| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 13 days | Use module-level logging rather than the app's logger. HEAD main | Frederick Muriuki Muriithi | |
| 13 days | Enable turning logging on/off by module. | Frederick Muriuki Muriithi | |
| To help with debugging and traceability, both in development and production, we need to be able to turn individual module loggers on or off in a flexible way. This commit enables that. | |||
| 13 days | Ensure ALL users with access to the resource are actually listed. | Frederick Muriuki Muriithi | |
| 2026-04-28 | Add new privileges to the 'batch-editors' role. | Frederick Muriuki Muriithi | |
| 2026-04-28 | Add a 'system:system-wide:data:view' privilege. | Frederick Muriuki Muriithi | |
| 2026-04-23 | Remove debug artifact. | Frederick Muriuki Muriithi | |
| 2026-04-23 | Improve error messages. | Frederick Muriuki Muriithi | |
| 2026-04-23 | Fix minor linting bugs. | Frederick Muriuki Muriithi | |
| 2026-04-23 | AuthorisationError is HTTP status code 401. | Frederick Muriuki Muriithi | |
| 2026-04-23 | Allow anonymous users "public-view" privileges. | Frederick Muriuki Muriithi | |
| The default system-level privilege is the "public-view", i.e. the users can view basic details about the Genenetwork system. If no authorisation is provided when accessing the /auth/system/roles endpoint, return the default role/privilege. | |||
| 2026-04-20 | Implement editing resource name. | Frederick Muriuki Muriithi | |
| 2026-04-20 | Use module-level logger rather than application's logger. | Frederick Muriuki Muriithi | |
| 2026-04-15 | Do not grant sysadmins direct access at resource creation. | Frederick Muriuki Muriithi | |
| 2026-04-08 | user resources: Add a text filter for further filtering. | Frederick Muriuki Muriithi | |
| 2026-04-08 | user resources: Enable filtering using only the limit and offset. | Frederick Muriuki Muriithi | |
| 2026-04-08 | Use module-level logger. | Frederick Muriuki Muriithi | |
| 2026-04-08 | user resources: return total with filtered records. | Frederick Muriuki Muriithi | |
| Return a count of the total number of resources that the user has access to even if we are only interested in a few of the records. | |||
| 2026-04-07 | Handle minor bug. | Frederick Muriuki Muriithi | |
| 2026-04-07 | Update code to handle resource creators and creation times. | Frederick Muriuki Muriithi | |
| 2026-04-07 | Add creator and creation time tracking to Resources. | Frederick Muriuki Muriithi | |
| 2026-04-07 | Handle edge case where no admins exist: e.g. database is empty. | Frederick Muriuki Muriithi | |
| 2026-04-02 | Update resource creation: Add tracking information | Frederick Muriuki Muriithi | |
| Add the creator of the resource and the time the resource was created. | |||
| 2026-04-02 | Migration to add creator and time tracking info to resources table. | Frederick Muriuki Muriithi | |
| Add a migration to extend the resources' table to track the user that created the resource, and the time at which they created that resource. | |||
| 2026-03-31 | Add more privileges to "systemwide-data-curator" role. | Frederick Muriuki Muriithi | |
| 2026-03-26 | Update edit access: use more flexible 'can_edit(...)' function. | Frederick Muriuki Muriithi | |
| 2026-03-11 | Resources: make-public: Assign new privilege to data curator role. | Frederick Muriuki Muriithi | |
| 2026-03-11 | Resources: make-public: Create new privilege. | Frederick Muriuki Muriithi | |
| Create the new 'system:resource:make-public' privilege to be used to restrict the ability of users to make their resources accessible by the general public. | |||
| 2026-03-11 | Assign 'systemwide-docs-editor' role to sysadmins. | Frederick Muriuki Muriithi | |
| 2026-03-11 | Assign 'system:documentation:edit' privilege to 'systemwide-docs-editor' role. | Frederick Muriuki Muriithi | |
