. * Adding tests specifically for handler helper error messages resulting in expected API output. * Inlining the error checks into the table driven tests. Use protocmp for assertions to make printing out diffs easier to parse. * Aggregate the invalid argument fields detected to be wrong. * Make the returned order of fields deterministic in the error details.. * Fixing formatting issue in errors_test.go. * Test to confirm unimplemented results in a 405 and not 404.	6 years ago
Todd Knight	6804c98b0b	Applying Host Catalog comments to Projects (#105 ) * NewService for the project service now returns a non pointer and an error. * Replacing t.Fatal calls with require.NoError calls. * Initialize empty slices following the recommended way. * Don't inline the prefix strings when validating requests. * Check error when cleaning up the test. * Add check that update updates the time. * Use google.golang.org/protobuf where possible instead of github.com/golang/protobuf. * Shorten the validateX function names. * Inline API responses. * Change test cleanup error logging to t.Errorf. * Remove unneeded creation of an extra project. * Inline regex check for invalid id. * Build the pb.Project inline when converting from db to wire proto. * Change stored repos into repo creating functions. * Using iam.TestScopes instead of creating them myself. * Remove out of date comments. * Update name to match go test naming standards. * Adding project service comments. * Using scopeType's new prefix method inside scope.go * Setting test project's name and desc to default to pass tests. * Change host catalog to project in test. * Fixing merge errors. * Fixing some more merge errors. * Fix typo in comments. * Fix typos in project_service.go. * Update error indicating provided id and the expected prefix. * Make the RepoFactory types in a common directory.	6 years ago
Todd Knight	7f6e78e66e	Handler hostcatalogs (#86 ) * Created host catalog service. * Fixing uri generation for create. * Use newly submitted static host catalog. * Copying over tests from projects. * Fix UpdateHostCatalogRequest merging proto. * Properly use static host catalog prefixes in tests. * Correct test to verify the expected uri and id prefix is set. * Add test for unsetting descriptions. * Correct bad spelling in comment. * Tweaking variable names. * Adding Stringer to the catalog type and setting the type on the response. * Setting up the catalogType to contain more info regarding its type. * Validate the type field in requests. * Remove unused method. * Comment describing invariants around types. * Wiring in the repo into the static catalog handler. * Updated comments to the exported methods. * fix: return the result of handlers.NotFoundError instead of just calling it. * Fixing typos referencing just hosts instead of host catlogs. * Update NewService returns an error and a non pointer type. * Pull "org_id" and "project_id" into constants and the validation of them into the ValidateAncestors. * Check errors for all RegisterHandlerServer calls. fix: Remove left over reference that could cause a panic. * fix: Changing "x := []string{}" to "var x []string" * fix: Log errors in test cleanup. * Changing the code to use google.golang.org/protobuf instead of the older github based protobuf library. * Changing all t.Fatal checks to require.NoError calls. * Changing unrecognized prefixes to Invalid Argument instead of Not Found. * fix: toDbUpdateMask now returns error if it was unable to find any valid paths. * Define CreatedTime, UpdatedTime, and Type at initialization time in toProto. * Remove unused host catalog from test. * Change a t.Fatal to a require.NoError that I missed earlier. * Change shutdown error logging to t.Errorfs. * Shorten validateX function names. * Inline API responses. * Add todo to make a new repo per request. * Inline regex check for invalid id. * Change stored repos into repo creating functions which satisfies ICU-223. * Wrap proto comments to be under 80 characters long. * Remove the exception on the read only fields that can be set in an Update request. * Removing out of date comment. * Use iam.TestScopes instead of making the project myself. * Renaming files to be consistant with go test standards and resource naming standards. * Remove TODO related to a task completed in an earlier commit. * Fix the previous commit which removed the wrong TODO.	6 years ago
Todd Knight	40c14d8232	Adding field names into the table driven test and removed zero values. (#85 )	6 years ago
Todd Knight	6dd083fa42	Change 501 errors to 405 (#80 ) * Unimplemented errors should result in a 405 instead of a 501.	6 years ago
Todd Knight	44152ae63e	Add API Error Handler (#74 ) * Add error handler that converts from rpc.Status errors to Watchtower API errors. * Better testing for ErrorHandler. * Rename testcase and remove empty default switch case. * Change the error status back to int64. * Converting everything to int32s. jsonpb wraps int64s as a string which we dont like. We'll figure out how to use values larger than int64s when it comes up. * Remove special casing for TraceId which isn't needed anymore. * Removing wrappers from error details since we never need to know when they are set or unset from the end user. * Using the helper error functions inside the project service. * Correct usage of hclog, replace panic with Error log. * Adding periods to all API returned errors, correct spelling, fix missed invalid argument error not using helper function. * Change our logged errors to Error instead of Warn. * Add TODO for defining and using our own defined API error codes. * Add TODO to remove internal error messages.	6 years ago
