about summary refs log tree commit diff
AgeCommit message (Collapse)Author
2025-07-29Bugfix: Fix typo - we don't pass objects, just their IDs.Frederick Muriuki Muriithi
2025-07-29Assign `system-administrator` role on all non-system resources.Frederick Muriuki Muriithi
2025-07-29Assign now system-wide resource-access privileges to sysadmins.Frederick Muriuki Muriithi
2025-07-29Add system-wide resource-access privileges for system administratorsFrederick Muriuki Muriithi
System administrators need to access, and modify the resources in the system, and to do that, we need to grant them specific privileges to check against. These privileges act on the wrapper resource objects, not necessarily the data attached to the resource object.
2025-07-29Deprecate older authorisation-checking functions.Frederick Muriuki Muriithi
2025-07-29Import entire uuid module rather than specific symbols.Frederick Muriuki Muriithi
2025-07-29Create outline for deleting user groups from the auth server.Frederick Muriuki Muriithi
2025-07-29Add spec-based authorisation checker function.Frederick Muriuki Muriithi
2025-07-28Add group details to masquerade data.Frederick Muriuki Muriithi
2025-07-28Only include the group if the user is a member of one.Frederick Muriuki Muriithi
2025-07-22Migrations: Give sysadmins the 'system:user:edit' privilege.Frederick Muriuki Muriithi
2025-07-22Migrations: New privilege (system:user:edit)Frederick Muriuki Muriithi
Add a new privilege to give users the general ability to edit user information at the 'system level', i.e. edit user information for any user.
2025-07-17Bugfix: remove obsolete variable name.Frederick Muriuki Muriithi
2025-07-17Bugfix: Get user IDs from objects.Frederick Muriuki Muriithi
2025-07-17Bugfix: Retrieve the reasons, not the entire dict.Frederick Muriuki Muriithi
2025-07-17Improve messaging for deletion failures.Frederick Muriuki Muriithi
2025-07-17Add note to self for possible "improvement" in user deletionFrederick Muriuki Muriithi
Add a note for considerations to make regarding recovery from error trying to delete users, so we can respond with more informative messages. Here, "improvement" is in quotes, because the priority leans more towards collecting more information for better feedback, which might be at the expense of speed of code.
2025-07-17Decouple gn-auth from production (https://genenetwork.org).Frederick Muriuki Muriithi
Copy over files from GN2 for a quick decoupling of gn-auth from the production system.
2025-07-16Implement initial views into the groups endpoints.Frederick Muriuki Muriithi
2025-07-16Bugfix: Handle possible missing json data.Frederick Muriuki Muriithi
2025-07-09Improve error handling and reporting.Frederick Muriuki Muriithi
- Refactor out common functionality into reusable utilities - Handle errors from the Authlib library/package - Handle 4xx errors generically.
2025-07-09Setup independent logging for packages.Frederick Muriuki Muriithi
2025-07-09Move error handling into separate package.Frederick Muriuki Muriithi
2025-07-09Update docs: Indicate how to run tests in parallel.Frederick Muriuki Muriithi
2025-07-09Update expected privileges for group-leader users.Frederick Muriuki Muriithi
2025-07-09Fix some linting issues.Frederick Muriuki Muriithi
2025-07-08Provide zero counts for all and filtered totals.Frederick Muriuki Muriithi
2025-07-08Enable filtering of groups list and length limiting.Frederick Muriuki Muriithi
2025-07-07Enable limiting the number of items returned.Frederick Muriuki Muriithi
2025-07-07Check "Content-Type" header. Also process get params.Frederick Muriuki Muriithi
* Use the "Content-Type" value to check whether or not to attempt to read the sent values as json * Process also the get parameter, to allow the endpoints to be slightly more flexible (this probably breaks how HTTP should work).
2025-07-03Add role management privileges to the group-leader role.Frederick Muriuki Muriithi
2025-07-03Fix minor issues caught by mypy.Frederick Muriuki Muriithi
2025-07-03Bugfix: Fix clauses for user listing query.Frederick Muriuki Muriithi
2025-07-03Pytest: (invocation) Use marker (rather than keyword) expressions.Frederick Muriuki Muriithi
2025-07-03Fix some linting issues.Frederick Muriuki Muriithi
2025-07-03Bugfix: Build up "WHERE" clauses correctlyFrederick Muriuki Muriithi
Have the email and name checked with "OR" where both are present.
2025-07-03Provide missing symbol.Frederick Muriuki Muriithi
2025-07-03Bugfix: Set the correct value.Frederick Muriuki Muriithi
2025-06-25Delete system users.Frederick Muriuki Muriithi
2025-06-24Search in names too. Fix query params.Frederick Muriuki Muriithi
2025-06-24Enable filtering of data, and limiting length.Frederick Muriuki Muriithi
2025-06-11Fix failing tests: add new privilege to group-leader.Frederick Muriuki Muriithi
2025-06-11Fix code issue caught by type-checker.Frederick Muriuki Muriithi
2025-06-11Fix code issues caught by the linter.Frederick Muriuki Muriithi
2025-06-09Add inbredset-group resource type in unlinked_data functionzsloan
This still needs to be implemented, but this commit prevents the key error
2025-06-09Add migrations for admin UI and batch edit privileges/roleszsloan
2025-06-09Enable linking multiple data items to a resource in single request.Frederick Muriuki Muriithi
2025-06-09Link 'group:data:link-to-group' privilege to the group-leader role.Frederick Muriuki Muriithi
2025-06-09Add a new privilege: 'group:data:link-to-group'Frederick Muriuki Muriithi
2025-06-09Use more flexible check for authorisation.Frederick Muriuki Muriithi
Use the more flexible check for authorisation that a user has on a specific resource.
generated by cgit-pink 1.4.1 (git 2.36.1) at 2025-10-06 22:20:40 +0000