public inbox for pbs-devel@lists.proxmox.com
 help / color / mirror / Atom feed
* [pbs-devel] [PATCH proxmox-backup 0/3] job privileges
@ 2020-11-06 10:23 Fabian Grünbichler
  2020-11-06 10:23 ` [pbs-devel] [PATCH proxmox-backup 1/3] verify: fix unprivileged verification jobs Fabian Grünbichler
                   ` (3 more replies)
  0 siblings, 4 replies; 7+ messages in thread
From: Fabian Grünbichler @ 2020-11-06 10:23 UTC (permalink / raw)
  To: pbs-devel

this series reworks some more job privileges:

the first is a follow-up fix for verification job config privileges,
the second extends it to the corresponding 'admin/' API endpoints,
and the third is a usability improvement to allow semi-privileged users
to view/access job tasks which don't belong to them

some commit messages might need to be adapted if this gets applied after
backup@pam was replaced with root@pam in the scheduler

Fabian Grünbichler (3):
  verify: fix unprivileged verification jobs
  verify: allow unprivileged access to admin API
  tasks: allow access to job tasks

 src/api2/admin/verify.rs  | 33 ++++++++++++--
 src/api2/config/verify.rs | 92 +++++++++++++++++++++++++++------------
 src/api2/node/tasks.rs    | 74 +++++++++++++++++++++++++++++--
 src/api2/pull.rs          |  8 +++-
 src/api2/types/mod.rs     |  5 +++
 src/server/verify_job.rs  |  6 ++-
 6 files changed, 179 insertions(+), 39 deletions(-)

-- 
2.20.1





^ permalink raw reply	[flat|nested] 7+ messages in thread

end of thread, other threads:[~2020-11-06 12:11 UTC | newest]

Thread overview: 7+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-11-06 10:23 [pbs-devel] [PATCH proxmox-backup 0/3] job privileges Fabian Grünbichler
2020-11-06 10:23 ` [pbs-devel] [PATCH proxmox-backup 1/3] verify: fix unprivileged verification jobs Fabian Grünbichler
2020-11-06 10:23 ` [pbs-devel] [PATCH proxmox-backup 2/3] verify: allow unprivileged access to admin API Fabian Grünbichler
2020-11-06 10:23 ` [pbs-devel] [PATCH proxmox-backup 3/3] tasks: allow access to job tasks Fabian Grünbichler
2020-11-06 11:56 ` [pbs-devel] applied: [PATCH proxmox-backup 0/3] job privileges Dietmar Maurer
2020-11-06 12:06   ` [pbs-devel] applied: " Dietmar Maurer
2020-11-06 12:11     ` Dietmar Maurer

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox
Service provided by Proxmox Server Solutions GmbH | Privacy | Legal