etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
20,728 Commits 323 Branches 325 Tags 836 MiB
Commit Graph

20728 Commits

Author SHA1 Message Date
Prachi Damle 7ebb972885 SecurityChecker checking against the acl_entity_permission table 2013-10-10 00:41:11 -07:00
Min Chen 2b4703b6e6 Change ListVMsCmd to use new role and entity permission information. 2013-10-09 21:56:52 -07:00
Min Chen f59e47b263 Clean up ListVMsCmd implementation to not using Criteria class. 2013-10-08 15:11:56 -07:00
Min Chen 8428f49e46 Change method name. 2013-10-08 15:11:07 -07:00
Min Chen 9cd1a95327 Fix search criteria to support searching both specific entityType and *. 2013-10-08 14:50:46 -07:00
Min Chen 11fe1f527a Add role permission for normal user role. 2013-10-08 11:08:54 -07:00
Min Chen 88e12c9b8e Fix a bug in populating acl_role_permission. 2013-10-07 17:26:46 -07:00
Min Chen b87b9e5c64 Add Scope to acl_role_permission, remove parent_role_id from acl_role 
table, and create PermissionScope and AclEntityType enum types.
 2013-10-07 16:09:26 -07:00
Min Chen 4499a7bfa0 Merge branch 'rbac' of https://git-wip-us.apache.org/repos/asf/cloudstack into rbac 2013-10-07 14:32:29 -07:00
Prachi Damle 579806440b Add permission flag to acl_entity_permission 2013-10-07 14:30:15 -07:00
Min Chen 7342c97fa9 Populate acl_group_account_map table in creating an account. 2013-10-07 13:20:49 -07:00
Prachi Damle 385dfc230f Schema and VO/Dao for Role Permission 2013-10-07 12:33:28 -07:00
Prachi Damle 2bbe6f5937 APIChecker helper methods implemented 2013-10-07 12:33:24 -07:00
Min Chen ddd4f80911 Revert "Revert "Fix a bug in generating account response, passed wrong parameter to get"" 
This reverts commit 283ec27934.
 2013-10-07 12:00:51 -07:00
Min Chen 440f03e548 Revert "Fix a listAccount regression due to root admin role refactoring." 
This reverts commit d79cb380e1.
 2013-10-07 12:00:38 -07:00
Min Chen d79cb380e1 Fix a listAccount regression due to root admin role refactoring. 2013-10-07 11:53:38 -07:00
Min Chen 283ec27934 Revert "Fix a bug in generating account response, passed wrong parameter to get" 
This reverts commit b633950a68.
 2013-10-07 11:47:01 -07:00
Min Chen ded2785bb1 Add interface method to remove account group association from 
acl_group_account_map.
 2013-10-07 11:46:40 -07:00
Min Chen b633950a68 Fix a bug in generating account response, passed wrong parameter to get 
account resource limit.
 2013-10-02 17:46:00 -07:00
Min Chen d84d62a1e0 Separate Admin and User command and response for ListVMsCmd. 2013-10-02 17:45:14 -07:00
Min Chen bcd4cdd295 Fix compilation issue due to method rename. 2013-10-02 14:14:25 -07:00
Prachi Damle 8c15e61653 Created plugin for RoleBased Checkers 2013-10-01 18:16:06 -07:00
Prachi Damle bb271926fb WIP AccessChecker plugin 2013-10-01 18:11:30 -07:00
Min Chen 5583506c0c Add entity permission grant and revoke API. 2013-09-30 17:03:34 -07:00
Min Chen de0904ba63 Modify AccountResponse to return groups that account belongs to. 2013-09-30 14:14:38 -07:00
Min Chen d4d3c69a25 Add AclGroupJoinDaoImpl bean into applicationContext.xml. 2013-09-27 18:17:34 -07:00
Min Chen 0be374a796 Add All Apis for ACL Group. 2013-09-27 18:16:18 -07:00
Min Chen ed22dfef1b Add transaction handling in AclServiceImpl, and parent role support in 
createAclRole.
 2013-09-27 10:14:13 -07:00
Min Chen 97fd99b09a Add all Apis for AclRole. 2013-09-26 17:48:29 -07:00
Min Chen fce2aad23d WIP For APIs related to ACL Roles. 2013-09-26 11:22:43 -07:00
Prachi Damle 4294005142 Check if an Account belongs to RootAdmin group 2013-09-24 17:01:43 -07:00
Prachi Damle aba54356d5 Account_Type Refactoring for Root Admin Role 
- change the AccountService::isRootAdmin(short) to  isRootAdmin(long accountId);
- Change all callers
- Change all places that check the account.getType() directly to call the AccountManagerImpl.
 2013-09-24 15:31:09 -07:00
