diff options
author | Simo Sorce <simo@redhat.com> | 2015-10-05 20:09:02 -0400 |
---|---|---|
committer | Simo Sorce <simo@redhat.com> | 2015-10-19 12:17:37 -0400 |
commit | bd2e62767e6287dcaf5275362338682fc555d4ce (patch) | |
tree | f7d02b6c8c69c408327598b51331ef01eb3f91ee /custodia.conf | |
parent | c0c31ce07974e7aa5bde3a4ceac5f103a26d524e (diff) | |
download | custodia-bd2e62767e6287dcaf5275362338682fc555d4ce.tar.gz custodia-bd2e62767e6287dcaf5275362338682fc555d4ce.tar.xz custodia-bd2e62767e6287dcaf5275362338682fc555d4ce.zip |
Add UserNameSpace auths plugin
Moves the secrets.Namespaces plugin to the proper authorizers file and
fixes it to properly enforce the user-named namespace is being used.
Signed-off-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Christian Heimes <cheimes@redhat.com>
Diffstat (limited to 'custodia.conf')
-rw-r--r-- | custodia.conf | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/custodia.conf b/custodia.conf index c3c56a5..c3c20af 100644 --- a/custodia.conf +++ b/custodia.conf @@ -16,7 +16,7 @@ handler = custodia.httpd.authorizers.SimplePathAuthz paths = /. [authz:namespaces] -handler = custodia.secrets.Namespaces +handler = custodia.httpd.authorizers.UserNameSpace path = /secrets/ store = simple @@ -37,7 +37,7 @@ dburi = secrets.db table = tenant1 [authz:tenant1] -handler = custodia.secrets.Namespaces +handler = custodia.httpd.authorizers.UserNameSpace path = /tenant1/secrets/ store = tenant1 @@ -55,7 +55,7 @@ master_key = examples/enclite.sample.key master_enctype = A128CBC-HS256 [authz:encrypted] -handler = custodia.secrets.Namespaces +handler = custodia.httpd.authorizers.UserNameSpace path = /enc/secrets/ store = encrypted |