etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
20,733 Commits 321 Branches 325 Tags 941 MiB
Commit Graph

20733 Commits

Author SHA1 Message Date
Prachi Damle 5c7db71bbb Duplicate getter-setter after merge 2013-10-10 00:47:36 -07:00
Prachi Damle 8245154c2f Schema change to add role_type to acl_role 2013-10-10 00:46:09 -07:00
Prachi Damle ec4fa61ae3 Tested ACL for StartVmCmd using the new RoleBasedEntityAccessChecker 2013-10-10 00:46:06 -07:00
Prachi Damle 7d1ba6505d RoleBasedEntityAccessChecker logic now performs checkAccess for VM entity 2013-10-10 00:43:59 -07:00
Prachi Damle 0b1aaf514f More logic to Role based checker 2013-10-10 00:43:56 -07:00
Prachi Damle 7ebb972885 SecurityChecker checking against the acl_entity_permission table 2013-10-10 00:41:11 -07:00
Min Chen 2b4703b6e6 Change ListVMsCmd to use new role and entity permission information. 2013-10-09 21:56:52 -07:00
Min Chen f59e47b263 Clean up ListVMsCmd implementation to not using Criteria class. 2013-10-08 15:11:56 -07:00
Min Chen 8428f49e46 Change method name. 2013-10-08 15:11:07 -07:00
Min Chen 9cd1a95327 Fix search criteria to support searching both specific entityType and *. 2013-10-08 14:50:46 -07:00
Min Chen 11fe1f527a Add role permission for normal user role. 2013-10-08 11:08:54 -07:00
Min Chen 88e12c9b8e Fix a bug in populating acl_role_permission. 2013-10-07 17:26:46 -07:00
Min Chen b87b9e5c64 Add Scope to acl_role_permission, remove parent_role_id from acl_role 
table, and create PermissionScope and AclEntityType enum types.
 2013-10-07 16:09:26 -07:00
Min Chen 4499a7bfa0 Merge branch 'rbac' of https://git-wip-us.apache.org/repos/asf/cloudstack into rbac 2013-10-07 14:32:29 -07:00
Prachi Damle 579806440b Add permission flag to acl_entity_permission 2013-10-07 14:30:15 -07:00
Min Chen 7342c97fa9 Populate acl_group_account_map table in creating an account. 2013-10-07 13:20:49 -07:00
Prachi Damle 385dfc230f Schema and VO/Dao for Role Permission 2013-10-07 12:33:28 -07:00
Prachi Damle 2bbe6f5937 APIChecker helper methods implemented 2013-10-07 12:33:24 -07:00
Min Chen ddd4f80911 Revert "Revert "Fix a bug in generating account response, passed wrong parameter to get"" 
This reverts commit 283ec27934.
 2013-10-07 12:00:51 -07:00
Min Chen 440f03e548 Revert "Fix a listAccount regression due to root admin role refactoring." 
This reverts commit d79cb380e1.
 2013-10-07 12:00:38 -07:00
Min Chen d79cb380e1 Fix a listAccount regression due to root admin role refactoring. 2013-10-07 11:53:38 -07:00
Min Chen 283ec27934 Revert "Fix a bug in generating account response, passed wrong parameter to get" 
This reverts commit b633950a68.
 2013-10-07 11:47:01 -07:00
Min Chen ded2785bb1 Add interface method to remove account group association from 
acl_group_account_map.
 2013-10-07 11:46:40 -07:00
Min Chen b633950a68 Fix a bug in generating account response, passed wrong parameter to get 
account resource limit.
