Mark Laing
Mark Laing
> > I suggest to use 403 over 404 when users have no permission. > > Hi @edlerd @mas-who > > @markylaing and I have been chatting about this and...
> > @markylaing I was playing around with different permissions and found a potential issue. I created a group with a single permission `can_view_instances` on `project`. Then I allocated this...
> @markylaing as discussed, I will just leave this comment here regarding idp groups for future reference. So it was found that after an OIDC identity logs in, if its...
> Can we get LXD to return the list of current effective LXD groups when getting user info? Yes if we store the IdP groups in the identity metadata but...
> > @markylaing as discussed, I will just leave this comment here regarding idp groups for future reference. So it was found that after an OIDC identity logs in, if...
> Had a discussion with @mas-who about this: Does the effective permission list include all resources on the server? So that for instance foo in project bar, I can see...
@mas-who I see Tom has already clarified but I'll expand a bit: > @markylaing regarding the effective_groups field, can I confirm that it's still a best effort estimation for the...
The `/1.0/events` API is being used as a catch-all in the client so that only one websocket is used at a time. I've encountered issues with it when working with...
In addition to adding entitlements to the metadata API. We would like to include information about which fine-grained entitlements are granted by built-in roles. This will aid in documentation and...
Hi @MrDaGree, there are a couple of failing github actions for your PR. These were not caught in #551 because the target branch of the job had not been changed...