From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [IPv6:2a01:7e0:0:424::9]) by lore.proxmox.com (Postfix) with ESMTPS id 866071FF13C for ; Thu, 28 May 2026 13:37:00 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 7263515256; Thu, 28 May 2026 13:36:48 +0200 (CEST) From: Jakob Klocker To: pve-devel@lists.proxmox.com Subject: [PATCH manager 3/3] fix #7513: ui: perm path store: add per-node certificates ACL path Date: Thu, 28 May 2026 13:35:04 +0200 Message-ID: <20260528113505.12961-4-j.klocker@proxmox.com> X-Mailer: git-send-email 2.47.3 In-Reply-To: <20260528113505.12961-1-j.klocker@proxmox.com> References: <20260528113505.12961-1-j.klocker@proxmox.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-SPAM-LEVEL: Spam detection results: 0 AWL -0.037 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DMARC_MISSING 0.1 Missing DMARC policy KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment KAM_LAZY_DOMAIN_SECURITY 1 Sending domain does not have any anti-forgery methods POISEN_SPAM_PILL 0.1 Meta: its spam POISEN_SPAM_PILL_1 0.1 random spam to be learned in bayes POISEN_SPAM_PILL_3 0.1 random spam to be learned in bayes RDNS_NONE 0.793 Delivered to internal network by a host with no rDNS SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_NONE 0.001 SPF: sender does not publish an SPF Record Message-ID-Hash: 2OBQKCO7NYQHKTNYTIV5W33JI4P3R6AM X-Message-ID-Hash: 2OBQKCO7NYQHKTNYTIV5W33JI4P3R6AM X-MailFrom: root@dev.proxmox.com X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop; banned-address; emergency; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: Jakob Klocker X-Mailman-Version: 3.3.10 Precedence: list List-Id: Proxmox VE development discussion List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Expose /nodes/{node}/certificates as a selectable path in the permission path store, so the more fine-grained certificate ACL can be assigned through the GUI. Link: https://bugzilla.proxmox.com/show_bug.cgi?id=7513 Signed-off-by: Jakob Klocker --- www/manager6/data/PermPathStore.js | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/www/manager6/data/PermPathStore.js b/www/manager6/data/PermPathStore.js index 7210e0cd..bc2112ad 100644 --- a/www/manager6/data/PermPathStore.js +++ b/www/manager6/data/PermPathStore.js @@ -34,9 +34,16 @@ Ext.define('PVE.data.PermPathStore', { PVE.data.ResourceStore.each(function (record) { let path; switch (record.get('type')) { - case 'node': - path = '/nodes/' + record.get('text'); + case 'node': { + let nodename = record.get('text'); + path = '/nodes/' + nodename; + let certpath = '/nodes/' + nodename + '/certificates'; + if (!donePaths[certpath]) { + me.add({ value: certpath }); + donePaths[certpath] = 1; + } break; + } case 'network': path = '/sdn/' + record.get('network-type') + 's/' + record.get('network'); break; -- 2.47.3