Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[v17] Stable UNIX users #51625

Open
wants to merge 2 commits into
base: branch/v17
Choose a base branch
from
Open

[v17] Stable UNIX users #51625

wants to merge 2 commits into from
+7,451 −3,703

Conversation

espadolini
Copy link
Contributor

Backport to branch/v17 of

changelog: added support for stable UIDs for automatically provisioned users

@espadolini
Stable UNIX users: storage and auth API (#51102)
1f735d9 
* add config field in cluster auth preference

* extend ClusterConfiguration to support checking auth preference in AtomicWrite

* stable UNIX users storage

* auth API and auth-side business logic

* move server implementation to a subpackage

* Use proto3 and the default (open) API

* remove type alias for ClusterConfiguration

* Move new AuthPreference validation into a Validate method

* Check the StableUnixUserConfig before use

* use Config instead of Params

* Don't rely on error types for the retry logic

* Fix TestStableUNIXUsersBasic

* Use free functions for Validate

* make grpc

* black-box testing that includes authz
@espadolini
Stable UNIX users: functionality (#51200)
b4f1863 
* wiring the API client through

* tctl stable-unix-users ls

* stable UID fallback for Teleport SSHD

* stable_unix_user.create event

* fix-license

* Require and test audit log message

* Add stable_unix_user_config to fileconf

* Avoid saying "fallback UID" in logs

* Avoid saying "fallback UID" in error messages

* Avoid racing writes in the mock emitter

* pnpm lint-fix

* fix lib/auth tests that broken during rebase
@github-actions GitHub Actions

This comment was marked as off-topic.

Sign in to view
@espadolini
Copy link
Contributor Author

Tagged do-not-merge because this should go in for v17.3

@espadolini espadolini marked this pull request as ready for review January 29, 2025 23:17
@github-actions github-actions bot added audit-log Issues related to Teleports Audit Log documentation size/xl tctl tctl - Teleport admin tool ui labels Jan 29, 2025
@espadolini espadolini mentioned this pull request Jan 31, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rosstimothy rosstimothy rosstimothy approved these changes

@strideynet strideynet strideynet approved these changes

Assignees
No one assigned
Labels
audit-log Issues related to Teleports Audit Log backport do-not-merge documentation size/xl tctl tctl - Teleport admin tool ui
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@espadolini @strideynet @rosstimothy