Inicio Explorar Ayuda
Iniciar sesión
golang
/
netmaker
espejo de https://github.com/gravitl/netmaker
2
0
Fork 0
Archivos Incidencias 0 Wiki
Explorar el Código

Merge pull request #3195 from gravitl/NET-1773

NET-1773: Fix Platform User Permissions, comment out default pro trial on status api, peer endpoint fix
Abhishek K hace 10 meses
padre
e194d80fe9 348a4d963b
commit
d485a3060f
Se han modificado 5 ficheros con 87 adiciones y 15 borrados
Dividir vista Mostrar estadísticas de diff
  1. 14 14
      controllers/server.go
  2. 1 0
      logic/extpeers.go
  3. 10 0
      logic/peers.go
  4. 2 1
      models/user_mgmt.go
  5. 60 0
      pro/logic/user_mgmt.go

+ 14 - 14
controllers/server.go
Ver fichero 

@@ -140,26 +140,26 @@ func getStatus(w http.ResponseWriter, r *http.Request) {
 
 	if servercfg.ErrLicenseValidation != nil {
 
 		licenseErr = servercfg.ErrLicenseValidation.Error()
 
 	}
 
-	var trialEndDate time.Time
 
-	var err error
 
-	isOnTrial := false
 
-	if servercfg.IsPro &&
 
-		(servercfg.GetLicenseKey() == "" || servercfg.GetNetmakerTenantID() == "") {
 
-		trialEndDate, err = logic.GetTrialEndDate()
 
-		if err != nil {
 
-			slog.Error("failed to get trial end date", "error", err)
 
-		} else {
 
-			isOnTrial = true
 
-		}
 
-	}
 
+	//var trialEndDate time.Time
 
+	//var err error
 
+	// isOnTrial := false
 
+	// if servercfg.IsPro &&
 
+	// 	(servercfg.GetLicenseKey() == "" || servercfg.GetNetmakerTenantID() == "") {
 
+	// 	trialEndDate, err = logic.GetTrialEndDate()
 
+	// 	if err != nil {
 
+	// 		slog.Error("failed to get trial end date", "error", err)
 
+	// 	} else {
 
+	// 		isOnTrial = true
 
+	// 	}
 
+	// }
 
 	currentServerStatus := status{
 
 		DB:               database.IsConnected(),
 
 		Broker:           mq.IsConnected(),
 
 		IsBrokerConnOpen: mq.IsConnectionOpen(),
 
 		LicenseError:     licenseErr,
 
 		IsPro:            servercfg.IsPro,
 
-		TrialEndDate:     trialEndDate,
 
-		IsOnTrialLicense: isOnTrial,
 
+		//TrialEndDate:     trialEndDate,
 
+		//IsOnTrialLicense: isOnTrial,
 
 	}
 
 
 	w.Header().Set("Content-Type", "application/json")

+ 1 - 0
logic/extpeers.go
Ver fichero 

@@ -802,6 +802,7 @@ func GetStaticNodesByNetwork(network models.NetworkID, onlyWg bool) (staticNode
 
 	if err != nil {
 
 		return
 
 	}
 
+	SortExtClient(extClients[:])
 
 	for _, extI := range extClients {
 
 		if extI.Network == network.String() {
 
 			if onlyWg && extI.RemoteAccessClientID != "" {

+ 10 - 0
logic/peers.go
Ver fichero 

@@ -227,6 +227,16 @@ func GetPeerUpdateForHost(network string, host *models.Host, allNodes []models.N
 
 			} else if host.EndpointIPv6 != nil && peerHost.EndpointIPv6 != nil {
 
 				peerEndpoint = peerHost.EndpointIPv6
 
 			}
 
+			if host.EndpointIP == nil && peerEndpoint == nil {
 
+				if peerHost.EndpointIP != nil {
 
+					peerEndpoint = peerHost.EndpointIP
 
+				}
 
+			}
 
+			if host.EndpointIPv6 == nil && peerEndpoint == nil {
 
+				if peerHost.EndpointIPv6 != nil {
 
+					peerEndpoint = peerHost.EndpointIPv6
 
+				}
 
+			}
 
 
 			peerConfig.Endpoint = &net.UDPAddr{
 
 				IP:   peerEndpoint,

+ 2 - 1
models/user_mgmt.go
Ver fichero 

@@ -80,7 +80,8 @@ const (
 
 	AllUserRsrcID           RsrcID = "all_user"
 
 	AllDnsRsrcID            RsrcID = "all_dns"
 
 	AllFailOverRsrcID       RsrcID = "all_fail_over"
 
-	AllAclsRsrcID           RsrcID = "all_acls"
 
+	AllAclsRsrcID           RsrcID = "all_acl"
 
+	AllTagsRsrcID           RsrcID = "all_tag"
 
 )
 
 
 // Pre-Defined User Roles

+ 60 - 0
pro/logic/user_mgmt.go
Ver fichero 

@@ -60,6 +60,36 @@ var NetworkUserAllPermissionTemplate = models.UserRolePermissionTemplate{
 
 				SelfOnly: true,
 
 			},
 
 		},
 
+		models.DnsRsrc: {
 
+			models.AllDnsRsrcID: models.RsrcPermissionScope{
 
+				Read: true,
 
+			},
 
+		},
 
+		models.AclRsrc: {
 
+			models.AllAclsRsrcID: models.RsrcPermissionScope{
 
+				Read: true,
 
+			},
 
+		},
 
+		models.EgressGwRsrc: {
 
+			models.AllEgressGwRsrcID: models.RsrcPermissionScope{
 
+				Read: true,
 
+			},
 
+		},
 
+		models.InetGwRsrc: {
 
+			models.AllInetGwRsrcID: models.RsrcPermissionScope{
 
+				Read: true,
 
+			},
 
+		},
 
+		models.RelayRsrc: {
 
+			models.AllRelayRsrcID: models.RsrcPermissionScope{
 
+				Read: true,
 
+			},
 
+		},
 
+		models.TagRsrc: {
 
+			models.AllTagsRsrcID: models.RsrcPermissionScope{
 
+				Read: true,
 
+			},
 
+		},
 
 	},
 
 }
 
 
@@ -147,6 +177,36 @@ func CreateDefaultNetworkRolesAndGroups(netID models.NetworkID) {
 
 					SelfOnly: true,
 
 				},
 
 			},
 
+			models.DnsRsrc: {
 
+				models.AllDnsRsrcID: models.RsrcPermissionScope{
 
+					Read: true,
 
+				},
 
+			},
 
+			models.AclRsrc: {
 
+				models.AllAclsRsrcID: models.RsrcPermissionScope{
 
+					Read: true,
 
+				},
 
+			},
 
+			models.EgressGwRsrc: {
 
+				models.AllEgressGwRsrcID: models.RsrcPermissionScope{
 
+					Read: true,
 
+				},
 
+			},
 
+			models.InetGwRsrc: {
 
+				models.AllInetGwRsrcID: models.RsrcPermissionScope{
 
+					Read: true,
 
+				},
 
+			},
 
+			models.RelayRsrc: {
 
+				models.AllRelayRsrcID: models.RsrcPermissionScope{
 
+					Read: true,
 
+				},
 
+			},
 
+			models.TagRsrc: {
 
+				models.AllTagsRsrcID: models.RsrcPermissionScope{
 
+					Read: true,
 
+				},
 
+			},
 
 		},
 
 	}
 
 	d, _ := json.Marshal(NetworkAdminPermissionTemplate)