1
0
mirror of https://github.com/minio/minio.git synced 2025-01-22 12:13:16 -05:00

20 Commits

Author SHA1 Message Date
Harshavardhana
069432566f update license change for MinIO
Signed-off-by: Harshavardhana <harsha@minio.io>
2021-04-23 11:58:53 -07:00
Harshavardhana
e730da1438
fix: referesh JWKS public keys upon failure ()
fixes 
2020-08-28 08:15:12 -07:00
Harshavardhana
abbf6ce6cc
simplify JWKS decoding in OpenID and more tests ()
add tests for non-compliant Azure AD behavior
with "nonce" to fail properly and treat it as
expected behavior for non-standard JWT tokens.
2020-07-25 08:42:41 -07:00
Harshavardhana
cd849bc2ff
update STS docs with new values ()
Co-authored-by: Poorna <poornas@users.noreply.github.com>
2020-07-15 14:36:14 -07:00
Harshavardhana
e92434c2e7
fix: support client customized scopes for OpenID ()
Fixes 
2020-06-22 12:08:50 -07:00
Harshavardhana
1bc32215b9
enable full linter across the codebase ()
enable linter using golangci-lint across
codebase to run a bunch of linters together,
we shall enable new linters as we fix more
things the codebase.

This PR fixes the first stage of this
cleanup.
2020-05-18 09:59:45 -07:00
Taras Parkhomenko
b2a8cb4aba
Add SHA-3 support () 2020-04-10 14:59:52 -07:00
Harshavardhana
e2b3c083aa
fix: close and drain the response body always () 2020-01-21 02:46:58 -08:00
Harshavardhana
686d4656de
fix: set appropriate defaults when new keys added ()
A new key was added in identity_openid recently
required explicitly for client to set the optional
value without that it would be empty, handle this
appropriately.

Fixes 
2020-01-10 16:57:18 -08:00
Harshavardhana
abc1c1070a Add custom policy claim name ()
In certain organizations policy claim names
can be not just 'policy' but also things like
'roles', the value of this field might also
be *string* or *[]string* support this as well

In this PR we are still not supporting multiple
policies per STS account which will require a
more comprehensive change.
2020-01-08 17:21:58 -08:00
Harshavardhana
c9940d8c3f Final changes to config sub-system ()
- Introduces changes such as certain types of
  errors that can be ignored or which need to 
  go into safe mode.
- Update help text as per the review
2019-12-04 15:32:37 -08:00
Harshavardhana
0bfd20a8e3
Add client_id support for OpenID ()
- One click OpenID authorization on Login page
- Add client_id help, config keys etc

Thanks to @egorkaru @ihostage for the
original work and testing.
2019-11-29 21:37:42 -08:00
Harshavardhana
b21835f195 Honor DurationSeconds properly for WebIdentity ()
Also cleanup code to add various constants for
verbatim strings across the code base.

Fixes 
2019-11-29 18:57:54 +05:30
Harshavardhana
78eb3b78bb
Repurpose Get/SetConfig as import/export support () 2019-11-26 10:08:25 -08:00
Harshavardhana
5ac4b517c9
Order all keys in config ()
New changes

- return default values when sub-sys is
  not configured.
- state is hidden parameter now
- remove worm mode to be saved in config
2019-11-20 15:10:24 -08:00
Harshavardhana
26a866a202
Fix review comments and new changes in config ()
- Migrate and save only settings which are enabled
- Rename logger_http to logger_webhook and
  logger_http_audit to audit_webhook
- No more pretty printing comments, comment
  is a key=value pair now.
- Avoid quotes on values which do not have space in them
- `state="on"` is implicit for all SetConfigKV unless
  specified explicitly as `state="off"`
- Disabled IAM users should be disabled always
2019-11-13 17:38:05 -08:00
Kanagaraj M
4082764d48 fix loading config from openid config_url () 2019-11-11 09:31:46 -08:00
Harshavardhana
9e7a3e6adc Extend further validation of config values ()
- This PR allows config KVS to be validated properly
  without being affected by ENV overrides, rejects
  invalid values during set operation

- Expands unit tests and refactors the error handling
  for notification targets, returns error instead of
  ignoring targets for invalid KVS

- Does all the prep-work for implementing safe-mode
  style operation for MinIO server, introduces a new
  global variable to toggle safe mode based operations
  NOTE: this PR itself doesn't provide safe mode operations
2019-10-30 23:39:09 -07:00
Harshavardhana
47b13cdb80 Add etcd part of config support, add noColor/json support ()
- Add color/json mode support for get/help commands
- Support ENV help for all sub-systems
- Add support for etcd as part of config
2019-10-30 00:04:39 -07:00
Harshavardhana
ee4a6a823d Migrate config to KV data format ()
- adding oauth support to MinIO browser () by @kanagaraj
- supports multi-line get/set/del for all config fields
- add support for comments, allow toggle
- add extensive validation of config before saving
- support MinIO browser to support proper claims, using STS tokens
- env support for all config parameters, legacy envs are also
  supported with all documentation now pointing to latest ENVs
- preserve accessKey/secretKey from FS mode setups
- add history support implements three APIs
  - ClearHistory
  - RestoreHistory
  - ListHistory
- add help command support for each config parameters
- all the bug fixes after migration to KV, and other bug
  fixes encountered during testing.
2019-10-22 22:59:13 -07:00