This is an automated email from the ASF dual-hosted git repository.
lahirujayathilake pushed a change to branch signer-service
in repository https://gitbox.apache.org/repos/asf/airavata-custos.git
omit 161735d58 migrate to openbao from hashicorp vault
omit cc8a8592d LDAP connection pooling
omit b35bfb06d Add defaultSubject support in dev mode configuration
omit 3fdb6ba76 Add source of truth validation against LDAP and caching logic
omit cdb7104c3 add SSH extension validation and resolution logic with tests
omit f21b7aa69 maintain a denied list for the extensions in client config
and move the force-command to the certificate issuance
omit 5cb1298ae initial signer service implementation
add a0d55a9ab add Ansible playbook for linux node enrollment with COmanage
LDAP and CILogon device-flow SSH auth
add 6cd5f3ce2 AIRAVATA-3972: fix malformed JSON in Vault local config
add b9cc64907 prevent duplicate accounts, fix retry loop, correct AMIE
field names, persist DN lists
add 006377e79 add audit log table and service for handler actions tracking
add 4bc34b0e5 add eventId to handler interface and audit logging to packet
handlers
add 9dbbc9e24 add Prometheus metrics, health indicator, instrument
poller/worker, and structured JSON logging for prod and MDC packet correlation
add b9cd7b850 updated the AMIE metrics grafana dashboards to reflect the
time range selections
add b764f7926 AMIE traffic simulation with mock server to have both
success and failure scenarios
add 6ac37ab6f Initial ACCESS-AMIE decoder implementation in go lang
add e9b956bdb Extract shared domain models for the allocation management
add 1d7f16cbf Add person soft-delete, email dedup, and GlobalID mapping
for AMIE merge support - Replace hard-delete with soft-delete (is_active
flag) on person merge - Deduplicate persons by email to avoid creating
multiple accounts for the same person with different ACCESS Global IDs - Add
person_global_ids mapping table so a person can be looked up by any of their
historical Global IDs - Rename amie_audit_logs table to amie_audit_log
add 9da3275f8 Included person global id store
add 8b94602f4 refactor amie load test server
add 6e9096904 updated the grafana dashboards to retrieve data from db too
add 1deab69a1 fixed the issues with time filtering value
add b93b7dc3f support extracting the correct user role and included
dev_email in the AMIE test packets
add 168649ea7 Refactor database migrations to allocations/domain/db and
proto generated
add 75d012135 initial signer service implementation
add b2e6c9655 maintain a denied list for the extensions in client config
and move the force-command to the certificate issuance
add 63f860818 add SSH extension validation and resolution logic with tests
add aee7dc1ab Add source of truth validation against LDAP and caching logic
add 032820edd Add defaultSubject support in dev mode configuration
add 7290d833a LDAP connection pooling
add 7b8a05a16 migrate to openbao from hashicorp vault
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (161735d58)
\
N -- N -- N refs/heads/signer-service (7b8a05a16)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
No new revisions were added by this update.