Jeff Mitchell	1e78d01c6b	Fix panic in handler test by providing empty config	6 years ago
Jeff Mitchell	374a3991a2	Add a passthrough directory feature. (#76 ) This is only compiled in when a `dev` build tag is specified (see #75) for safety. Attempting to use the flag without that tag at build time will fail. However, it is always available within the codebase itself so that tests can be written against this functionality in a programmatic way. Manual testing was performed; no plans to add automated ones as this isn't production-necessary nor exported functionality.	6 years ago
Jeff Mitchell	fafdcbbfa4	CORS support (#73 ) This adds per-listener CORS support. Logic is ported from Vault, along with a fully new test suite.	6 years ago
Todd Knight	ba00b511e7	Add Project Delete to API (#66 ) * carve out scope into a separate branch for a PR * refactor getOpts to be private * narrowed to just the scope proto * wrap in a transaction * remove user from scopes PR * make scope type immutable * refactored with more referential integrity (thanks mike) * refactor based on pair programming with Mike * better VetForWrite that supports db.Options but that requires GetOpts and Options to be exported. * stop printing out all the db logs * refactor withScope to be private * refactor the VetForWrite a bit based on Todd's PR comment * fix typo Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com> * fix ctx propagation and Scope returns * fix ctx propagation and use a const for std retry count * change Std to Crud * fix ctx propagation * make sure update with field masks doesn't update a field not in the mask and force a read after update. * add description * remove comment about future * clean error strings * clean up enum string rep * stdMeta * fix return value to be just nil * fix returns and errors * update test to match new error string * change len of domain to 24 * provide common function for new public ids * use common db.NewPublicId() and provide the correct prefix * move list out of CrudActions and provide a CrudlActions shortcut as well * some comments about the purpose of VetForWrite() * move to random 10 * Adding project API interface. * Creation of Project handler and Tests * Move to using the iam objects. * Setting up testify framework for mocking and assertions. * Fix iam options typo references. * Adding tests for CreateProject and UpdateProject. This also adds some additional argument validation. * Merging in PR 40 * Renamed fakeRepo to mockRepo * Changing around TODOs to capture current plans with the code. * Remove the repo interface and use a real DB for tests. * Fixed a few tests. * Adding checks for properly formatted identifiers. * Updating code to account for recent merges. Relaxing some restrictions on what an id can look like. * Added small comment explaining why RegisterGrpcGatewayer interface exists. * Move project service up a call level. Long term I think it would make sense to define these services even higher up the call stack, potentially at the initialization of the controller server, near where the DB is initialized. * Making these fields align with those in the resources under hosts/... * Hard code the service initialization in the handler registration code. * Regenerate project related code proto code. * Removing type field for project. * Adds basic project handling in CLI/SDK (#47) * Adds SDK for creating and reading projects * Reorganizes a bit * Adds CLI for creating and reading projects * Fixes some some generation bugs * Adds redirect support for default org ID * Fix protobuf import references being moved. * Update client test to look for "orgs" and "projects" instead of "org" and "project" * Update expected segments test * Fix setAddr handling when default organization is in use * Set client in target after create or read * Adding functionality and tests for update masks. * Additional tests for update. Disable update non existant project test. * Make not providing an update mask be an invalid argument. * Make empty update mask paths and no mutable fields in the path an InvalidArgument error. * Fix get Project test. * Adding back in the Update a non existant project test case. * Adding seperate path structured tests. * Adding delete from repository API call. * Update calls to LookupScope and DeleteScope. * Pass in only what is needed for interfacing with the repo. * Creating delete sdk methods for the first time. * Create delete generation functionality in go sdk. * Use assert for tests instead of if statements. Co-authored-by: Jim Lambert <jimlambrt@Jims-MBP-3.home> Co-authored-by: Jim <jlambert@hashicorp.com> Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com> Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	6 years ago
Todd Knight	95d29c3e95	Allow the TestController to be referenced externally (#65 ) * Allow the TestController to be used outside of our go module. * Adding package comment explaining this testing package is for internal use only.	6 years ago
