etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,923 Commits 324 Branches 325 Tags 795 MiB
Commit Graph

135 Commits

Author SHA1 Message Date
Nitin Mehta 93c411eb59 Bug 12740: Allow root admins to bypass the ACL layer. 
Reviewed-By: Kishan
 2012-01-24 12:28:23 +05:30
Alena Prokharchyk 2b37568a87 bug 12001: fixed resource limit check for domain - treat -1 as unlimited 
status 12001: resolved fixed
 2011-12-21 15:13:10 -08:00
Abhinandan Prateek 6e2f732734 bug 11804: Only root admins have a relaxed resource limit 2011-11-03 11:15:13 +05:30
Abhinandan Prateek 5e44458ec1 Revert "bug 11804: Only root admins have a relaxed resource limit now" 
This reverts commit 5415bd881b4a5b1b81937171fe494509b5e1619e.
 2011-11-03 11:02:59 +05:30
Abhinandan Prateek ad5341d0d3 bug 11804: Only root admins have a relaxed resource limit now 
status 11804: resolved fixed
 2011-11-02 13:30:15 +05:30
alena 16989227d9 bug 11667: drop primary keys in cloud_usage.usage_load_balancer_policy and cloud_usage.usage_port_forwarding 
status 11667: resolved fixed
 2011-10-07 10:58:19 -07:00
alena a4fb8e7d28 bug 11487: catch all exceptions in cleanupAccount, and mark the account for cleanup when the exception is caught. 
status 11487: resolved fixed

Reviewed-by: will@cloud.com
 2011-09-20 10:31:17 -07:00
alena 36344a3395 bug 11493: no need to do cross domain checks for the templates as domain level templates are not supported. We support only public (everybody can see and use) and private (only owner can see and use unless changed with updateTemplatePermissions call) 
status 11493: resolved fixed

Reviewed-by: will@cloud.com
 2011-09-20 10:31:01 -07:00
alena 41871d5687 bug 11470: 1) fixed listResourceLimits 2) Fixed -1 to be treated as unlimited for all the resources 
status 11470: resolved fixed
 2011-09-19 09:46:11 -07:00
Nitin 22cca97894 bug 11190: My changes got reverted. Putting them back - Treating the max account limits with -1 values as infinite 2011-09-14 19:36:54 +05:30
alena 1f45148a29 Don't update resource count for system account 2011-09-13 16:34:09 -07:00
alena 0c127890ea bug 11036: resource count update is refactored 
status 11036: resolved fixed

1) Use row locks instead of global lock when update resource_count table. When update resource_count for account, make sure that we lock account+all related domains
2) Insert resource_count records for account/domain at the moment when account/domain is created.
3) As a part of DB upgrade, insert missing resource_count records for all non-removed accounts/domains
 2011-09-13 10:47:55 -07:00
Nitin e786533b27 bug 11190: Treating the max account limits with -1 values as infinite. When acquiring a lock to check for resourceLimitExceeded if the lock times out then return as limit exceeded. 2011-09-12 14:45:45 +05:30
alena 654bcdeb5e bug 10751: don't remove already removed templates during the account cleanup 
status 10751: resolved fixed
 2011-09-02 16:10:00 -07:00
alena aaf46356bb Mark account as cleanup_required=0 when cleanup was finished successfully 2011-08-30 14:10:07 -07:00
alena 4dd4b41344 Don't remove the domain when it has accounts that are removed, but require cleanup 2011-08-30 14:10:00 -07:00
alena 60ce12b892 Fixed multipe problems in account cleanup process: 
* don't try to delete the template when it's already removed
* no need to perform permission check when deleteFirewallRule is called by System (as a part of cleanupAccount process for instance)
 2011-08-30 11:22:56 -07:00
alena 488b995299 bug 11236: domainAdmin/regularUser can edit/delete/copy/extract Public template/iso only if it was created by them. They still can use/see public template/iso when execute list/deploy/attachIso commands. Root admin can operate with other people templates w/o any restrictions. 
status 11236: resolved fixed
 2011-08-24 14:48:22 -07:00
alena 0cdb67fdc7 bug 11167: no need to lock account when create security group to ensure that the group name is unique for account. If group already exists in the db, and we try to persist it again, mysql constraint (groupName, accountId) will fail and exception will be thrown. 
status 11167: resolved fixed
 2011-08-18 10:16:20 -07:00
alena 8d47c53735 Revert "bug 10435: removed vpn feature" 
This reverts commit ea9e1b5d138950e8de49fce7ffdbb12a1c72c560.