Min Chen ddae23c168 Add parent_role_id to acl_role table. 2013-09-23 13:18:57 -07:00
Min Chen 12b6e700b6 The first version of all the ACL VOs and DAOs. 2013-09-19 17:50:33 -07:00
Min Chen 354588611a Add missing table acl_group_role_map, as well as adding columns. 2013-09-19 17:49:49 -07:00
Prachi Damle 7b4998fcd8 Copy the commands.properties file to utils/conf at build time, so that DB upgrade script can refer to it to load the api permissions 2013-09-19 16:42:04 -07:00
Prachi Damle 3333a04c40 During Upgrade to 4.3, Populate the API Permissions per Out-Of-Box Role from commands.properties file 2013-09-19 12:32:54 -07:00
Min Chen ad6af49f03 Populate acl_group_account_map for existing accounts. 2013-09-19 10:26:59 -07:00
Min Chen 7b358ec0df Populate default out-of-box acl roles, converted from ACCOUNT_TYPE 
enum.
 2013-09-19 09:48:26 -07:00
Min Chen b367a62a83 Add ACL related DB schema. 2013-09-18 22:20:01 -07:00
Prachi Damle 62d60c2b77 CLOUDSTACK-4664: [ZWPS] High delay to start a stopped VM which has ROOT/DATA volumes migrated to Second Zone wide primary Storage(More than 10 mins) 
Changes:
- DeploymentPlanningManager needs to reuse the zone wide primary storage pool when VM's volume is READY
 2013-09-18 16:52:07 -07:00
Prachi Damle 7416383fcd CLOUDSTACK-4651: Restarting management server when volume Snapshot is still in progress for root volume of a VM , then there is no way to restart VM since the startVM job is stuck forever since the volume is in "Snapshoting" state. 
Change:
-If no volume of the VM is usable, VM cannot be deployed or started. Atleast ROOT volume should always be in usable state to start up the VM
 2013-09-18 16:52:04 -07:00
Prachi Damle f2ea699d12 CLOUDSTACK-4668: Upgrade to 4.2 fails with NullPointerException when hypervisor_type is null for a cluster entry 
Changes:
- Care for null value during comparing the hypervisor_type
- Do not consider removed clusters
- Method rename according to coding conventions
 2013-09-18 16:52:01 -07:00
Jessica Wang 723ef6e495 CLOUDSTACK-4702: UI > Network menu > Add Guest Network dialog > UI shouldn't pass null zoneid to listnetworkofferings API when zone dropdown is empty (i.e. when no advanced zone exists). 2013-09-18 16:45:01 -07:00
Alena Prokharchyk 3ab8d8d8f2 Fixed non-oss build broken in Juniper SRX with commit 2614b00c51 2013-09-18 16:37:00 -07:00
Alena Prokharchyk d34b79c970 CLOUDSTACK-4573: fixed resource limit check when acquire public IP in VPC - update resource count for VPC public ip even when network_id is not set yet. 2013-09-18 14:43:42 -07:00
Jessica Wang 9b81c91e31 CLOUDSTACK-4700: UI > Instances > Reset VM action > if the template from which vm is created is password-enabled, pop up "Password hsa been reset to xxxxxxx" dialog. 2013-09-18 11:42:14 -07:00
Alex Huang bf6a5ff023 Added a ManagementServer scope but it isn't used yet. Added @Deprecated to one of the constructors 2013-09-18 09:34:24 -07:00
Ashutosh K 5b5a617544 Added missing test for VPC load balancing rule from old QA repo to cloudstack repo 
def test_04_VPC_CreateLBRuleInMultipleNetworksVRStoppedState

Since VPC now only allows load balancing on a single tier the test case
has been updated to check that condition

Ref : http://cloudstack.apache.org/docs/en-US/Apache_CloudStack/4.0.2/html/Installation_Guide/configure-vpc.html

Signed-off-by: venkataswamybabu budumuru <venkataswamybabu.budumuru@citrix.com>
 2013-09-18 21:48:12 +05:30
Girish Shilamkar d4dc4f7e70 CLOUDSTACK-4637: Add 30sec sleep before router is ssh'd 
Egress rules testcases access vm via router. Sleep before
accessing router else the expect fails since router is not
accessible. Also use router.hostid instead of vm.hostid
to identify the host.

Signed-off-by: venkataswamybabu budumuru <venkataswamybabu.budumuru@citrix.com>
(cherry picked from commit 7d06e77ed9)
 2013-09-18 21:41:46 +05:30