 2013-10-02 17:46:00 -07:00
Min Chen d84d62a1e0 Separate Admin and User command and response for ListVMsCmd. 2013-10-02 17:45:14 -07:00
Min Chen bcd4cdd295 Fix compilation issue due to method rename. 2013-10-02 14:14:25 -07:00
Prachi Damle 8c15e61653 Created plugin for RoleBased Checkers 2013-10-01 18:16:06 -07:00
Prachi Damle bb271926fb WIP AccessChecker plugin 2013-10-01 18:11:30 -07:00
Min Chen 5583506c0c Add entity permission grant and revoke API. 2013-09-30 17:03:34 -07:00
Min Chen de0904ba63 Modify AccountResponse to return groups that account belongs to. 2013-09-30 14:14:38 -07:00
Min Chen d4d3c69a25 Add AclGroupJoinDaoImpl bean into applicationContext.xml. 2013-09-27 18:17:34 -07:00
Min Chen 0be374a796 Add All Apis for ACL Group. 2013-09-27 18:16:18 -07:00
Min Chen ed22dfef1b Add transaction handling in AclServiceImpl, and parent role support in 
createAclRole.
 2013-09-27 10:14:13 -07:00
Min Chen 97fd99b09a Add all Apis for AclRole. 2013-09-26 17:48:29 -07:00
Min Chen fce2aad23d WIP For APIs related to ACL Roles. 2013-09-26 11:22:43 -07:00
Prachi Damle 4294005142 Check if an Account belongs to RootAdmin group 2013-09-24 17:01:43 -07:00
Prachi Damle aba54356d5 Account_Type Refactoring for Root Admin Role 
- change the AccountService::isRootAdmin(short) to  isRootAdmin(long accountId);
- Change all callers
- Change all places that check the account.getType() directly to call the AccountManagerImpl.
 2013-09-24 15:31:09 -07:00
Min Chen ddae23c168 Add parent_role_id to acl_role table. 2013-09-23 13:18:57 -07:00
Min Chen 12b6e700b6 The first version of all the ACL VOs and DAOs. 2013-09-19 17:50:33 -07:00
Min Chen 354588611a Add missing table acl_group_role_map, as well as adding columns. 2013-09-19 17:49:49 -07:00
Prachi Damle 7b4998fcd8 Copy the commands.properties file to utils/conf at build time, so that DB upgrade script can refer to it to load the api permissions 2013-09-19 16:42:04 -07:00
Prachi Damle 3333a04c40 During Upgrade to 4.3, Populate the API Permissions per Out-Of-Box Role from commands.properties file 2013-09-19 12:32:54 -07:00
Min Chen ad6af49f03 Populate acl_group_account_map for existing accounts. 2013-09-19 10:26:59 -07:00
Min Chen 7b358ec0df Populate default out-of-box acl roles, converted from ACCOUNT_TYPE 
enum.
 2013-09-19 09:48:26 -07:00
Min Chen b367a62a83 Add ACL related DB schema. 2013-09-18 22:20:01 -07:00
Prachi Damle 62d60c2b77 CLOUDSTACK-4664: [ZWPS] High delay to start a stopped VM which has ROOT/DATA volumes migrated to Second Zone wide primary Storage(More than 10 mins) 
Changes:
- DeploymentPlanningManager needs to reuse the zone wide primary storage pool when VM's volume is READY
 2013-09-18 16:52:07 -07:00
Prachi Damle 7416383fcd CLOUDSTACK-4651: Restarting management server when volume Snapshot is still in progress for root volume of a VM , then there is no way to restart VM since the startVM job is stuck forever since the volume is in "Snapshoting" state. 
Change:
-If no volume of the VM is usable, VM cannot be deployed or started. Atleast ROOT volume should always be in usable state to start up the VM
 2013-09-18 16:52:04 -07:00
Prachi Damle f2ea699d12 CLOUDSTACK-4668: Upgrade to 4.2 fails with NullPointerException when hypervisor_type is null for a cluster entry 
Changes:
- Care for null value during comparing the hypervisor_type
- Do not consider removed clusters
- Method rename according to coding conventions
 2013-09-18 16:52:01 -07:00
Jessica Wang 723ef6e495 CLOUDSTACK-4702: UI > Network menu > Add Guest Network dialog > UI shouldn't pass null zoneid to listnetworkofferings API when zone dropdown is empty (i.e. when no advanced zone exists). 2013-09-18 16:45:01 -07:00
Alena Prokharchyk 3ab8d8d8f2 Fixed non-oss build broken in Juniper SRX with commit 2614b00c51 2013-09-18 16:37:00 -07:00