Skip to content
GitLab
  • Menu
Projects Groups Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
  • Sign in / Register
  • S seismic-dms-service
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Locked Files
  • Issues 33
    • Issues 33
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 18
    • Merge requests 18
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test Cases
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages & Registries
    • Packages & Registries
    • Package Registry
    • Container Registry
    • Infrastructure Registry
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Code review
    • Insights
    • Issue
    • Repository
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • Open Subsurface Data Universe Software
  • Platform
  • Domain Data Mgmt Services
  • Seismic
  • Seismic DMS Suite
  • seismic-dms-service
  • Merge requests
  • !125

feat: enable dataset level ACL based authorization - Part 3

  • Review changes

  • Download
  • Email patches
  • Plain diff
Merged Varunkumar Manohar requested to merge slb/vm/enforcedatasetacl into master Jun 28, 2021
  • Overview 14
  • Commits 21
  • Pipelines 52
  • Changes 16

This merge request accomplishes the following:

  1. If the subproject access policy is set to uniform then datagroups based acl authorization remains the same
  2. Else if the subproject access policy is set to dataset then the operations at the dataset level will now use the ACL groups at the dataset level for authorization checks
  3. User addition at the dataset level
  4. Copy utility endpoint to enforce dataset level ACL based authorization
  5. Updates to the {{SVC_URL}}/utility/gcs-access-token endpoint enabling the generation of Google Cloud Storage access tokens at the object prefix level (specific folder level). Previously it was only possible to generate access tokens only at the bucket level. A bucket could contain multiple folders. Note this functionality is currently available only for Google Cloud 7 unit test fixes
Edited Jul 02, 2021 by Varunkumar Manohar
Assignee
Assign to
Reviewer
Request review from
Time tracking
Source branch: slb/vm/enforcedatasetacl