| 2026-03-11 | Create the 'systemwide-docs-editor' role. | Frederick Muriuki Muriithi | |
| 2026-03-11 | Documention Edit: Add new privilege. | Frederick Muriuki Muriithi | |
| Add a privilege to restrict ability to edit documentation that comes with the Genenetwork system. | |||
| 2026-02-10 | Check only for the base URL and path. | Frederick Muriuki Muriithi | |
| To allow the client to pass flags to the redirect_uri that the authorisation server has no interest in, check that only the "base" url (protocol, hostname/netlog and path) are registered, ignoring any query and fragment parameters. | |||
| 2026-02-10 | Bug: Fix import path. | Frederick Muriuki Muriithi | |
| 2026-02-10 | Setup correct flash message classes. | Frederick Muriuki Muriithi | |
| 2026-02-10 | Authorisation Check: New function to check user has edit access. | Frederick Muriuki Muriithi | |
| 2026-02-10 | Authorisation Check: New function to check user has view access. | Frederick Muriuki Muriithi | |
| 2026-02-10 | Use Auth function that checks for delete access. | Frederick Muriuki Muriithi | |
| 2026-02-10 | Authorisation Check: New function to check user has delete access. | Frederick Muriuki Muriithi | |
| 2026-02-06 | Use AuthorisationError to indicate error condition. | Frederick Muriuki Muriithi | |
| 2026-02-06 | Replace hard-coded email check with check against privileges | Frederick Muriuki Muriithi | |
| Fix the check: rather than using a hard-coded email to check for authorisation, we instead check against the privileges the user has on the resource, or whether they have global privileges allowing them to act on any data. | |||
| 2026-02-06 | Fetch a single resource ID: delete data from one resource at a time. | Frederick Muriuki Muriithi | |
| 2026-02-06 | Add new 'systemwide-data-curator' role. | Frederick Muriuki Muriithi | |
| Add a new role named 'systemwide-data-curator' that is able to edit and/or delete any data on the system regardless of who own it. | |||
| 2026-01-30 | Add placeholder check for privileges | Frederick Muriuki Muriithi | |
| For now, only one user is allowed to delete data from Genenetwork. To get the code online as quickly as possible, in order to test out the system, I have elected to do a quick and dirty check that prevents everyone except @acenteno from being able to delete data from the system. To fix this, I'll need to actually implement (a) new role(s) to grant certain users special permissions on **ALL** the data in the system regardless of who owns it. | |||
| 2026-01-28 | Reapply "Channel - guix-bioinformatics: Upgrade to commit 9b0955f." | Frederick Muriuki Muriithi | |
| This reverts commit 47e025d91330f40ccffe56a17c57f62bbea70b55. | |||
| 2026-01-28 | Channels: Fix commits of upstream channels to prevent build failures | Frederick Muriuki Muriithi | |
| * guix-past: Fix to commit 473c942. * guix-rust-past-crates: Fix to commit b8b7ffb. | |||
| 2026-01-28 | Revert "Channel - guix-bioinformatics: Upgrade to commit 9b0955f." | Frederick Muriuki Muriithi | |
| The guix-bioinformatics commit 9b0955f leads to a cascade of breakages. I am thus reverting this commit to restore a previous sane state. This reverts commit 254ded2ec5fb412c2ba33a72f72bbed29fb7d9bc. | |||
| 2026-01-28 | Channel - guix-bioinformatics: Upgrade to commit 9b0955f. | Frederick Muriuki Muriithi | |
| Update the commit for the guix bioinformatics channel to fit in with @mbonz update at https://git.genenetwork.org/gn-machines/commit/?id=04c2a18f615bc0a387235544433989af2e8cb62b | |||
| 2026-01-27 | Leave notes for tasks that need doing. | Frederick Muriuki Muriithi | |
| 2026-01-27 | Proof-of-concept: Delete linked phenotype data. | Frederick Muriuki Muriithi | |
| 2026-01-27 | Simplify relative import. | Frederick Muriuki Muriithi | |
 |
index : gn-auth | |
| GN authentication and authorization service |
| about summary refs log tree commit diff |