Chuan Ren
0b2598df07
Add support for Workforce pool credentials ( #27583 )
...
* first commit
* Update external_account_credentials.cc
* Fix CI issues
3 years ago
Esun Kim
d1297bcc17
C++ struct-ify httpcli/internal_request and credential_test/request_metadata_state ( #27618 )
...
* httpcli.request
* credential tests request_metadata_state struct
* Update by review
* more c++ify
* fix asan error
* update by review
* Update by review 2
* Fix sanity test
3 years ago
Ashitha Santhosh
a1db97be90
Revert "Revert "Revert "Revert "File watcher authorization policy provider implementation"" ( #27605 )" ( #27644 )" ( #27645 )
...
This reverts commit b8e01f73a0
.
3 years ago
AJ Heller
b8e01f73a0
Revert "Revert "Revert "File watcher authorization policy provider implementation"" ( #27605 )" ( #27644 )
...
This reverts commit 5912aedb2b
.
3 years ago
Ashitha Santhosh
5912aedb2b
Revert "Revert "File watcher authorization policy provider implementation"" ( #27605 )
...
* Revert "Revert "File watcher authorization policy provider implementation (#26779 )" (#27591 )"
This reverts commit a1ad74f7af
.
* Remove license comment
3 years ago
Craig Tiller
d1e01ac139
Add a test for a (now-illegal) build file construct ( #27602 )
...
* Add a test for a (now-illegal) build file construct
* add to test suite!
* fix
* fix
* fix syntax
3 years ago
Craig Tiller
a1ad74f7af
Revert "File watcher authorization policy provider implementation ( #26779 )" ( #27591 )
...
This reverts commit 310accd077
.
3 years ago
Ashitha Santhosh
310accd077
File watcher authorization policy provider implementation ( #26779 )
...
* File watcher authorization policy provider implementation
3 years ago
Esun Kim
1c6634ac44
Changed grpc_error_get|set_str to use std string instead of slice ( #27466 )
...
* Changed grpc_error_get|set_str to use std string
* Fix init order in tests with gtest
* Undo gtest-tify credentials_test
3 years ago
Craig Tiller
9b41852a5e
channel_init --> core configuration system ( #27347 )
...
* channel_init --> core configuration system
* Automated change: Fix sanity tests
* fixes
* Automated change: Fix sanity tests
* fixes
* fixes
* eliminate grpc_base_c
* fixes
* fix merge
* fix
* update visibility
* fixes
* feedback
* fix comment
Co-authored-by: ctiller <ctiller@users.noreply.github.com>
3 years ago
Ashitha Santhosh
835eacc32d
Check for mtls authenticated ( #27360 )
...
* Check for mtls authenticated.
3 years ago
Mark D. Roth
3763be8796
add APIs for creating errors from C++ strings ( #27310 )
...
* add API for creating errors from C++ strings
* add missing include
3 years ago
Craig Tiller
ea389c00c2
Adjust include order per style guide ( #27175 )
...
Introduce clang-format configuration to sort includes closer to our rules.
3 years ago
Craig Tiller
b062fcd5c6
Ensure consistency of include style for <grpc.* headers ( #27233 )
...
* Add a tool to ensure consistency in how grpc public headers are included
* Apply tool
* add to test suite
* isort
3 years ago
Ashitha Santhosh
74d554a4f0
Check for unsupported connection headers. ( #27072 )
...
* Check for unsupported condition headers.
3 years ago
yihuaz
c66d2cc084
Allow access to Google API regional endpoints via Google Default Credentials ( #27155 )
...
* fix Google API regional endpoint access issues
* address 1st round of comments
* fix minor nits
3 years ago
Ashitha Santhosh
1ff1f8fd83
SDK authorization filter. ( #26468 )
...
* SDK authorization filter.
3 years ago
Chuan Ren
e2ba0d9c0b
[3PI] Validate external account credentials token urls ( #26966 )
...
* Validate token urls
* Update external_account_credentials.cc
* Update external_account_credentials.cc
* Remove regex
* Validate implicit flow
* Update credentials_test.cc
* Update google_default_credentials.cc
* Revert "Update credentials_test.cc"
This reverts commit c43e00de2b
.
* Revert "Validate token urls"
* Add tests for grpc_google_default_credentials_create
* Update google_default_credentials.cc
3 years ago
AJ Heller
d10617edb5
Move resource_user ownership into chttp2 transport/server/connector v2 ( #27032 )
...
Reintroducing PR #26643 , which was reverted in #27029
Fixed a memory leak and added a test that would have caught it (ASAN build): ca0c8c4
3 years ago
Craig Tiller
f5d3ed2db1
Revert "Move resource_user ownership into chttp2 transport/server/connector ( #26643 )" ( #27029 )
...
This reverts commit d1935a65a1
. Will be rolled forward with a fix.
3 years ago
AJ Heller
d1935a65a1
Move resource_user ownership into chttp2 transport/server/connector ( #26643 )
3 years ago
itsemmanuelfrancis
994ee5da0c
Key-Cert Pair Validation ( #26471 )
...
