REST HTTP paths have collisions; some paths are not currently usable #313

dmihalcik-virtru · 2024-03-05T20:21:14Z

Our current use of gRPC Gateway with gorilla.mux results in several name collisions. Notably, the attributes/namespaces collides with the attributes/_ path.

The text was updated successfully, but these errors were encountered:

jakedoublev · 2024-05-16T15:24:03Z

All CRUD routes for Get, List, Update, Deactivate/Delete, Create were tested over RESTful gateway for the following policy:

attribute namespaces
attribute definitions
attribute values
subject condition sets
subject mappings
resource mappings

All were found to be accessible and working as expected, with the one exception being Update of resource mappings as POST instead of PATCH which PR #824 fixes.

…STful gateway (#824) Closes #313

🤖 I have created a release *beep* *boop* --- ## [0.2.3](protocol/go/v0.2.2...protocol/go/v0.2.3) (2024-05-17) ### Features * **authz:** Handle jwts as entity chains in decision requests ([#759](#759)) ([65612e0](65612e0)) ### Bug Fixes * **policy:** make resource-mappings update patch instead of put in RESTful gateway ([#824](#824)) ([1878bb5](1878bb5)), closes [#313](#313) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

🤖 I have created a release *beep* *boop* --- ## [0.4.3](service/v0.4.2...service/v0.4.3) (2024-05-22) ### Features * **authz:** Allow un-scoped GetEntitlements calls ([#833](#833)) ([9146947](9146947)) * **authz:** Handle jwts as entity chains in decision requests ([#759](#759)) ([65612e0](65612e0)) * **ci:** Add e2e roundtrip tests for different attribute combinations ([#790](#790)) ([1b0ec23](1b0ec23)) * **core:** Adds opentdf.hsm build constraint ([#830](#830)) ([e13e52a](e13e52a)) * **core:** audit logging ([#774](#774)) ([ea58b3c](ea58b3c)) ### Bug Fixes * **authz:** Populate fqn field in attribute values returned from GetAttributeValuesByFqns ([#816](#816)) ([0ac8390](0ac8390)) * **authz:** Typo in client secret config ([#835](#835)) ([7cad1f1](7cad1f1)) * bump internal versions ([#840](#840)) ([8f45f18](8f45f18)) * **core:** bump sdk deps to 0.2.3 ([#848](#848)) ([ca8b9f7](ca8b9f7)) * **policy:** fix policy fqn-reindex command schema suffix ([#818](#818)) ([aff9850](aff9850)), closes [#817](#817) * **policy:** GetAttributeValuesByFqns and MatchSubjectMappings should not return deactivated policy objects ([#813](#813)) ([41ca82d](41ca82d)), closes [#494](#494) * **policy:** make resource-mappings update patch instead of put in RESTful gateway ([#824](#824)) ([1878bb5](1878bb5)), closes [#313](#313) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

🤖 I have created a release *beep* *boop* --- ## [0.2.3](opentdf/platform@protocol/go/v0.2.2...protocol/go/v0.2.3) (2024-05-17) ### Features * **authz:** Handle jwts as entity chains in decision requests ([#759](opentdf/platform#759)) ([65612e0](opentdf/platform@65612e0)) ### Bug Fixes * **policy:** make resource-mappings update patch instead of put in RESTful gateway ([#824](opentdf/platform#824)) ([1878bb5](opentdf/platform@1878bb5)), closes [#313](opentdf/platform#313) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

🤖 I have created a release *beep* *boop* --- ## [0.4.3](opentdf/platform@service/v0.4.2...service/v0.4.3) (2024-05-22) ### Features * **authz:** Allow un-scoped GetEntitlements calls ([#833](opentdf/platform#833)) ([9146947](opentdf/platform@9146947)) * **authz:** Handle jwts as entity chains in decision requests ([#759](opentdf/platform#759)) ([65612e0](opentdf/platform@65612e0)) * **ci:** Add e2e roundtrip tests for different attribute combinations ([#790](opentdf/platform#790)) ([1b0ec23](opentdf/platform@1b0ec23)) * **core:** Adds opentdf.hsm build constraint ([#830](opentdf/platform#830)) ([e13e52a](opentdf/platform@e13e52a)) * **core:** audit logging ([#774](opentdf/platform#774)) ([ea58b3c](opentdf/platform@ea58b3c)) ### Bug Fixes * **authz:** Populate fqn field in attribute values returned from GetAttributeValuesByFqns ([#816](opentdf/platform#816)) ([0ac8390](opentdf/platform@0ac8390)) * **authz:** Typo in client secret config ([#835](opentdf/platform#835)) ([7cad1f1](opentdf/platform@7cad1f1)) * bump internal versions ([#840](opentdf/platform#840)) ([8f45f18](opentdf/platform@8f45f18)) * **core:** bump sdk deps to 0.2.3 ([#848](opentdf/platform#848)) ([ca8b9f7](opentdf/platform@ca8b9f7)) * **policy:** fix policy fqn-reindex command schema suffix ([#818](opentdf/platform#818)) ([aff9850](opentdf/platform@aff9850)), closes [#817](opentdf/platform#817) * **policy:** GetAttributeValuesByFqns and MatchSubjectMappings should not return deactivated policy objects ([#813](opentdf/platform#813)) ([41ca82d](opentdf/platform@41ca82d)), closes [#494](opentdf/platform#494) * **policy:** make resource-mappings update patch instead of put in RESTful gateway ([#824](opentdf/platform#824)) ([1878bb5](opentdf/platform@1878bb5)), closes [#313](opentdf/platform#313) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

