Hi, Following a conversation I had with Kevin and Deepak at last Ghent Contributor summit about solving SERVER-111[*], I started working on a clojure port of the Puppet authorization system (since I wrote a large part of it, I felt I was kind of best placed to start this).
For the moment all the code is hosted in its own project on my github account (because that was simpler than abusing another trapperkeeper project as a PR for repeated development): https://github.com/masterzen/trapperkeeper-authorization It's a work in progress with only the following working basic functionalities at the moment: * various ip, host, wildcard, regex, opaque, backreference authorization entries creation/matching (ACE) * authorization entry list (ACL) creation and matching All those features should be fully compatible with the way Puppet authorization system works. On my todo-list: * route rules creation/matching (path and regex, restriction by method or environment) * parsing auth.conf file format * ring handler to check incoming request * generate artifacts for consumption in other project * actually use this project in the Puppet Server Of course, I'm ready to move this project under the Pupeptlabs umbrella (or to merge the code to another trapperkeeper project) when it will be more mature. Feel free to take a look to the existing project (and why not contribute :). Thanks. [*]: https://tickets.puppetlabs.com/browse/SERVER-111 -- Brice Figureau My Blog: http://www.masterzen.fr/ -- You received this message because you are subscribed to the Google Groups "Puppet Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-dev+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-dev/1424080918.17873.11.camel%40arsenic.daysofwonder.com. For more options, visit https://groups.google.com/d/optout.
