Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Feature] Introduces Centralized Resource Access Control and Sharing #5016

Open
wants to merge 141 commits into
base: main
Choose a base branch
from
Open

[Feature] Introduces Centralized Resource Access Control and Sharing #5016

wants to merge 141 commits into from

Conversation

DarshitChanpura
Copy link
Member

@DarshitChanpura DarshitChanpura commented Jan 10, 2025
edited
Loading

Description

Introduces a new authorization mechanism to control access to resources defined by plugins.
There are 4 major components to this PR:

  1. Introduces an SPI that defines the contracts for a resource sharing plugin as well as Resource Access Control plugin.
  2. Introduces 4 new APIs that expose resource-sharing and access verification capabilities.
  3. Modifies DLS to implicitly check for resource-access for requesting user if incoming request is for a resource
  4. Adds a sample resource plugin with tests to demonstrate the usage of this new feature.
  5. Adds a feature flag to toggle the feature. Feature is enabled by default.
  • Category : New feature
  • Why these changes are required?
    • At present, plugins have implemented in-house authorization mechanisms for a lack of centralized framework. This PR introduces a centralized way to offload resource permissions check to security plugin. Plugins will leverage the java APIs introduced in core.

Issues Resolved

Testing

  • automated and manual testing

Check List

  • New functionality includes testing
  • New functionality has been documented
  • New Roles/Permissions have a corresponding security dashboards plugin PR
  • API changes companion pull request created
  • Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@DarshitChanpura
Add a base setup for resource access evaluation
831dca3 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds handler and other access management components for resource sharing
1c65eff 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds sample resource plugin
118cb07 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Removes node_modules entry from gitingore
c41b67d 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Handles changes related to scope
45d4fa5 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Updates sample plugin to implement a custom scope
ae2464d 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes Checkstyle and spotless issues
aea2253 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes initialization error
1e17dc0 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Renames sample resource plugin and adds a logger statement
84746e8 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Changes package name for sample plugin
83e4da0 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Re-organizes and renames sample plugin files
4b9b9b1 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Updates method references to conform to core
81216f1 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes compile errors
1e33dad 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes some names and method implementations
a671cc1 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds few concrete method implementations in security plugin
47b73da 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds capability to introduce index listeners for all resource plugins
8942a80 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Removes sampleplugin to be added in a separate PR
2b06603 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Updates settings.gradle
6f42bf1 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds a sample resource plugin to demonstrate resource access control …
561e294 
…in action

Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes imports
45b002e 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Cleans up create action
57661e7 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds concrete implementations of remainder methods
a30be57 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes create API
d68f349 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes spotless errors
58003f6 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes log statement
078a976 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds Revoke API and cleans up existing APIs
0460549 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Renames ResourceManagement repository and add keyword to search query…
8e44cf3 
… term

Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes delete method
16a0ba6 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Adds delete API and refactors package structure
46960ea 
Signed-off-by: Darshit Chanpura <[email protected]>
@DarshitChanpura
Fixes updateByQuery painless script
ac53c8f 
Signed-off-by: Darshit Chanpura <[email protected]>
@nibix
Copy link
Collaborator

nibix commented Jan 21, 2025

@DarshitChanpura

should the index be marked as hidden?

yes, any system index which is not directly relevant to the end user should be not visible by default to the user. Thus, it should be marked as hidden.

@DarshitChanpura
Copy link
Member Author

@DarshitChanpura

should the index be marked as hidden?

yes, any system index which is not directly relevant to the end user should be not visible by default to the user. Thus, it should be marked as hidden.

In this case the index is not technically directly relevant however when user shares the info or wants to check who has access to this resource. So I'm not sure if hidden still applies here.

@DarshitChanpura DarshitChanpura mentioned this pull request Jan 27, 2025
Open
@DarshitChanpura DarshitChanpura marked this pull request as ready for review January 27, 2025 15:20
@DarshitChanpura
Copy link
Member Author

I've opened a discussion issue to finalize the approach. #5062

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@derek-ho derek-ho Awaiting requested review from derek-ho derek-ho is a code owner

@peternied peternied Awaiting requested review from peternied peternied is a code owner

@RyanL1997 RyanL1997 Awaiting requested review from RyanL1997 RyanL1997 is a code owner

@reta reta Awaiting requested review from reta reta is a code owner

@willyborankin willyborankin Awaiting requested review from willyborankin willyborankin is a code owner

@nibix nibix Awaiting requested review from nibix nibix is a code owner

@cwperks cwperks Awaiting requested review from cwperks cwperks is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@DarshitChanpura @nibix @cwperks