clone of https://git.mleku.dev/mleku/next.orly.dev

You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Tree: ebe0012863

imwald

main

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'ebe0012863'

${ noResults }

next.orly.dev/pkg/policy

History

mleku ebe0012863 fix auth, read/white whitelisting and rule precedence, bump to v0.29.13 ... Policy System Verification & Testing (Latest Updates) Authentication & Security: Verified policy system enforces authentication for all REQ and EVENT messages when enabled Confirmed AUTH challenges are sent immediately on connection and repeated until authentication succeeds Validated unauthenticated requests are silently rejected regardless of other policy rules Access Control Logic: Confirmed privileged flag only restricts read access (REQ queries), not write operations (EVENT submissions) Validated read_allow and privileged use OR logic: users get access if EITHER they're in the allow list OR they're a party to the event (author/p-tag) This design allows both explicit whitelisting and privacy for involved parties Kind Whitelisting: Verified kind filtering properly rejects unlisted events in all scenarios: Explicit kind.whitelist: Only listed kinds accepted, even if rules exist for other kinds Implicit whitelist (rules only): Only kinds with defined rules accepted Blacklist mode: Blacklisted kinds rejected, others require rules Added comprehensive test suite (10 scenarios) covering edge cases and real-world configurations		2 months ago
..
benchmark_test.go	create concurrent script runner per rule script	2 months ago
comprehensive_test.go	fix policy to ignore all req/events without auth	2 months ago
kind_whitelist_test.go	fix auth, read/white whitelisting and rule precedence, bump to v0.29.13	2 months ago
policy.go	fix policy to ignore all req/events without auth	2 months ago
policy_integration_test.go	fix policy to ignore all req/events without auth	2 months ago
policy_test.go	fix policy to ignore all req/events without auth	2 months ago
precedence_test.go	fix policy to ignore all req/events without auth	2 months ago
read_access_test.go	fix policy to ignore all req/events without auth	2 months ago
testmain_test.go	Refactor delete handling and improve logging in event processing	2 months ago