Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Private instances #123

Merged
merged 12 commits into from Jul 1, 2019
Merged

Private instances #123

merged 12 commits into from Jul 1, 2019

Conversation

thebaer
Copy link
Member

@thebaer thebaer commented Jun 17, 2019

This changes the private config setting to make an instance entirely private. That is, when enabled, blogs will only be readable by other authenticated users on the same instance.

It still needs a bit of testing, so it's a draft for now.

When finished, this closes T576.

@thebaer
Allow completely private instances, part 1
b3a36a3 
This is the start of all changes needed to support entirely private
instances, where all blogs are only visible to other authenticated users
on an instance (ref T576). It begins by changing how Handler methods check an
endpoint's permissions.

- Renames UserLevelLEVEL consts to UserLevelLEVELType
- Adds UserLevelLEVEL funcs with same names as previous consts. Each
  returns a UserLevel
- Adds a new UserLevelReader that restricts access based on app
  configuration. This is now used on collections and posts.
- Changes routing a bit so static files are always accessible
@thebaer
Restrict API read access based on Private setting
a2088c1 
This verifies that a user is authenticated before getting to the actual
handler on API endpoints where a user is reading content.

Ref T576
@thebaer
Hide Reader link on private instance when unauth'd
bf989eb 
Ref T576
@thebaer
Change blog visibility explanations on Private instance
35718cd 
Ref T576
@thebaer
Don't federate anything when instance is private
63b536e 
Ref T576
@thebaer thebaer added this to the 0.10 milestone Jun 17, 2019
@thebaer thebaer marked this pull request as ready for review June 19, 2019 23:09
@thebaer thebaer requested a review from a user July 1, 2019 14:59
ghost
ghost reviewed Jul 1, 2019
View reviewed changes
Copy link

@ghost ghost left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

it's not from this PR but line 747 is unreachable

handle.go Show resolved Hide resolved
posts.go Show resolved Hide resolved
posts.go Show resolved Hide resolved
handle.go Outdated Show resolved Hide resolved
handle.go Outdated Show resolved Hide resolved
handle.go Outdated Show resolved Hide resolved
thebaer
thebaer commented Jul 1, 2019
View reviewed changes
Copy link
Member Author

@thebaer thebaer left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

comments I don't know how to use GitHub's review feature :)

@thebaer
Fix userlevel error logging
60a6848 
Previously, we just included the value of `ul`, which is a func. This
now calls `ul()` and logs that value.
@ghost
Copy link

ghost commented Jul 1, 2019

testing looks good running locally. I haven't tested federation though, did you want me to do that too?

ghost
ghost approved these changes Jul 1, 2019
View reviewed changes
Copy link

@ghost ghost left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

good to go unless you want me to test federation <> private

@thebaer
Copy link
Member Author

thebaer commented Jul 1, 2019

Thanks @robjloranger -- no need to test federation. Merging now!

@thebaer thebaer merged commit 7aaff77 into develop Jul 1, 2019
@thebaer thebaer deleted the private-instance branch July 1, 2019 23:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
Assignees
No one assigned
Labels
None yet
Milestone
0.10
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@thebaer