mirrors/attic
1
0
Fork 0
mirror of https://github.com/zhaofengli/attic.git synced 2025-03-05 16:27:06 +00:00
Code Activity
347 commits 8 branches 0 tags 1.8 MiB
Commit graph

347 commits

This branch
This branch
All branches
Author SHA1 Message Date
Zhaofeng Li
e7a5828192 flake: Update deps 2023-12-18 14:50:33 -07:00
Zhaofeng Li
a8cacb0057 .github: Update workflow deps 2023-12-18 14:50:33 -07:00
Zhaofeng Li
b12e485ef7 flake.nix: Add riscv64-linux 2023-12-18 14:50:33 -07:00
Zhaofeng Li
7b133bca83 server: Upgrade sea-orm to 0.12.10 
Co-authored-by: Francesco Gazzetta <fgaz@fgaz.me>
 2023-12-18 09:28:58 -07:00
Zhaofeng Li
4945d00e20 Cargo.lock: Update 
Co-authored-by: Francesco Gazzetta <fgaz@fgaz.me>
 2023-12-18 09:28:54 -07:00
Zhaofeng Li
ab4040a267 Trivial semver-incompatible upgrades 
Co-authored-by: Francesco Gazzetta <fgaz@fgaz.me>
 2023-12-18 09:28:43 -07:00
Zhaofeng Li
9c79f6f5cb server: Upgrade aws-sdk-rust 
Co-authored-by: Francesco Gazzetta <fgaz@fgaz.me>
 2023-12-18 09:28:43 -07:00
Cole Helbling
fdb9d06ff6 Cargo.toml: set resolver = 2 
There are some 2021-edition crates that Cargo was warning about.
 2023-12-18 09:28:43 -07:00
Cole Helbling
26234c294a cargo fmt 2023-12-18 09:28:43 -07:00
Zhaofeng Li
51d5121a5c integration-tests/basic: Dump schema after test 
Not doing anything with the dumped schema yet, but we will
have automated checks to ensure the schema isn't changed
in an incompatible way.
 2023-12-18 09:28:43 -07:00
Cole Helbling
0a9d4938ef Move back to jwt_simple 
This effectively reverts commit 3e0b65a4c3.

Because jwt_simple doesn't have a unified type / trait that allows
signature and verification, I had to add a SignatureType enum to
approximate that.
 2023-11-12 12:19:22 -08:00
Cole Helbling
32e6d858fa server: fixup oobe random secret generation 2023-11-12 11:19:34 -08:00
Cole Helbling
d0c726dc22 book: update nixos config example 2023-11-12 11:19:34 -08:00
Cole Helbling
bd30211ac5 attic-token: use Not trait instead of is_false function for skipping serializing false permissions 2023-11-12 11:19:34 -08:00
Cole Helbling
427ae4550b server: support HS256, RS256 JWT secrets 2023-11-12 11:19:34 -08:00
Cole Helbling
dcd7d7fe87 attic: nix_store tests: original_file -> _original_file 2023-11-12 11:19:34 -08:00
Cole Helbling
ba9f3f55b7 book: fixup docs 2023-11-12 11:19:34 -08:00
Cole Helbling
9e23916e02 token: fixup JWT creation 
Since we now validate the `sub` and `nbf` claims, they need to be set
when atticadm generates them.
 2023-11-12 11:19:34 -08:00
Cole Helbling
fcc049495e integration tests: fixup config 2023-11-12 11:19:34 -08:00
Cole Helbling
17b2ed7538 cargo fmt 2023-11-12 11:19:34 -08:00
Cole Helbling
20e0a2b3a7 server: support configuring the iss, aud claim validation 
The JWT spec [1] basically says that JWTs must validate the `aud` claim
if its specified:

> If the principal
> processing the claim does not identify itself with a value in the
> "aud" claim when this claim is present, then the JWT MUST be
> rejected.

