]> git.proxmox.com Git - proxmox-backup.git/commit
projects / proxmox-backup.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 34aa8e1) | patch
owner checks: handle backups owned by API tokens
authorFabian Grünbichler <f.gruenbichler@proxmox.com>
Thu, 8 Oct 2020 13:32:41 +0000 (15:32 +0200)
committerWolfgang Bumiller <w.bumiller@proxmox.com>
Thu, 29 Oct 2020 14:14:27 +0000 (15:14 +0100)
commitbff8557298a26732b5d648d13c3f9d22ccb2e698
treee702ad1d703c1747cfce8d266fd8290071fcc5c2tree
parent34aa8e13b60c190fcd33aa8f3c9e4a93f50e21cccommit | diff
owner checks: handle backups owned by API tokens

a user should be allowed to read/list/overwrite backups owned by their
own tokens, but a token should not be able to read/list/overwrite
backups owned by their owning user.

when changing ownership of a backup group, a user should be able to
transfer ownership to/from their own tokens if the backup is owned by
them (or one of their tokens).

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
src/api2/admin/datastore.rs diff | blob | blame | history
src/api2/backup.rs diff | blob | blame | history
src/api2/reader.rs diff | blob | blame | history
Proxmox Backup Server and Client