* Functions for checking if a private key and a certificate chain match
3 years ago
yihuaz
b9a69481c2
Revert "Support user provided "scope" in JWT and GDC ( #26577 )" ( #26645 )
...
This reverts commit 6df967966b
.
3 years ago
yihuaz
6df967966b
Support user provided "scope" in JWT and GDC ( #26577 )
...
* support scope overriding in jwt and gdc
* fix formatting
* fix bazel build issue
* fix clang tidy
3 years ago
Mark D. Roth
34bf26357b
Change StringMatcher to not support case-insensitive regex matching. ( #26567 )
...
* Change StringMatcher to not support case-insensitive regex matching.
* clang-format
* clang-tidy
4 years ago
yihuaz
932dbed49d
Revert "Allow to specify user provided audience in google default credentials and JWT credentials ( #26456 )" ( #26531 )
...
This reverts commit 5a91a513fd
.
4 years ago
ZhenLian
5a91a513fd
Allow to specify user provided audience in google default credentials and JWT credentials ( #26456 )
...
* support user provided audience in gdc and jwt
4 years ago
Lidi Zheng
a3ae8e00a2
Revert "Allow to specify user provided audience in google default credentials and JWT credentials ( #26392 )" ( #26440 )
...
This reverts commit 304262e135
.
4 years ago
Ashitha Santhosh
b9a643a817
Static policy provider implementation. ( #26134 )
4 years ago
yihuaz
304262e135
Allow to specify user provided audience in google default credentials and JWT credentials ( #26392 )
...
* support user provided audience in gdc and jwt
* fix 1st round of comments
* fix ruby and php to use new GDC API
* fix python clang issue
* address 2nd round of comments
* fix string_view issue
* remove length param in string_view constructor
4 years ago
Ashitha Santhosh
9bbdb70cdc
Add uri sans ( #26362 )
...
* Add uri sans
4 years ago
Ashitha Santhosh
c20356c1ba
Update conditional matcher ctors and include NotMatcher. ( #26256 )
4 years ago
Ashitha Santhosh
c90fae35cb
IPMatcher implementation. ( #26132 )
4 years ago
Ashitha Santhosh
457fd3d41c
RBAC Engine implementation. ( #25948 )
4 years ago
Esun Kim
460898f11c
Migrated from grpc_error_string to grpc_error_std_string ( #26068 )
...
* Added grpc_error_std_string
* Migrated to grpc_error_std_string
4 years ago
Esun Kim
ca945a58e9
Introduced grpc_error_handle ( #25902 )
...
- Define grpc_error_handle
- Replace grpc_error* with grpc_error_handle
4 years ago
Ashitha Santhosh
16684bf11b
Correct enum naming style. ( #26012 )
4 years ago
Ashitha Santhosh
628bf7fe08
RBAC engine matchers implementation. ( #25997 )
4 years ago
Ashitha Santhosh
e438fa609b
Separate connection specific args in EvaluaetArgs. ( #25969 )
4 years ago
Ashitha Santhosh
0570bd9205
Plumbs SAN fields to tsi_peer. ( #25874 )
4 years ago
Ashitha Santhosh
8489a6050b
Revert "Rbac Matcher implementation. ( #25653 )" ( #25957 )
...
This reverts commit 1fb4f715db
.
4 years ago
Ashitha Santhosh
1fb4f715db
Rbac Matcher implementation. ( #25653 )
4 years ago
Ryan Kohler
c1e417a526
Allow the AWS_DEFAULT_REGION environment variable ( #25760 )
...
* allow the AWS_DEFAULT_REGION environment variable
* changes requested by roth@
* linting
4 years ago
Ashitha Santhosh
bd86187f19
SDK authorization policy translator. ( #25361 )
...
* SDK authorization policy translator.
4 years ago
Ashitha Santhosh
dbe50923b4
Add getter to grpc_metadata_batch. ( #25395 )
4 years ago
AJ Heller
0e3a02e903
Revert "Remove the `urgent` argument from iomgr tcp read API ( #25494 )" ( #25592 )
...
This reverts commit a3398f9
. Justification: see b/181367644. tl;dr: assuming urgent==false does not hold in all situations.
4 years ago
AJ Heller
a3398f924c
Remove the `urgent` argument from iomgr tcp read API ( #25494 )
...
The urgent argument is a platform-specific flag that leaked into the (ideally) platform-independent HTTP/2 transport layer. In an effort to clean up the cross-platform API surface, it would be helpful if we can remove this argument from the TCP Read api without losing the performance optimization that was introduced along with it (see #18240 ).
4 years ago
Yash Tibrewal
f4e55b85bc
Replace disrespectful term
4 years ago
Esun Kim
9bd7c4917a
Fix unused-parameter warning
4 years ago
Ashitha Santhosh
4ca878799b
Refactor [String/Header/Path]matchers in xds_api.
4 years ago