IsAllowed - Code Search

cmd/auth-handler.go

		byPassSet = globalIAMSys.IsAllowed(policy.Args{
			AccountName:     cred.AccessKey,
			Groups:          cred.Groups,
			Action:          policy.BypassGovernanceRetentionAction,
			BucketName:      bucketName,
			ObjectName:      objectName,
			ConditionValues: conditions,
			IsOwner:         owner,
			Claims:          cred.Claims,
		})
	}
	if globalIAMSys.IsAllowed(policy.Args{

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Tue Sep 17 16:45:46 UTC 2024

- 26.1K bytes

- Viewed (0)

github.com/minio/minio

cmd/admin-handlers-idp-ldap.go

	// If listing is requested for a specific user (who is not the request
	// sender), check that the user has permissions.
	if userDN != "" && userDN != cred.ParentUser {
		if !globalIAMSys.IsAllowed(policy.Args{
			AccountName:     cred.AccessKey,
			Groups:          cred.Groups,
			Action:          policy.ListServiceAccountsAdminAction,
			ConditionValues: getConditionValues(r, "", cred),

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Sat Sep 21 11:35:40 UTC 2024

- 19.1K bytes

- Viewed (0)

github.com/minio/minio

cmd/kms-handlers.go

// checkKMSActionAllowed checks for authorization for a specific action on a resource.
func checkKMSActionAllowed(r *http.Request, owner bool, cred auth.Credentials, action policy.KMSAction, resource string) bool {
	return globalIAMSys.IsAllowed(policy.Args{
		AccountName:     cred.AccessKey,
		Groups:          cred.Groups,
		Action:          policy.Action(action),
		ConditionValues: getConditionValues(r, "", cred),
		IsOwner:         owner,

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Sun Aug 18 06:43:03 UTC 2024

- 10.1K bytes

- Viewed (0)

github.com/minio/minio

cmd/s3-zip-handlers.go

			//   error.
			// * if you don’t have the s3:ListBucket
			//   permission, Amazon S3 will return an HTTP
			//   status code 403 ("access denied") error.`
			if globalPolicySys.IsAllowed(policy.BucketPolicyArgs{
				Action:          policy.ListBucketAction,
				BucketName:      bucket,
				ConditionValues: getConditionValues(r, "", auth.AnonymousCredentials),
				IsOwner:         false,
			}) {

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Mon Jun 10 15:31:51 UTC 2024

- 15.8K bytes

- Viewed (0)

github.com/minio/minio

cmd/metrics.go

		}

		cred := auth.Credentials{
			AccessKey: claims.AccessKey,
			Claims:    claims.Map(),
			Groups:    groups,
		}

		// For authenticated users apply IAM policy.
		if !globalIAMSys.IsAllowed(policy.Args{
			AccountName:     cred.AccessKey,
			Groups:          cred.Groups,
			Action:          policy.PrometheusAdminAction,
			ConditionValues: getConditionValues(r, "", cred),
			IsOwner:         owner,

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Thu Aug 15 12:04:40 UTC 2024

- 16.6K bytes

- Viewed (0)

Search Options

cmd/auth-handler.go

cmd/admin-handlers-idp-ldap.go

cmd/kms-handlers.go

cmd/s3-zip-handlers.go

cmd/metrics.go