🤖 I have created a release *beep* *boop* --- ## [0.2.3](opentdf/platform@protocol/go/v0.2.2...protocol/go/v0.2.3) (2024-05-17) ### Features * **authz:** Handle jwts as entity chains in decision requests ([#759](opentdf/platform#759)) ([65612e0](opentdf/platform@65612e0)) ### Bug Fixes * **policy:** make resource-mappings update patch instead of put in RESTful gateway ([#824](opentdf/platform#824)) ([1878bb5](opentdf/platform@1878bb5)), closes [#313](opentdf/platform#313) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

🤖 I have created a release *beep* *boop* --- ## [0.4.3](opentdf/platform@service/v0.4.2...service/v0.4.3) (2024-05-22) ### Features * **authz:** Allow un-scoped GetEntitlements calls ([#833](opentdf/platform#833)) ([9146947](opentdf/platform@9146947)) * **authz:** Handle jwts as entity chains in decision requests ([#759](opentdf/platform#759)) ([65612e0](opentdf/platform@65612e0)) * **ci:** Add e2e roundtrip tests for different attribute combinations ([#790](opentdf/platform#790)) ([1b0ec23](opentdf/platform@1b0ec23)) * **core:** Adds opentdf.hsm build constraint ([#830](opentdf/platform#830)) ([e13e52a](opentdf/platform@e13e52a)) * **core:** audit logging ([#774](opentdf/platform#774)) ([ea58b3c](opentdf/platform@ea58b3c)) ### Bug Fixes * **authz:** Populate fqn field in attribute values returned from GetAttributeValuesByFqns ([#816](opentdf/platform#816)) ([0ac8390](opentdf/platform@0ac8390)) * **authz:** Typo in client secret config ([#835](opentdf/platform#835)) ([7cad1f1](opentdf/platform@7cad1f1)) * bump internal versions ([#840](opentdf/platform#840)) ([8f45f18](opentdf/platform@8f45f18)) * **core:** bump sdk deps to 0.2.3 ([#848](opentdf/platform#848)) ([ca8b9f7](opentdf/platform@ca8b9f7)) * **policy:** fix policy fqn-reindex command schema suffix ([#818](opentdf/platform#818)) ([aff9850](opentdf/platform@aff9850)), closes [#817](opentdf/platform#817) * **policy:** GetAttributeValuesByFqns and MatchSubjectMappings should not return deactivated policy objects ([#813](opentdf/platform#813)) ([41ca82d](opentdf/platform@41ca82d)), closes [#494](opentdf/platform#494) * **policy:** make resource-mappings update patch instead of put in RESTful gateway ([#824](opentdf/platform#824)) ([1878bb5](opentdf/platform@1878bb5)), closes [#313](opentdf/platform#313) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: opentdf-automation[bot] <149537512+opentdf-automation[bot]@users.noreply.github.com>

dmihalcik-virtru added the bug Something isn't working label Mar 5, 2024

strantalis added the comp:policy Policy Configuration ( attributes, subject mappings, resource mappings, kas registry) label Mar 5, 2024

strantalis added the needs triage label Apr 30, 2024

jrschumacher assigned jakedoublev Apr 30, 2024

jakedoublev mentioned this issue May 16, 2024

fix(policy): make resource-mappings update patch instead of put in RESTful gateway #824

Merged

github-merge-queue bot pushed a commit that referenced this issue May 16, 2024

fix(policy): make resource-mappings update patch instead of put in RE…

1878bb5

…STful gateway (#824) Closes #313

jakedoublev closed this as completed in #824 May 16, 2024

This was referenced May 15, 2024

chore(main): release service 0.4.3 #819

Merged

chore(main): release protocol/go 0.2.3 #828

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

REST HTTP paths have collisions; some paths are not currently usable #313

REST HTTP paths have collisions; some paths are not currently usable #313

dmihalcik-virtru commented Mar 5, 2024

jakedoublev commented May 16, 2024

REST HTTP paths have collisions; some paths are not currently usable #313

REST HTTP paths have collisions; some paths are not currently usable #313

Comments

dmihalcik-virtru commented Mar 5, 2024

jakedoublev commented May 16, 2024