Summary of changes:
.gitignore | 13 +
.../access-amie/Makefile | 53 +-
allocations/access-amie/README.md | 162 ++
allocations/access-amie/amieclient/client.go | 187 ++
allocations/access-amie/amieclient/client_test.go | 184 ++
allocations/access-amie/config.yaml.example | 24 +
allocations/access-amie/config/config.go | 145 ++
allocations/access-amie/db/db.go | 40 +
allocations/access-amie/db/errors.go | 31 +
allocations/access-amie/db/tx.go | 46 +
allocations/access-amie/go.mod | 36 +
allocations/access-amie/go.sum | 106 +
.../access-amie/handler/data_account_create.go | 116 +
.../handler/data_account_create_test.go | 148 ++
.../access-amie/handler/data_project_create.go | 117 +
.../handler/data_project_create_test.go | 149 ++
allocations/access-amie/handler/handler.go | 93 +
.../handler/inform_transaction_complete.go | 73 +
.../handler/inform_transaction_complete_test.go | 124 +
allocations/access-amie/handler/noop.go | 44 +
allocations/access-amie/handler/noop_test.go | 75 +
.../access-amie/handler/request_account_create.go | 161 ++
.../handler/request_account_create_test.go | 190 ++
.../handler/request_account_inactivate.go | 104 +
.../handler/request_account_inactivate_test.go | 146 ++
.../handler/request_account_reactivate.go | 104 +
.../handler/request_account_reactivate_test.go | 129 +
.../access-amie/handler/request_person_merge.go | 105 +
.../handler/request_person_merge_test.go | 149 ++
.../access-amie/handler/request_project_create.go | 183 ++
.../handler/request_project_create_test.go | 227 ++
.../handler/request_project_inactivate.go | 120 +
.../handler/request_project_inactivate_test.go | 152 ++
.../handler/request_project_reactivate.go | 120 +
.../handler/request_project_reactivate_test.go | 152 ++
.../access-amie/handler/request_user_modify.go | 112 +
.../handler/request_user_modify_test.go | 167 ++
allocations/access-amie/handler/router.go | 59 +
allocations/access-amie/handler/router_test.go | 136 +
allocations/access-amie/handler/testutil_test.go | 49 +
allocations/access-amie/main.go | 157 ++
allocations/access-amie/metrics/metrics.go | 109 +
allocations/access-amie/metrics/metrics_test.go | 182 ++
allocations/access-amie/model/audit.go | 52 +
allocations/access-amie/model/error.go | 31 +
allocations/access-amie/model/event.go | 64 +
allocations/access-amie/model/packet.go | 44 +
.../main => access-amie}/proto/amie_packets.proto | 114 +-
.../access-amie/proto/gen/amie_packets.pb.go | 1601 ++++++++++++
.../access-amie/proto/gen/internal_events.pb.go | 1493 +++++++++++
.../proto/internal_events.proto | 80 +-
allocations/access-amie/server/server.go | 98 +
allocations/access-amie/service/account_service.go | 119 +
.../access-amie/service/account_service_test.go | 205 ++
allocations/access-amie/service/audit_service.go | 74 +
.../access-amie/service/audit_service_test.go | 115 +
.../access-amie/service/membership_service.go | 181 ++
.../access-amie/service/membership_service_test.go | 282 +++
allocations/access-amie/service/person_service.go | 360 +++
.../access-amie/service/person_service_test.go | 549 ++++
allocations/access-amie/service/project_service.go | 110 +
.../access-amie/service/project_service_test.go | 165 ++
allocations/access-amie/store/audit_store.go | 46 +
allocations/access-amie/store/error_store.go | 46 +
allocations/access-amie/store/event_store.go | 103 +
allocations/access-amie/store/packet_store.go | 89 +
.../data_account_create/incoming-data.json | 0
.../data_account_create/outgoing-inform.json | 0
.../data_project_create/incoming-data.json | 0
.../data_project_create/outgoing-inform.json | 0
.../incoming-inform.json | 0
.../request_account_create/incoming-request.json | 0
.../request_account_create/outgoing-notify.json | 0
