@xen-orchestra/acl 1.0.0 → 1.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/actions/host.d.mts +3 -0
- package/dist/actions/host.mjs +3 -0
- package/dist/actions/index.d.mts +8 -0
- package/dist/actions/pif.d.mts +3 -0
- package/dist/actions/pif.mjs +3 -0
- package/dist/actions/sr.d.mts +1 -0
- package/dist/actions/sr.mjs +1 -0
- package/dist/actions/vm.d.mts +1 -0
- package/dist/actions/vm.mjs +1 -0
- package/dist/generated/privilege-types.d.mts +4 -4
- package/dist/index.d.mts +1 -1
- package/package.json +2 -2
package/dist/actions/host.d.mts
CHANGED
package/dist/actions/host.mjs
CHANGED
package/dist/actions/index.d.mts
CHANGED
|
@@ -53,6 +53,9 @@ export declare const SUPPORTED_ACTIONS_BY_RESOURCE: {
|
|
|
53
53
|
};
|
|
54
54
|
readonly host: {
|
|
55
55
|
'allow-vm': boolean;
|
|
56
|
+
disable: boolean;
|
|
57
|
+
enable: boolean;
|
|
58
|
+
evacuate: boolean;
|
|
56
59
|
export: {
|
|
57
60
|
logs: boolean;
|
|
58
61
|
};
|
|
@@ -83,6 +86,9 @@ export declare const SUPPORTED_ACTIONS_BY_RESOURCE: {
|
|
|
83
86
|
};
|
|
84
87
|
readonly pif: {
|
|
85
88
|
read: boolean;
|
|
89
|
+
update: {
|
|
90
|
+
management: boolean;
|
|
91
|
+
};
|
|
86
92
|
};
|
|
87
93
|
readonly pool: {
|
|
88
94
|
create: {
|
|
@@ -118,6 +124,7 @@ export declare const SUPPORTED_ACTIONS_BY_RESOURCE: {
|
|
|
118
124
|
read: boolean;
|
|
119
125
|
};
|
|
120
126
|
readonly sr: {
|
|
127
|
+
delete: boolean;
|
|
121
128
|
import: {
|
|
122
129
|
vdi: boolean;
|
|
123
130
|
vm: boolean;
|
|
@@ -206,6 +213,7 @@ export declare const SUPPORTED_ACTIONS_BY_RESOURCE: {
|
|
|
206
213
|
hard: boolean;
|
|
207
214
|
};
|
|
208
215
|
resume: boolean;
|
|
216
|
+
'revert-snapshot': boolean;
|
|
209
217
|
shutdown: {
|
|
210
218
|
clean: boolean;
|
|
211
219
|
hard: boolean;
|
package/dist/actions/pif.d.mts
CHANGED
package/dist/actions/pif.mjs
CHANGED
package/dist/actions/sr.d.mts
CHANGED
package/dist/actions/sr.mjs
CHANGED
package/dist/actions/vm.d.mts
CHANGED
package/dist/actions/vm.mjs
CHANGED
|
@@ -89,7 +89,7 @@ export type GpuGroupPrivilege = {
|
|
|
89
89
|
export type HostPrivilege = {
|
|
90
90
|
id: XoAclBasePrivilege['id']
|
|
91
91
|
resource: 'host'
|
|
92
|
-
action: '*' | 'allow-vm' | 'export' | '*' | 'export:logs' | 'read' | 'update' | '*' | 'update:tags'
|
|
92
|
+
action: '*' | 'allow-vm' | 'disable' | 'enable' | 'evacuate' | 'export' | '*' | 'export:logs' | 'read' | 'update' | '*' | 'update:tags'
|
|
93
93
|
selector?: XoAclBasePrivilege['selector']
|
|
94
94
|
effect: XoAclBasePrivilege['effect']
|
|
95
95
|
roleId: XoAclBasePrivilege['roleId']
|
|
@@ -143,7 +143,7 @@ export type PgpuPrivilege = {
|
|
|
143
143
|
export type PifPrivilege = {
|
|
144
144
|
id: XoAclBasePrivilege['id']
|
|
145
145
|
resource: 'pif'
|
|
146
|
-
action: '*' | 'read'
|
|
146
|
+
action: '*' | 'read' | 'update' | '*' | 'update:management'
|
|
147
147
|
selector?: XoAclBasePrivilege['selector']
|
|
148
148
|
effect: XoAclBasePrivilege['effect']
|
|
149
149
|
roleId: XoAclBasePrivilege['roleId']
|
|
@@ -206,7 +206,7 @@ export type SmPrivilege = {
|
|
|
206
206
|
export type SrPrivilege = {
|
|
207
207
|
id: XoAclBasePrivilege['id']
|
|
208
208
|
resource: 'sr'
|
|
209
|
-
action: '*' | 'import' | '*' | 'import:vdi' | 'import:vm' | 'read' | 'update' | '*' | 'update:tags'
|
|
209
|
+
action: '*' | 'delete' | 'import' | '*' | 'import:vdi' | 'import:vm' | 'read' | 'update' | '*' | 'update:tags'
|
|
210
210
|
selector?: XoAclBasePrivilege['selector']
|
|
211
211
|
effect: XoAclBasePrivilege['effect']
|
|
212
212
|
roleId: XoAclBasePrivilege['roleId']
|
|
@@ -323,7 +323,7 @@ export type VmTemplatePrivilege = {
|
|
|
323
323
|
export type VmPrivilege = {
|
|
324
324
|
id: XoAclBasePrivilege['id']
|
|
325
325
|
resource: 'vm'
|
|
326
|
-
