Skip to content

feat: SSO MFA - Add Auth Connector MFA settings protobuf and methods.#46687

Merged
Joerger merged 2 commits intomasterfrom
joerger/auth-connector-mfa-settings
Sep 30, 2024
Merged

feat: SSO MFA - Add Auth Connector MFA settings protobuf and methods.#46687
Joerger merged 2 commits intomasterfrom
joerger/auth-connector-mfa-settings

Conversation

@Joerger
Copy link
Copy Markdown
Contributor

@Joerger Joerger commented Sep 17, 2024
edited
Loading

Part of the implementation of SSO MFA

@Joerger Joerger force-pushed the joerger/auth-connector-mfa-settings branch 2 times, most recently from f72c0f5 to f4f51dc Compare September 18, 2024 00:23
@Joerger Joerger marked this pull request as ready for review September 18, 2024 00:23
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Sep 18, 2024

The PR changelog entry failed validation: Changelog entry not found in the PR body. Please add a "no-changelog" label to the PR, or changelog lines starting with changelog: followed by the changelog entries for the PR.

@Joerger Joerger mentioned this pull request Sep 18, 2024
Merged
@Joerger Joerger added the no-changelog Indicates that a PR does not require a changelog entry label Sep 18, 2024
This was referenced Sep 18, 2024
Merged
Closed
@Joerger Joerger force-pushed the joerger/auth-connector-mfa-settings branch from f4f51dc to 3cf210a Compare September 21, 2024 00:24
@Joerger Joerger force-pushed the joerger/auth-connector-mfa-settings branch from 3cf210a to 798c5e3 Compare September 30, 2024 17:11
@Joerger
Copy link
Copy Markdown
Contributor Author

Joerger commented Sep 30, 2024

@fspmarshall friendly reminder for review

fspmarshall
fspmarshall approved these changes Sep 30, 2024
View reviewed changes
Copy link
Copy Markdown
Contributor

@fspmarshall fspmarshall left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

At a glance it looks like at least one of the new fields is a secret. I don't know much about oidc/saml so I'm not sure which other fields may also be sensitive, but the OIDCConnector and SAMLConnector resources both implement the ResourceWithSecrets interface and implement separate RBAC controls for reading the resources with and without secrets included. In practice, what this means is that any time you add a field either of these resources, their respective WithoutSecrets method must be updated to censor/omit the field if it is secret/sensitive.

LGTM once a pass has been done on WithoutSecrets.

@Joerger Joerger enabled auto-merge September 30, 2024 19:16
@Joerger Joerger added this pull request to the merge queue Sep 30, 2024
Merged via the queue into master with commit 9cd5083 Sep 30, 2024
@Joerger Joerger deleted the joerger/auth-connector-mfa-settings branch September 30, 2024 19:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fspmarshall fspmarshall fspmarshall approved these changes

@kiosion kiosion kiosion approved these changes

Assignees

No one assigned

Labels

no-changelog Indicates that a PR does not require a changelog entry size/sm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Joerger @fspmarshall @kiosion