New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement access control for IM invoke #10241

Closed

mlepage-google opened this issue Oct 5, 2021 · 1 comment

Labels

acl V1.0

Contributor

mlepage-google commented Oct 5, 2021 •

edited

Loading

initial prototype covers access control for IM read (Initial ACL prototype implementation #10236)
this task is similar but for IM invoke
invoke is a bit like read/subscribe in that it can be an ongoing back-and-forth conversation, ensure this works
probably need to check ACLs and SubjectDescriptor for each message in conversation
need to check fabric during command execution (can't change non-fabric data in certain cases)

mlepage-google added the acl label

mlepage-google mentioned this issue

Add access control check to IM read, write, invoke #12645

Merged

woody-apple added the V1.0 label

Contributor Author

mlepage-google commented Jan 27, 2022

This is done, just not enforced yet.

mlepage-google closed this as completed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment