New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add OPA policies for NSM registries #1334
Add OPA policies for NSM registries #1334
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Other things looks fine to me.
@edwarnicke Could you have a look?
func WithRegisterPolicies(p ...Policy) Option { | ||
return func(o *options) { | ||
o.registerPolicies = p | ||
} | ||
} | ||
|
||
// WithUnregisterPolicies sets custom policies for unregister check | ||
func WithUnregisterPolicies(p ...Policy) Option { | ||
return func(o *options) { | ||
o.unregisterPolicies = p | ||
} | ||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Could you remind why do we need different setters?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
First one sets policies for Register case
Second one sets policies for Unregister case
96cb941
to
fc4b97b
Compare
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
10ef63d
to
a558750
Compare
Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
…k@main PR link: networkservicemesh/sdk#1334 Commit: a546f3c Author: Nikita Skrynnik Date: 2022-09-13 18:11:13 +0700 Message: - Add OPA policies for NSM registries (#1334) * add auth registy chain element Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add unit test + add test policy Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix test policy and policy input Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rework spiffieIDNSEMap Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * rename and move nse register validation policy to opa folder Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add register and unregister policies to authorizeNSEServer Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add policy for NSE unregister case + cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * start adding ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * finish ns_server Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix tests Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add StringSet type Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * cleanup Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add authorize registry servers to nsmgr opts Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * add default policies to opa registry Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * use the same registry for register and unregister cases Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * run goimports Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> * fix linter issue Signed-off-by: Nikita Skrynnik <nikita.skrynnik@xored.com> Signed-off-by: NSMBot <nsmbot@networkservicmesh.io>
Description
Issue link
#269
How Has This Been Tested?
Types of changes