Todd Knight	7f0dfa2344	Fix Update Project Logic (#54 ) * carve out scope into a separate branch for a PR * refactor getOpts to be private * narrowed to just the scope proto * wrap in a transaction * remove user from scopes PR * make scope type immutable * refactored with more referential integrity (thanks mike) * refactor based on pair programming with Mike * better VetForWrite that supports db.Options but that requires GetOpts and Options to be exported. * stop printing out all the db logs * refactor withScope to be private * refactor the VetForWrite a bit based on Todd's PR comment * fix typo Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com> * fix ctx propagation and Scope returns * fix ctx propagation and use a const for std retry count * change Std to Crud * fix ctx propagation * make sure update with field masks doesn't update a field not in the mask and force a read after update. * add description * remove comment about future * clean error strings * clean up enum string rep * stdMeta * fix return value to be just nil * fix returns and errors * update test to match new error string * change len of domain to 24 * provide common function for new public ids * use common db.NewPublicId() and provide the correct prefix * move list out of CrudActions and provide a CrudlActions shortcut as well * some comments about the purpose of VetForWrite() * move to random 10 * Adding project API interface. * Creation of Project handler and Tests * Move to using the iam objects. * Setting up testify framework for mocking and assertions. * Fix iam options typo references. * Adding tests for CreateProject and UpdateProject. This also adds some additional argument validation. * Merging in PR 40 * Renamed fakeRepo to mockRepo * Changing around TODOs to capture current plans with the code. * Remove the repo interface and use a real DB for tests. * Fixed a few tests. * Adding checks for properly formatted identifiers. * Updating code to account for recent merges. Relaxing some restrictions on what an id can look like. * Added small comment explaining why RegisterGrpcGatewayer interface exists. * Move project service up a call level. Long term I think it would make sense to define these services even higher up the call stack, potentially at the initialization of the controller server, near where the DB is initialized. * Making these fields align with those in the resources under hosts/... * Hard code the service initialization in the handler registration code. * Regenerate project related code proto code. * Removing type field for project. * Adds basic project handling in CLI/SDK (#47) * Adds SDK for creating and reading projects * Reorganizes a bit * Adds CLI for creating and reading projects * Fixes some some generation bugs * Adds redirect support for default org ID * Fix protobuf import references being moved. * Update client test to look for "orgs" and "projects" instead of "org" and "project" * Update expected segments test * Fix setAddr handling when default organization is in use * Set client in target after create or read * Adding functionality and tests for update masks. * Additional tests for update. Disable update non existant project test. * Make not providing an update mask be an invalid argument. * Make empty update mask paths and no mutable fields in the path an InvalidArgument error. * Fix get Project test. * Adding back in the Update a non existant project test case. * Adding seperate path structured tests. * Attach an issue id to field mask validation TODO. * Generate Project Update SDK code (#58) * Created the UpdateFunction method. * Regenerate protobuf derived code since pull #50 updated dependencies. * Special case IDs to not be passed for updates. * Updated the tools file since imports reordered it. * Add spaces between each tools import/comment grouping. Co-authored-by: Jim Lambert <jimlambrt@Jims-MBP-3.home> Co-authored-by: Jim <jlambert@hashicorp.com> Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com> Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	6 years ago
Todd Knight	ff705bf3b2	Revert "Allow the TestController to be used outside of our module." This reverts commit `e1010ba0`	6 years ago
Todd Knight	e1010ba055	Allow the TestController to be used outside of our module.	6 years ago
Jim	980a55a4e3	Added DeleteScope() with tests and TestVerifyOplog() for easier testing (#49 )	6 years ago
Jim	ee46266893	ErrRecordNotFound from LookupWhere() when no rows found (#59 )	6 years ago
Jeff Mitchell	f8b456f3a7	Add TestController (#50 ) This can be used in tests to get access to a controller that behaves just like a dev controller but doesn't require the normal Command bits (UI, etc). This can be enhanced over time as needed; for now it's pretty simple but it's good enough to be used for API tests. A simple project create/read API test is added as well, which serves to show the programmatic model (as well as test those functions at the API level).	6 years ago
Jeff Mitchell	f287a268e8	Update project service against changed repo	6 years ago
