Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Added Access Control for Network Interface (#683)
* Code move * Code move * Use RoutingContext type * Structs split * Renaming * Visibility * Move ingress/egress filters out of pubsub * Make hat abstract * Abstract missing close_face fn * Duplicate hat * Move Primitives * Move link_id into HatFace * Change face initialization * Interceptors * Interceptor types renaming * Rename RoutingContext * Add RoutingContext and LoggerInterceptor * Interceptors can access the Config at construction * Split linkstate and p2p peer hats * Simplify HatTrait init function * Hats cleanup * Reintroduce routes precomputation * Improve routes precomputation * Reintroduce matching pulls precomputation * Perf improvements * Perf improvements * Remove files wrongly reintroduced by merge * Fix complete_n build * Remove useless checks * Fix OAM handling * Remove commented code * Simplified routes computation hats api * Move matching pulls computation out of hats * Fix query routes update * Fix copy-paste error * Renaming * Add missing query routes deactivations * Refactor code * Improve perfromances * WIP: added pep pdp points * WIP:added interceptor code and PEP logic * WIP:added datastructures for policy and PDP logic * WIP:first basic acl prototype * WIP:first acl prototype * WIP:first acl prototype * WIP:ACL phase 1 * WIP:ACL phase 1 * WIP:Modified ACL for attributes * WIP:Modified ACL for attributes * WIP:Cleaned code * WIP:merging code * WIP:adding config conditions * WIP:merging with DS * WIP:moved rules into config file * WIP:moved rules into config file * WIP:merging changes * Revert "WIP:merging changes" This reverts commit 50c9f0e. * WIP:merging new changes * WIP:merging new changes * WIP:ACL with networkinterface * WIP:ACL with networkinterface * WIP:ACL with networkinterface * WIP:ACL with networkinterface * WIP:Added multi-interface funcionality * WIP: Improved code design for ACL * WIP: Modified for new config style * WIP: Modified for new config style * WIP: Added changes for default behaviour * WIP: Added changes for default behaviour * WIP: Added changes for default behaviour * WIP: Cleaning code * WIP: Config changes after discussion * WIP: Config changes after discussion * WIP: Adding Queryable * WIP: Adding key-expr caching * Cleaning config file * made review changes * made review changes * adding review changes for logs and removing bool values * adding review changes * adding actions for both ingress and egress * adding ingress and egress flow * cleaning code * adding tests * cleaning policy code * acl tests for queryable * replaced nested Vec with structs * fixed queryable test issue * fixed cache downcast error * fixed interface issue in tests * move acl config out of transport * move acl config out of transport * clean tests code * clean tests code * clean config file * clean config file * clean code * resolve conflicts * resolve conflicts issues * refactor code * refactor code * refactor code * refactor code for review changes * refactor code for review changes * fix acl tests issue * fix acl tests issue * fix acl tests issue * fix acl tests issue * fix acl tests issue * resolve merge conflicts * Update DEFAULT_CONFIG.json5 Co-authored-by: Alexander <[email protected]> * change acl to access_control for clarity * fix: Remove sync-lockfiles workflow (#925) * modify actions values in config file * remove [ACCESS LOG] string from the logs * Remove [ACCESS LOG] from logging * rework access control logging * Add ingress/egress logs * add interface name in access logs * Fix log level * Add missing header * Add missing header files --------- Co-authored-by: OlivierHecart <[email protected]> Co-authored-by: Alexander <[email protected]> Co-authored-by: Mahmoud Mazouz <[email protected]> Co-authored-by: Luca Cominardi <[email protected]>
- Loading branch information