-
### Is your proposal related to a problem?
Yes, building a flexible permissions system in Hasura can be difficult because it has a specific RBAC model that [has limitations in how you can express p…
-
Enable unit testing with authenticated credentials. See Joonas W's blog post on unit testing Azure AD secured API's
-
Right now, the types are marked as not supported on chan ([authz messages](https://github.com/cosmos/cosmjs/blob/1499c4d1004b1ee483dfd85fddbc31c32b8a6864/packages/stargate/src/modules/authz/aminomessa…
-
By design, index lifecycle management performs operations as the user who last updated the ILM policy. This behavior is [documented](https://www.elastic.co/guide/en/elasticsearch/reference/master/ilm-…
-
### Description
I have the plugins openid-connect and authuz-casbin enabled. openid-connect plugin will connect to keycloak to authenticate the bearer token and then authuz-casbin for authorization. …
-
**Is your feature request related to a problem? Please describe.**
We are currently facing the problem to run multiple Thingsboard instances (e.g. Dev/Prod) on the same Kafka Cluster with Message Que…
-
Kibana Version: 8.14.3
Elasticsearch Version: 8.14.3 (but still present in main)
Describe the bug:
The `kibana_system` role does not have enough permissions to delete the system indices for `logs-c…
-
Determine initial SAMS scopes to create for authZ
-
We are adding authz to the application in #1540, but we are pushing the integration with the blob module to a different PR. This is mainly because there are different ways to do this, each of which un…
-
**Describe the bug**
I have an AuthService with a Mapping that has bypass_auth set to true. Sometimes a request to auth service goes through AuthService instead of the Mapping.
The situation wher…