Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 2 of 2 for doesPolicyAllow (0.14 sec)

  1. cmd/sts-handlers.go

    			var err error
    			_, p, err = globalIAMSys.GetRolePolicy(roleArnStr)
    			if err != nil {
    				writeSTSErrorResponse(ctx, w, ErrSTSAccessDenied, err)
    				return
    			}
    		}
    
    		if !globalIAMSys.doesPolicyAllow(p, policy.Args{
    			DenyOnly:        true,
    			Action:          policy.AssumeRoleWithWebIdentityAction,
    			ConditionValues: getSTSConditionValues(r, "", cred),
    			Claims:          cred.Claims,
    		}) {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Aug 15 01:29:20 UTC 2024
    - 33.9K bytes
    - Viewed (0)
  2. cmd/iam.go

    	_, policy := sys.store.MergePolicies(strings.Join(policies, ","))
    	return policy
    }
    
    // doesPolicyAllow - checks if the given policy allows the passed action with given args. This is rarely needed.
    // Notice there is no account name involved, so this is a dangerous function.
    func (sys *IAMSys) doesPolicyAllow(policy string, args policy.Args) bool {
    	// Policies were found, evaluate all of them.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Oct 29 16:01:48 UTC 2024
    - 74.6K bytes
    - Viewed (0)
Back to top