milo/buildsource/buildbot/master.go - Issue 2974263002: [milo] better ACL system for masters.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: milo/buildsource/buildbot/master.go

Issue 2974263002: [milo] better ACL system for masters. (Closed)

Patch Set: fix tests Created 3 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: milo/buildsource/buildbot/master.go

diff --git a/milo/buildsource/buildbot/master.go b/milo/buildsource/buildbot/master.go

index d79b4ae376068addcb94db305269e20586da5d35..74cdf8c8a6b180e1d232713e2665e92c36f41baa 100644

--- a/milo/buildsource/buildbot/master.go

+++ b/milo/buildsource/buildbot/master.go

@@ -36,49 +36,44 @@ func decodeMasterEntry(

return nil

}

-// User not logged in, master found, master public: nil

-// User not logged in, master not found: 401

-// User not logged in, master internal: 401

-// User logged in, master found, master internal: nil

-// User logged in, master not found: 404

-// User logged in, master found, master internal: 404

-// Other error: 500

-func checkAccess(c context.Context, err error, internal bool) error {

+// canAccessMaster returns nil iff the currently logged in user is able to see

+// internal masters, or if the given master is a known public master.

+func canAccessMaster(c context.Context, name string) error {

cu := auth.CurrentUser(c)

- switch {

- case err == ds.ErrNoSuchEntity:

- if cu.Identity == identity.AnonymousIdentity {

- return errNotAuth

+ if cu.Identity != identity.AnonymousIdentity {

+ // If we're logged in, and we can see internal stuff, return nil.

+ //

+ // getMasterEntry will maybe return 404 later if the master doesn't actually

+ // exist.

+ if allowed, err := common.IsAllowedInternal(c); err != nil || allowed {

+ return err

}

- return errMasterNotFound

- case err != nil:

- return err

}

- // Do the ACL check if the entry is internal.

- if internal {

- allowed, err := common.IsAllowedInternal(c)

- if err != nil {

- return err

- }

- if !allowed {

- if cu.Identity == identity.AnonymousIdentity {

- return errNotAuth

- }

- return errMasterNotFound

- }

+ // We're not logged in, or we can only see public stuff, so see if the master

+ // is public.

+ if err := ds.Get(c, &buildbotMasterPublic{name}); err == nil {

+ // It exists and is public

+ return nil

}

- return nil

+ // They need to log in before we can tell them more stuff.

+ return errNotAuth

}

// getMasterEntry feches the named master and does an ACL check on the

// current user.

// It returns:

func getMasterEntry(c context.Context, name string) (*buildbotMasterEntry, error) {

+ if err := canAccessMaster(c, name); err != nil {

+ return nil, err

+ }

entry := buildbotMasterEntry{Name: name}

err := ds.Get(c, &entry)

- err = checkAccess(c, err, entry.Internal)

+ if err == ds.ErrNoSuchEntity {

+ err = errMasterNotFound

+ }

return &entry, err

}

« no previous file with comments | « milo/buildsource/buildbot/grpc_test.go ('k') | milo/buildsource/buildbot/pubsub.go » ('j') | milo/buildsource/buildbot/pubsub.go » ('J')