about summary refs log tree commit diff
AgeCommit message (Collapse)Author
2025-07-30Remove a user from a group as a member.Frederick Muriuki Muriithi
2025-07-30Fetch resource object that wraps the group for authorisationsFrederick Muriuki Muriithi
2025-07-30Don't allow user to create a group when they are a member of anotherFrederick Muriuki Muriithi
When user is made a member of a group, we revoke their ability to create a new group.
2025-07-30Implement revocation of `system-administrator` role.Frederick Muriuki Muriithi
2025-07-30Grant user `system-administrator` role on all resourcesFrederick Muriuki Muriithi
During promotion of a user to system admin, grant the user `system-administrator` role on all resources in the system.
2025-07-30Add global configurations for warnings filters.Frederick Muriuki Muriithi
2025-07-30Rename function, retaining some backwards compatibility.Frederick Muriuki Muriithi
2025-07-30Function to fetch the `system-administrator` role details from db.Frederick Muriuki Muriithi
2025-07-29Fix issues caught by the type-checker.Frederick Muriuki Muriithi
2025-07-29Fix issues caught by code-linter.Frederick Muriuki Muriithi
2025-07-29Pass connection object rather than cursor object.Frederick Muriuki Muriithi
2025-07-29Actually delete a resource.Frederick Muriuki Muriithi
2025-07-29Grant sysadmins access to the resource when created.Frederick Muriuki Muriithi
2025-07-29Add function to delete a resource.Frederick Muriuki Muriithi
2025-07-29Add new route for consistency.Frederick Muriuki Muriithi
2025-07-29Refactor: Replace old auth-checking function with spec-based one.Frederick Muriuki Muriithi
2025-07-29Bugfix: Fix typo - we don't pass objects, just their IDs.Frederick Muriuki Muriithi
2025-07-29Assign `system-administrator` role on all non-system resources.Frederick Muriuki Muriithi
2025-07-29Assign now system-wide resource-access privileges to sysadmins.Frederick Muriuki Muriithi
2025-07-29Add system-wide resource-access privileges for system administratorsFrederick Muriuki Muriithi
System administrators need to access, and modify the resources in the system, and to do that, we need to grant them specific privileges to check against. These privileges act on the wrapper resource objects, not necessarily the data attached to the resource object.
2025-07-29Deprecate older authorisation-checking functions.Frederick Muriuki Muriithi
2025-07-29Import entire uuid module rather than specific symbols.Frederick Muriuki Muriithi
2025-07-29Create outline for deleting user groups from the auth server.Frederick Muriuki Muriithi
2025-07-29Add spec-based authorisation checker function.Frederick Muriuki Muriithi
2025-07-28Add group details to masquerade data.Frederick Muriuki Muriithi
2025-07-28Only include the group if the user is a member of one.Frederick Muriuki Muriithi
2025-07-22Migrations: Give sysadmins the 'system:user:edit' privilege.Frederick Muriuki Muriithi
2025-07-22Migrations: New privilege (system:user:edit)Frederick Muriuki Muriithi
Add a new privilege to give users the general ability to edit user information at the 'system level', i.e. edit user information for any user.
2025-07-17Bugfix: remove obsolete variable name.Frederick Muriuki Muriithi
2025-07-17Bugfix: Get user IDs from objects.Frederick Muriuki Muriithi
2025-07-17Bugfix: Retrieve the reasons, not the entire dict.Frederick Muriuki Muriithi
2025-07-17Improve messaging for deletion failures.Frederick Muriuki Muriithi
2025-07-17Add note to self for possible "improvement" in user deletionFrederick Muriuki Muriithi
Add a note for considerations to make regarding recovery from error trying to delete users, so we can respond with more informative messages. Here, "improvement" is in quotes, because the priority leans more towards collecting more information for better feedback, which might be at the expense of speed of code.
2025-07-17Decouple gn-auth from production (https://genenetwork.org).Frederick Muriuki Muriithi
Copy over files from GN2 for a quick decoupling of gn-auth from the production system.
2025-07-16Implement initial views into the groups endpoints.Frederick Muriuki Muriithi
2025-07-16Bugfix: Handle possible missing json data.Frederick Muriuki Muriithi
2025-07-09Improve error handling and reporting.Frederick Muriuki Muriithi
- Refactor out common functionality into reusable utilities - Handle errors from the Authlib library/package - Handle 4xx errors generically.
2025-07-09Setup independent logging for packages.Frederick Muriuki Muriithi
2025-07-09Move error handling into separate package.Frederick Muriuki Muriithi
2025-07-09Update docs: Indicate how to run tests in parallel.Frederick Muriuki Muriithi
2025-07-09Update expected privileges for group-leader users.Frederick Muriuki Muriithi
2025-07-09Fix some linting issues.Frederick Muriuki Muriithi
2025-07-08Provide zero counts for all and filtered totals.Frederick Muriuki Muriithi
2025-07-08Enable filtering of groups list and length limiting.Frederick Muriuki Muriithi
2025-07-07Enable limiting the number of items returned.Frederick Muriuki Muriithi
2025-07-07Check "Content-Type" header. Also process get params.Frederick Muriuki Muriithi
* Use the "Content-Type" value to check whether or not to attempt to read the sent values as json * Process also the get parameter, to allow the endpoints to be slightly more flexible (this probably breaks how HTTP should work).
2025-07-03Add role management privileges to the group-leader role.Frederick Muriuki Muriithi
2025-07-03Fix minor issues caught by mypy.Frederick Muriuki Muriithi
2025-07-03Bugfix: Fix clauses for user listing query.Frederick Muriuki Muriithi
2025-07-03Pytest: (invocation) Use marker (rather than keyword) expressions.Frederick Muriuki Muriithi
generated by cgit-pink 1.4.1 (git 2.36.1) at 2025-10-07 03:11:13 +0000