13 Commits

Author	SHA1	Message	Date
Gyu-Ho Lee	a53175949e	auth: improve 'removeSubsetRangePerms' to O(n)	2016-12-13 15:43:23 -08:00
Jason E. Aten	ef1ef0ba16	auth: fix range handling bugs. ... Test 15, counting from zero, in TestGetMergedPerms in etcd/auth/range_perm_cache_test.go, was trying incorrectly assert that [a, b) merged with [b, "") should be [a, b). Added a test specifically for this. This patch fixes the incorrect larger test and the bugs in the code that it was hiding. Fixes #6359	2016-09-12 09:23:19 -05:00
davygeek	8c96d2573f	*: fixed some warning	2016-06-30 23:13:46 +08:00
Xiang Li	e67613830e	auth: fix remove subset when there are equal ranges	2016-06-13 17:13:55 -07:00
Xiang Li	38546a9d24	auth: use bytes equal when possible	2016-06-13 16:37:21 -07:00
Xiang Li	390c89b7f9	auth: remove the special checking case for key auth	2016-06-13 16:37:20 -07:00
Xiang Li	9be65414eb	auth: add key support in merge func	2016-06-13 16:37:20 -07:00
Gyu-Ho Lee	e9d2eb2b54	auth: key, range in []byte type ... Fix https://github.com/coreos/etcd/issues/5655.	2016-06-13 14:21:22 -07:00
Xiang Li	1bbe09eb3c	auth: clean permission checking	2016-06-10 19:23:20 -07:00
Xiang Li	f99ff5d513	auth: cleanup get perm func	2016-06-10 16:36:51 -07:00
Xiang Li	77efe4cda9	auth: clean up range_perm_cache.go	2016-06-10 15:21:04 -07:00
Xiang Li	1958598a18	auth: add getRole	2016-06-10 10:59:34 -07:00
Hitoshi Mitake	6bb96074da	auth, etcdserver: permission of range requests ... Currently the auth mechanism doesn't support permissions of range request. It just checks exact matching of key names even for range queries. This commit adds a mechanism for setting permission to range queries. Range queries are allowed if a range of the query is [begin1, end1) and the user has a permission of reading [begin2, range2) and [begin1, end2) is a subset of [begin2, range2). Range delete requests will follow the same rule.	2016-06-08 11:57:32 -07:00