within
/
wasmcloud
2
1
Fork 0
Code Issues 17 Pull Requests Releases Wiki Activity
Labels Milestones
New Issue

Policies #12

Closed
opened 3 years ago by cadey · 0 comments
cadey commented 3 years ago
Owner 
// gitea.policy

allow (
  https://tulpa.dev
  ipfs://
  random://
)

disallow (
  file://
  .*
)

brand-outgoing-requests by-handler-id
ram-page-limit 128
gas-limit 1048576
execution-limit 5m
  • Spec this out
    • Use confyg
    • Concept of a "default policy"
  • Implement in Olin
    • Uncleanly terminate program on ACL violation
  • wasmcloudd
    • Store ACLs in database with handlers
    • Update ACLs with update
    • Send ACLs with ExecRequest
  • cli
    • Add policy argument to run
    • Create/validate policies via the command line, submits to wasmcloud server
    • Patch/validate policies via the command line
``` // gitea.policy allow ( https://tulpa.dev ipfs:// random:// ) disallow ( file:// .* ) brand-outgoing-requests by-handler-id ram-page-limit 128 gas-limit 1048576 execution-limit 5m ``` - [x] Spec this out - [x] Use [confyg](https://godoc.org/within.website/confyg) - [x] Concept of a "default policy" - [x] Implement in Olin - [x] Uncleanly terminate program on ACL violation - [x] wasmcloudd - [x] Store ACLs in database with handlers - [x] Update ACLs with update - [x] Send ACLs with ExecRequest - [x] cli - [x] Add policy argument to run - [x] Create/validate policies via the command line, submits to wasmcloud server - [x] Patch/validate policies via the command line
cadey changed title from ACLs to Policies 3 years ago
cadey added a new dependency 3 years ago
#3 Documentation/book
cadey added this to the MVP milestone 3 years ago
cadey added spent time 3 years ago
2h 30min
cadey referenced this issue from a commit 3 years ago
support policies, closes #12
cadey closed this issue 3 years ago
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
master
Labels
Apply labels
Clear labels
bug
Something is not working duplicate
This issue or pull request already exists enhancement
New feature help wanted
Need some help invalid
Something is wrong question
More information is needed wontfix
This won't be fixed
No Label bug duplicate enhancement help wanted invalid question wontfix
Milestone
Set milestone
Clear milestone
No items
No Milestone
MVP
Assignees
Assign users
Clear assignees
No Assignees
1 Participants
Notifications
Total Time Spent: 2h 30min
Cadey Ratio
2h 30min
Due Date

No due date set.

Blocks
#3 Documentation/book
within/wasmcloud
Write Preview
Loading…
Cancel
Save
There is no content yet.
Delete Branch '%!s(MISSING)'

Deleting a branch is permanent. It CANNOT be undone. Continue?

No
Yes