Google Git
Sign in
vanadium / release.go.v23 / 48e2ab3df6957ee98073cc5683e994b67afa3dde
commit48e2ab3df6957ee98073cc5683e994b67afa3dde[log] [tgz]
authorIvan Pilat <ivanpi@google.com>Tue Jun 07 01:25:27 2016 -0700
committerIvan Pilat <ivanpi@google.com>Tue Jun 07 11:28:21 2016 +0000
tree73ad74d793c7e4ba2ede9070a1ec419c49ce8adf
parent1ab3b1bcfa5f8ce75b32b096f44a91327367ab1f [diff]
security: Do not skip ACL checks when using same principal.

Syncbase is frequently run using the same principal (key pair) as
its clients. The default authorizer would skip all ACL checks in
this case, which is undesirable since it can e.g. allow the client
to put rows into a read-only collection, which would be rejected
by a remote peer when synced.

For this reason, this CL removes the short-circuit check for the
same public key and always checks the ACL.

MultiPart: 1/3
Change-Id: Idfcc470bd93f4d67fd8e4391a4f087704165e85f
3 files changed
tree: 73ad74d793c7e4ba2ede9070a1ec419c49ce8adf
  1. context/
  2. conventions/
  3. discovery/
  4. flow/
  5. glob/
  6. i18n/
  7. logging/
  8. namespace/
  9. naming/
  10. options/
  11. query/
  12. rpc/
  13. security/
  14. services/
  15. syncbase/
  16. uniqueid/
  17. vdl/
  18. vdlroot/
  19. verror/
  20. vom/
  21. vtrace/
  22. .api
  23. .gitignore
  24. .godepcop
  25. AUTHORS
  26. CONTRIBUTING.md
  27. CONTRIBUTORS
  28. init.go
  29. init_internal_test.go
  30. LICENSE
  31. model.go
  32. PATENTS
  33. README.md
  34. swiftmodule
  35. VERSION
README.md

Vanadium

This repository defines the Go APIs of Vanadium.