commit | 542f3e4002b46d0968abee9e2f6301b5edfd73b0 | [log] [tgz] |
---|---|---|
author | Ivan Pilat <ivanpi@google.com> | Tue Jun 07 01:17:33 2016 -0700 |
committer | Ivan Pilat <ivanpi@google.com> | Tue Jun 07 19:43:27 2016 +0000 |
tree | 8e86408065c99f1bae9febcb61644b8349edfb5b | |
parent | 4890db22deb17dbee44535197b2b88b25821ce54 [diff] |
security: Do not skip ACL checks when using same principal. Syncbase is frequently run using the same principal (key pair) as its clients. The default authorizer would skip all ACL checks in this case, which is undesirable since it can e.g. allow the client to put rows into a read-only collection, which would be rejected by a remote peer when synced. For this reason, this CL removes the short-circuit check for the same public key and always checks the ACL. MultiPart: 2/3 Change-Id: I18ca2dcc5227580374af460601d633b3982f3ed9
This repository contains a reference implementation of the Vanadium APIs.
Unlike the APIs in https://github.com/vanadium/go.v23, which promises to provide backward compatibility this repository makes no such promises.