opensource/grafana
1
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-07-30 06:22:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
60,232 Commits 2,376 Branches 619 Tags
Commit Graph

7 Commits

Author SHA1 Message Date
Mihai Doarna
42dd2336b9 Team: Add validation for provisioned teams in setUserPermission endpoint (#103623) 
* removed provisioned team validation from team permissions

* validate team in setUserPermission
 2025-04-10 17:28:31 +03:00
Cory Forseth
4caa9853cb Authorization: Add group to role DisplayName to make filtered list more clear (#102950) 
* add group to role DisplayName to make searching easier

* clean up more role names; add filtered display text when fetching

* pass filter state into role menu to decide how to display role name

* prop name better describes what it does
 2025-04-08 09:15:03 -05:00
Mihai Doarna
64e005d12f Teams: Restrict provisioned teams from being updated and deleted (#103454) 
* restrict provisioned teams from being updated and deleted

* check if team is provisioned before update and delete

* add function getTeamDTOByID()

* check if team is provisioned in access control

* fix TestDeleteTeamMembersAPIEndpoint

* add unit tests

* add function for validating a team
 2025-04-08 11:27:30 +03:00
Jo
2b867d9850 AccessControl: Resource permission translator (#95423) 
* Standardize Resource Translator in options

* Add resource UID translator for resource permissions

* fix comments

* fix comments
 2024-10-29 10:21:39 +01:00
Karl Persson
ddee95cb6d Team: Create permission type for team membership (#92352) 
* Create permission type enum for team and remove usage of dashboard permission type
 2024-08-23 12:34:34 +02:00
Jeff Levin
028e8ac59e Instrument tracing across accesscontrol (#91864) 
Instrument tracing across accesscontrol 

---------

Co-authored-by: Dave Henderson <dave.henderson@grafana.com>
 2024-08-16 14:08:19 -08:00
Ieva
9bb2cf4968 RBAC: Allow omitting default permissions when a new resource is created (#90720) 
* Cfg: Move rbac settings to own struct

* Cfg: Add setting to control if resource should generate managed permissions when created

* Dashboards: Check if we should generate default permissions when dashboard is created

* Folders: Check if we should generate default permissions when folder is created

* Datasource: Check if we should generate default permissions when datasource is created

* ServiceAccount: Check if we should generate default permissions when service account is created

* Cfg: Add option to specify resources for wich we should default seed

* ManagedPermissions: Move providers to their own files

* Dashboards: Default seed all possible managed permissions if configured

* Folders: Default seed all possible managed permissions if configured

* Cfg: Remove service account from list

* RBAC: Move utility function

* remove managed permission settings from the config file examples, change the setting names

* remove ini file changes from the PR

* fix setting reading

* fix linting errors

* fix tests

* fix wildcard role seeding

---------

Co-authored-by: Karl Persson <kalle.persson@grafana.com>
Co-authored-by: jguer <me@jguer.space>
 2024-07-24 19:31:26 +03:00