[1]: https://datatracker.ietf.org/doc/html/rfc7519#section-4.1.3
 2023-11-12 11:19:34 -08:00
Cole Helbling
7ed3f92d40 token: aud claim is a list-or-string 2023-11-12 11:19:34 -08:00
Cole Helbling
d0dfdde35a server: rename RS256 secret stuff to note that it's base64 encoded 
So it's Base64<PEM bytes>, not just PEM bytes.
 2023-11-11 12:59:03 -08:00
Cole Helbling
936e5c451b Cargo.toml: set resolver = 2 
There are some 2021-edition crates that Cargo was warning about.
 2023-11-11 12:59:01 -08:00
Graham Christensen
d49cd3383b Make the nix flake check tests pass 2023-11-11 12:58:59 -08:00
Graham Christensen
9511afde4b server: HS256 -> RS256 secrets 2023-11-11 12:58:57 -08:00
Graham Christensen
3e0b65a4c3 Migrate to jsonwebtoken 2023-11-11 12:58:55 -08:00
Cole Helbling
9001fa5418 cargo fmt 2023-11-11 12:58:53 -08:00
Jörg Thalheim
484e38094c implement sharding 
didn't actually tested the code
 2023-11-11 07:37:17 +01:00
Graham Christensen
e9918bc6be
Make nix flake show --all-systems work (#91) 
Before this patch we get:

  error: don't yet have a `targetPackages.darwin.LibsystemCross for x86_64-apple-darwin`
 2023-10-25 20:23:59 +02:00
ajs124
b43d12082e
nixos: use configured user in admin wrapper (#79) 2023-08-16 16:30:40 -06:00
Zhaofeng Li
f4cf5704d6 Fix lint 
get_or_insert_permission_mut returns a mut reference.

Fixes #77.
 2023-08-13 18:23:30 -06:00
Zhaofeng Li
4f81255892 Update nixpkgs 2023-08-13 18:23:30 -06:00
Linus Heckemann
9f742b497f nixos: allow setting mode 2023-07-22 17:45:06 +02:00
Zhaofeng Li
4902d57f5d
Fix chunk deletion bug (#67) 2023-07-15 15:46:40 -06:00
Linus Heckemann
b1e512e022
Open the default store, not auto (#71) 2023-07-15 13:05:22 -06:00
Cole Helbling
e6a2644125 docker: default to monolithic mode 
Otherwise, if you try to use the api-server before db migrations have
happened, you'll get the very helpful (sarcasm) error when running `attic`:

    Error: InternalServerError: The server encountered an internal error or misconfiguration.

With this corresponding error from `atticd`:

    Database error: Query Error: error returned from database: relation "cache" does not exist
 2023-06-26 08:53:45 -07:00
Travis Staton
91d8bd5cdc
fix chunk deletion bug 
fetch all deleted chunks, not just the ones that just transitioned
 2023-06-25 13:51:26 -04:00
Zhaofeng Li
4fedffe6a1 attic: Build binding with C++20 
We follow `-std=c++2a` in upstream Makefile.
 2023-06-12 19:44:39 -06:00
Zhaofeng Li
564b4be0f9 Update sea-orm to 0.11.3 
This commit drops support of Nixpkgs 22.11. Users should upgrade to
23.05 or use the pinned nixpkgs version in the flake.
 2023-06-12 18:52:16 -06:00
Zhaofeng Li
ebb13b6e6f Update nixpkgs 2023-06-12 18:52:16 -06:00
Zhaofeng Li
71a5580d17 Work around https://github.com/NixOS/nix/pull/8484 
Let's work around it downstream while we wait for a release.

Fixes #56.
 2023-06-12 18:52:16 -06:00
Zhaofeng Li
5ca98fbaa8 Drop bindgen and specialize hash handling 
Bindgen cannot handle functional C macros, and now `GENERATE_CMP`
is part of the include chain of `nix/hash.hh`, breaking everything.

For now, let's just drop bindgen and simplify things.
 2023-06-12 18:52:16 -06:00
Manuel
552120a68a
fix: writing config does not truncate (#55) 
Co-authored-by: Manu [tennox] <tennox+git@txlab.io>
 2023-06-12 18:35:28 -06:00
Lin Yinfeng
2568e6df7a
crane.nix: Suppress warning of missing version attribute in Cargo.toml (#53) 2023-06-12 18:20:11 -06:00
Zhaofeng Li
b1fb790b5f integration-tests: Strip tokens return from atticadm 2023-05-28 15:23:45 -06:00
Zhaofeng Li
a71582a952 client/watch_store: Ignore sources when watching 
They will still be pushed as part of other paths' closures.
 2023-05-28 15:23:45 -06:00
Zhaofeng Li
2d0aeefd2f Trivial semver-incompatible upgrades 2023-05-28 15:23:45 -06:00
Zhaofeng Li
1b980a9640 server: Upgrade async-compression 2023-05-28 15:23:45 -06:00
Zhaofeng Li
1a0116fee8 server: Upgrade aws-sdk-rust 2023-05-28 15:23:45 -06:00