| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-07-11 | refactor: rename CheckService to LocalCheckService | mo khan | |
| 2025-07-11 | chore: split the RemoteCheckService from the LocalCheckService | mo khan | |
| 2025-07-04 | feat: perform a remote PDP authz check | mo khan | |
| 2025-06-26 | feat: connect to the remove authorization daemon | mo khan | |
| 2025-06-11 | fix: update authzd to allow access to css js assets | mo khan | |
| 2025-05-26 | refactor: remove unused code | mo khan | |
| 2025-05-24 | chore: log x-request-id in sparkle and authzd | mo khan | |
| 2025-05-24 | refactor: do not make rpc call from authzd | mo khan | |
| 2025-05-23 | feat: delegate call to remote rpc if permission is required | mo khan | |
| 2025-05-23 | feat: delegate to the remote authzd to check if the permission is granted | mo khan | |
| 2025-05-23 | feat: parse the body of the id token | mo khan | |
| 2025-05-23 | feat: add external authorization service (authzd) with JWT authentication | mo khan | |
| - Add new authzd gRPC service implementing Envoy's external authorization API - Integrate JWT authentication filter in Envoy configuration with claim extraction - Update middleware to support both cookie-based and header-based user authentication - Add comprehensive test coverage for authorization service and server - Configure proper service orchestration with authzd, sparkled, and Envoy - Update build system and Docker configuration for multi-service deployment - Add grpcurl tool for gRPC service debugging and testing This enables fine-grained authorization control through Envoy's ext_authz filter while maintaining backward compatibility with existing cookie-based authentication. | |||
 |
index : gitlab/sparkled.git | |
| GitLab CI/CD utilities | git |
| summaryrefslogtreecommitdiff |