[v13] Generate user login state from access lists and integrate into certificates.#30628
Merged
mdwn merged 1 commit intobranch/v13from Aug 21, 2023
Merged
Conversation
…icates. (#29364) * Generate user login state from access lists and integrate into certificates. On login, the user login state will be generated, using access lists to register additional roles and traits that will be inserted into the user's certificate. Tests have been added to exercise this as well. * Cache user login states, filter roles that aren't in the backend. * Small refactor. * Optimize RPC calls, test merge login in auth.go more thoroughly. * Warn when role is missing. * Update so access info uses the user login state directly, user login state comprises the whole state as opposed to a mix. * Logic tweaks to restore tests. * Integrate user login state cache. * Swap out get user for get user state where applicable. * Revert unrelated debug change. * Add in missing err check. * Further replacing with user state. * Revert changes to helpers to try to get integration tests working. * Revert "Revert changes to helpers to try to get integration tests working." This reverts commit 682e920. * Add in user type to generator. * Use supplied user for generating SSH certs.
r0mant
approved these changes
Aug 17, 2023
Tener
approved these changes
Aug 21, 2023
public-teleport-github-review-bot
Bot
removed request for
espadolini and
fspmarshall
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Backport #29364 to branch/v13.