Skip to content

Add multitenancy testing infrastructure πŸ‘©β€πŸ”§ #245

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
hug-dev opened this issue Sep 9, 2020 · 2 comments Β· Fixed by #276
Closed

Add multitenancy testing infrastructure πŸ‘©β€πŸ”§ #245

hug-dev opened this issue Sep 9, 2020 · 2 comments Β· Fixed by #276
Assignees
@hug-dev
Labels
enhancement New feature or request multitenancy Getting Parsec to provide isolated key stores for multiple clients based on an identity mechanism

Comments

@hug-dev
Copy link
Member

hug-dev commented Sep 9, 2020

With the various authenticators that we have and are going to have, it will be helpful to add automated testing to check that multitenancy is working securely.

As ideas for test cases:

  1. The service should fail to run (under any authentication) if the socket folder has wrong permissions
  2. Under direct authentication using the parsec-clients group, a client not in that group should not be able to connect
  3. Under peer credential authentication (when ready):
    1. even a client not in parsec-clients should be able to connect
    2. one client can not access another client's keys

Regarding the infrastructure, these tests could be implemented in a separate GitHub Actions workflow (or more than one!), in a new top-level directory (eg multitenancy_tests).
@hug-dev hug-dev added enhancement New feature or request multitenancy Getting Parsec to provide isolated key stores for multiple clients based on an identity mechanism labels Sep 9, 2020
@hug-dev
Copy link
Member Author

hug-dev commented Sep 9, 2020

Some work could be re-used from #218

@hug-dev hug-dev mentioned this issue Sep 9, 2020
Closed
This was referenced Oct 13, 2020
Closed
Merged
@hug-dev
Copy link
Member Author

hug-dev commented Oct 15, 2020

Remainder to add the new tests added here

@hug-dev hug-dev self-assigned this Oct 16, 2020
@hug-dev hug-dev mentioned this issue Oct 16, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hug-dev hug-dev

Labels
enhancement New feature or request multitenancy Getting Parsec to provide isolated key stores for multiple clients based on an identity mechanism
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add multitenancy tests hug-dev/parsec
1 participant
@hug-dev