Conflicts:

	api/src/com/cloud/api/ResponseGenerator.java
	scripts/vm/hypervisor/xenserver/vmops
	server/src/com/cloud/configuration/Config.java
	server/src/com/cloud/network/router/VirtualNetworkApplianceManager.java
	server/src/com/cloud/network/router/VirtualNetworkApplianceManagerImpl.java
 2011-08-02 18:12:57 -07:00
Nitin 63205f1f02 bug 10868: CheckAccess - If the domainId = -1 and the accountId is still valid then try and calculate the domainId. This case will be hit for all the entities which do not have domain id column in the DB table. What was happenning due to this was that we were not checking the domain hierarchy in such case which was leading to security leaks. Example - templates. 2011-07-28 17:11:14 +05:30
kishan 6b4c61a348 bug 10382: Move volume delete events to destroyVolume method 
status 10382: resolved fixed
 2011-07-20 11:22:31 +05:30
kishan 427b73a2b9 bug 10372: Added Vm State Machine listener for usage events 
status 10372: resolved fixed
 2011-07-20 11:13:56 +05:30
alena 5be1f94c0d bug 9620: fixed updateUser api to make updates only for the fields that are specified in the request 
status 9620: resolved fixed
 2011-07-19 11:10:52 -07:00
alena 8b100f7c4d bug 10409: added domainSuffix parameters to account/domain objects 
Conflicts:

	server/src/com/cloud/network/NetworkManagerImpl.java
	server/src/com/cloud/upgrade/dao/Upgrade228to229.java
	server/src/com/cloud/user/AccountManagerImpl.java
	setup/db/db/schema-228to229.sql
 2011-07-19 11:10:52 -07:00
alena ca87603925 Throw correct types of exceptions when fail to create account 2011-07-19 10:33:34 -07:00
kishan 427b70e572 bug 10276: Throw exception for account APIs failure 
status 10276: resolved fixed
 2011-07-19 18:38:54 +05:30
alena 0d84cde633 bug 10409: added domainSuffix parameters to account/domain objects 2011-07-15 14:40:39 -07:00
alena 21afc889d0 bug 10438: always return success on disableAccount when it got disabled successfully in the DB. If his vms failed to stop on the backend, mark account for cleanup and let background thread to do the cleanup job 
status 10438: resolved fixed
 2011-07-15 14:27:58 -07:00
alena 73574ebf5b Do regular vm stop (not forced=true) when disableAccount 2011-07-11 17:35:35 -07:00
alena 74f34a0e0c bug 10435: removed vpn feature 
status 10435: resolved fixed
 2011-06-24 09:18:46 -07:00
Edison Su 54a4af2a0c bug 10092: fix the Long compare 
status 10092: resolved fixed
 2011-06-21 14:33:43 -04:00
alena 57e4af6fd5 bug 10325: renamed apiKey/secretKey to userApiKey/userSecretKey in updateUser api call 
This reverts commit 927508215de383bdcc5b2e289e5103e011d72843.
 2011-06-16 11:47:54 -07:00
Murali Reddy 00bd79ffee bug 9419: implement api to reset resource count 
adding couple of fixes
 2011-06-16 19:01:03 +05:30
Murali Reddy c7e347e9a4 bug 9419: implement api to reset resource count 2011-06-16 19:00:42 +05:30
Murali Reddy aa4f654929 bug 9419: implement api to reset resource count 
added a command to reset resource count for account/domain based on real usage of resources
 2011-06-16 18:59:38 +05:30
alena cab765f85e Fixed the bug in updateUser api - api/secretKey update didn't work correctly when request was signed using apiKey 2011-06-15 15:02:07 -07:00
alena 8948c3dd84 1) listNetworks for domain level network case: fixed search to do multiple joins between the tables instead of querying all the data and making search for each entry. 
2) Added new config parameter 'allow.subdomain.network.access' - default value is true. If it's set to false, the child domain can't use the network of the parent domain

Conflicts:

	server/src/com/cloud/network/NetworkManagerImpl.java
 2011-06-08 12:00:19 -07:00
will 5913c5a441 Added an acknowledge process for the registration complete process of cloudzones. Only after a expires=true will the token be truly expired. 2011-06-06 11:47:59 -07:00
Alex Huang d9e0bcfa1e bug 10126: Renamed getPodId() to getPodIdToDeployIn() 2011-06-03 22:17:08 -07:00
Murali Reddy 6de2bef7cd bug 9973: listReourceLimits A domain-admin of domain X can view Resource Limits from other domain 
adding additional checks, and moving old code to access checkers
status 9973: resolved fixed
 2011-05-31 14:00:27 +05:30
will fef2c58996 bug 9982: Ensuring that the registration token is used only once. 2011-05-25 16:06:49 -07:00
alena b5aabfab75 bug 9898: fixed attachIso by domain admin - no need to make permission check when iso is public 
status 9898: resolved fixed
 2011-05-17 11:11:13 -07:00
Chiradeep Vittal 936893e70a zonesfeature merge: no idea where this system.out came from 2011-05-03 10:41:31 -07:00
Chiradeep Vittal 303e2a7481 Start of zonesfeature / mycloud/cloudkit 2011-05-03 10:40:17 -07:00
Alex Huang 99bc15f64a changed getName to getHostname 2011-04-29 08:34:10 -07:00
will 633d024b7c - Merge all CloudZones Registration feature into master 2011-04-28 16:05:36 -07:00
alena 1a6d78eae4 Code cleanup. No need to declare runtime exceptions (CloudRuntimeException, InvalidParameterException, PermissionDenied exceptions) 2011-04-21 16:26:53 -07:00
alena 52fe53f497 bug 9458: do searchIncludingRemoved when decrement resource count as corresponding domain might be removed already 
status 9458: resolved fixed

Conflicts:

	server/src/com/cloud/user/AccountManagerImpl.java
 2011-04-14 15:39:51 -07:00
nit 7d51bf41b6 bug 8710: Attaching resource domain account to a zone code 2011-04-12 18:22:26 +05:30