action: '*' | 'delete' | 'export' | 'pause' | 'read' | 'reboot' | '*' | 'reboot:clean' | 'reboot:hard' | 'resume' | 'shutdown' | '*' | 'shutdown:clean' | 'shutdown:hard' | 'snapshot' | 'start' | 'suspend' | 'unpause' | 'update' | '*' | 'update:datasources' | 'update:tags'
|
|
326
|
+
action: '*' | 'delete' | 'export' | 'pause' | 'read' | 'reboot' | '*' | 'reboot:clean' | 'reboot:hard' | 'resume' | 'revert-snapshot' | 'shutdown' | '*' | 'shutdown:clean' | 'shutdown:hard' | 'snapshot' | 'start' | 'suspend' | 'unpause' | 'update' | '*' | 'update:datasources' | 'update:tags'
|
|
327
327
|
selector?: XoAclBasePrivilege['selector']
|
|
328
328
|
effect: XoAclBasePrivilege['effect']
|
|
329
329
|
roleId: XoAclBasePrivilege['roleId']
|
package/dist/index.d.mts
CHANGED
|
@@ -23,7 +23,7 @@ export declare function hasPrivilegeOn<T extends SupportedResource>({ user, acti
|
|
|
23
23
|
export declare function getMissingPrivileges(params: AnyPrivilegeOnParam[], userPrivileges: AnyPrivilege[]): {
|
|
24
24
|
objectId: unknown;
|
|
25
25
|
objectIds: unknown[] | undefined;
|
|
26
|
-
action: "create" | "delete" | "read" | "update" | "allow-vm" | "export" | "emergency-shutdown" | "rolling-reboot" | "rolling-update" | "run" | "connect" | "disconnect" | "import" | "abort" | "boot" | "export-content" | "import-content" | "instantiate" | "pause" | "reboot" | "resume" | "shutdown" | "snapshot" | "start" | "suspend" | "unpause" | "*" | "update:action" | "update:resource" | "update:effect" | "update:selector" | "update:description" | "update:groups" | "update:name" | "update:users" | "update:tags" | "export:logs" | "create:network" | "create:vm" | "import:vdi" | "import:vm" | "update:password" | "update:permission" | "update:preferences" | "update:datasources" | "reboot:clean" | "reboot:hard" | "shutdown:clean" | "shutdown:hard";
|
|
26
|
+
action: "create" | "delete" | "read" | "update" | "allow-vm" | "disable" | "enable" | "evacuate" | "export" | "emergency-shutdown" | "rolling-reboot" | "rolling-update" | "run" | "connect" | "disconnect" | "import" | "abort" | "boot" | "export-content" | "import-content" | "instantiate" | "pause" | "reboot" | "resume" | "revert-snapshot" | "shutdown" | "snapshot" | "start" | "suspend" | "unpause" | "*" | "update:action" | "update:resource" | "update:effect" | "update:selector" | "update:description" | "update:groups" | "update:name" | "update:users" | "update:tags" | "export:logs" | "update:management" | "create:network" | "create:vm" | "import:vdi" | "import:vm" | "update:password" | "update:permission" | "update:preferences" | "update:datasources" | "reboot:clean" | "reboot:hard" | "shutdown:clean" | "shutdown:hard";
|
|
27
27
|
resource: "acl-privilege" | "acl-role" | "alarm" | "backup-archive" | "backup-job" | "backup-log" | "backup-repository" | "group" | "gpuGroup" | "host" | "message" | "network" | "pbd" | "pci" | "pgpu" | "pif" | "pool" | "proxy" | "restore-log" | "schedule" | "server" | "sm" | "sr" | "task" | "user" | "vbd" | "vdi-snapshot" | "vdi-unmanaged" | "vdi" | "vgpu" | "vgpuType" | "vif" | "vm-controller" | "vm-snapshot" | "vm-template" | "vm" | "vtpm";
|
|
28
28
|
}[];
|
|
29
29
|
export declare function hasPrivileges(params: AnyPrivilegeOnParam[], userPrivileges: AnyPrivilege[]): boolean;
|
package/package.json
CHANGED
|
@@ -6,7 +6,7 @@
|
|
|
6
6
|
"main": "dist/index.mjs",
|
|
7
7
|
"name": "@xen-orchestra/acl",
|
|
8
8
|
"homepage": "https://github.com/vatesfr/xen-orchestra/tree/master/@xen-orchestra/acl",
|
|
9
|
-
"version": "1.
|
|
9
|
+
"version": "1.1.0",
|
|
10
10
|
"license": "AGPL-3.0-or-later",
|
|
11
11
|
"private": false,
|
|
12
12
|
"type": "module",
|
|
@@ -30,7 +30,7 @@
|
|
|
30
30
|
},
|
|
31
31
|
"devDependencies": {
|
|
32
32
|
"@eslint/js": "^9.19.0",
|
|
33
|
-
"@vates/types": "^1.
|
|
33
|
+
"@vates/types": "^1.25.0",
|
|
34
34
|
"rimraf": "^6.0.1",
|
|
35
35
|
"typescript": "~5.6",
|
|
36
36
|
"typescript-eslint": "^8.23.0"
|