Todd Knight	c0c6a9b0b8	Handler project (#44 ) * Renamed fakeRepo to mockRepo * Changing around TODOs to capture current plans with the code. * Remove the repo interface and use a real DB for tests. * Fixed a few tests. * Adding checks for properly formatted identifiers. * Updating code to account for recent merges. Relaxing some restrictions on what an id can look like. * Added small comment explaining why RegisterGrpcGatewayer interface exists. * Move project service up a call level. Long term I think it would make sense to define these services even higher up the call stack, potentially at the initialization of the controller server, near where the DB is initialized. * Making these fields align with those in the resources under hosts/... * Hard code the service initialization in the handler registration code. * Regenerate project related code proto code. * Removing type field for project. * Adds basic project handling in CLI/SDK (#47) * Adds SDK for creating and reading projects * Reorganizes a bit * Adds CLI for creating and reading projects * Fixes some some generation bugs * Adds redirect support for default org ID * Fix protobuf import references being moved. * Update client test to look for "orgs" and "projects" instead of "org" and "project" * Update expected segments test * Fix setAddr handling when default organization is in use * Set client in target after create or read Co-authored-by: Jim Lambert <jimlambrt@Jims-MBP-3.home> Co-authored-by: Jim <jlambert@hashicorp.com> Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com> Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	6 years ago
Jeff Mitchell	4d1b916348	Remove AllLoggers (#39 ) This was copied from Vault code but shouldn't be necessary any more as a change in hclog a while back meant that derived loggers share the log level of the parent.	6 years ago
Jeff Mitchell	6254e18698	Fix compilation of command	6 years ago
Todd Knight	c7126ae69b	Static Catalog Api definition (#12 ) * Setup buf to see and process protos correctly. This commit adds a proposed directory structure for protos. Included is a rough draft of the Ec2Catalog protos. * Add host and host_catalog service apis. This also has for the first time the move away from holding individual ids for resources and instead using the full uri path as the api facing identifier. There are some issues with the swagger generation stripping out the format of the path matching so currently only PATCH uses the approach I would like to move to. In follow up commits I'll try to either get swagger to display the correct expected paths or I'll resolve if that is even needed by our clients. * Move all protos and generated files to under the internal directory. This also required updating the buf config to explicitly name the exluded linted proto files under oplog since previously /internal/ was listed as a root in buf. Future commit will move oplog proto files to be with the others. * Moved oplog related protos to under the proto directory and regenerated. * Update the oplog protos to be compliant with buf lint. * Clean up comments in tools. * Merged in recent changes to oplog protos. * Add resource result messages to contain the read only fields and separate them from the writable fields. * Merge the ec2 catalog resources in with the more generic host_catalog resource. * Cleaning the generated swagger. This included adding summaries for each proto rpc method, Making the resources be the full fqn, removing the default error, and a few other tweaks. * Make project plural in the paths. * Adding the ability to add and remove hosts from a host set. * Add the ignore result limit for host set request. * Make size and host lists read only. * Add documentation about what host references are allowed to be added. * Remove ignore result limit when listing items. These can be added in later. * Add handlers and tests for unimplemented services. * Add bootstrap target and update how tools are built (#13) * Update tool installation method, add bootstrap target to makefile * Changing org to orgs in all paths and org param to org_id. * Adding tests for unimplemented service implementations. Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	6 years ago
Jeff Mitchell	5e82db8a2d	Minor bugfixes and cleanup	6 years ago
Jeff Mitchell	cad3c24f54	Add auth over ALPN (#5 )	6 years ago
Jeff Mitchell	5acda6a0b1	Begin purpose-based listener refactoring (#4 )	6 years ago
Jeff Mitchell	07032f6908	Refactoring and the worker is more distinct now (#3 )	6 years ago
Michael Gaffney	5e5a56cac0	Refactor names to avoid stutter (#1 ) Since client code uses the package name as a prefix when referring to the package contents, the names for those contents need not repeat the package name. - Rename base.BaseCommand to base.Command - Rename base.BaseServer to base.Server - Rename config.DevConfig() to config.Dev() - Rename config.LoadConfigFile() to config.LoadFile() - Rename config.NewConfig() to config.New() - Rename config.ParseConfig() to config.Parse() - Rename controller.ControllerCommand to controller.Command - Rename controller.NewController() to controller.New() - Rename dev.DevCommand to dev.Command - Rename listener.ListenerFactory to listener.Factory - Rename listener.NewListener() to listener.New() - Rename version.GetVersion() to version.Get() - Rename version.VersionInfo to version.Info See: - https://golang.org/doc/effective_go.html#package-names - https://blog.golang.org/package-names#TOC_3. - https://github.com/golang/go/wiki/CodeReviewComments#package-names	6 years ago
Jeff Mitchell	482b4d56dd	Initial commit	6 years ago

... 2 3 4 5 6 ...

313 Commits (5fe40bc7bd200788e34d8bcf4ce1dfd1da5bbad2)