.../incoming-request.json | 0
.../outgoing-notify.json | 0
.../incoming-request.json | 0
.../outgoing-notify.json | 0
.../request_person_merge/incoming-request.json | 0
.../request_person_merge/outgoing-inform.json | 0
.../request_project_create/incoming-request.json | 0
.../request_project_create/outgoing-notify.json | 0
.../incoming-request.json | 0
.../outgoing-notify.json | 0
.../incoming-request.json | 0
.../outgoing-notify.json | 0
.../incoming-request.json | 0
.../outgoing-inform.json | 0
.../incoming-request.json | 0
.../outgoing-inform.json | 0
allocations/access-amie/worker/poller.go | 201 ++
allocations/access-amie/worker/processor.go | 302 +++
allocations/access-amie/worker/processor_test.go | 121 +
allocations/access-amie/worker/proto_utils.go | 44 +
allocations/access-amie/worker/proto_utils_test.go | 84 +
allocations/access-ci-service/pom.xml | 14 +-
.../custos/access/ci/service/AmiePoller.java | 23 +-
.../handler/amie/DataAccountCreateHandler.java | 24 +-
.../handler/amie/DataProjectCreateHandler.java | 25 +-
.../amie/InformTransactionCompleteHandler.java | 14 +-
.../ci/service/handler/amie/NoOpHandler.java | 2 +-
.../ci/service/handler/amie/PacketHandler.java | 3 +-
.../ci/service/handler/amie/PacketRouter.java | 7 +-
.../handler/amie/RequestAccountCreateHandler.java | 21 +-
.../amie/RequestAccountInactivateHandler.java | 15 +-
.../amie/RequestAccountReactivateHandler.java | 15 +-
.../handler/amie/RequestPersonMergeHandler.java | 14 +-
.../handler/amie/RequestProjectCreateHandler.java | 25 +-
.../amie/RequestProjectInactivateHandler.java | 22 +-
.../amie/RequestProjectReactivateHandler.java | 22 +-
.../handler/amie/RequestUserModifyHandler.java | 17 +-
.../ci/service/metrics/AmieHealthIndicator.java | 78 +
.../access/ci/service/metrics/AmieMetrics.java | 124 +
.../{ProcessingEventType.java => AuditAction.java} | 20 +-
...cessingErrorEntity.java => AuditLogEntity.java} | 61 +-
.../service/model/amie/ProcessingEventEntity.java | 11 +
.../ci/service/model/amie/ProcessingStatus.java | 7 +-
.../ci/service/repo/ClusterAccountRepository.java | 4 +
.../service/repo/ProjectMembershipRepository.java | 2 +
...rrorRepository.java => AuditLogRepository.java} | 8 +-
.../repo/amie/ProcessingEventRepository.java | 13 +-
.../access/ci/service/service/AuditService.java | 86 +
.../access/ci/service/service/PersonService.java | 61 +-
.../service/service/ProjectMembershipService.java | 29 +-
.../ci/service/service/UserAccountService.java | 26 +-
.../service/worker/amie/ProcessingEventWorker.java | 190 +-
.../src/main/resources/application.yml | 15 +
.../V2__add_next_retry_at_to_processing_events.sql | 5 +
.../db/migration/V3__create_audit_log.sql | 36 +
.../resources/distribution/conf/application.yml | 15 +
.../resources/distribution/conf/logback-spring.xml | 104 +-
.../src/main/resources/logback-spring.xml | 104 +-
.../handler/amie/DataAccountCreateHandlerTest.java | 50 +-
.../handler/amie/DataProjectCreateHandlerTest.java | 49 +-
.../amie/InformTransactionCompleteHandlerTest.java | 15 +-
.../ci/service/handler/amie/NoOpHandlerTest.java | 6 +-
.../ci/service/handler/amie/PacketRouterTest.java | 24 +-
.../amie/RequestAccountCreateHandlerTest.java | 14 +-
.../amie/RequestAccountInactivateHandlerTest.java | 18 +-
.../amie/RequestAccountReactivateHandlerTest.java | 16 +-
.../amie/RequestPersonMergeHandlerTest.java | 18 +-
.../amie/RequestProjectCreateHandlerTest.java | 16 +-
.../amie/RequestProjectInactivateHandlerTest.java | 14 +-
.../amie/RequestProjectReactivateHandlerTest.java | 14 +-
.../handler/amie/RequestUserModifyHandlerTest.java | 18 +-
.../service/metrics/AmieHealthIndicatorTest.java | 118 +
.../access/ci/service/metrics/AmieMetricsTest.java | 129 +
.../ci/service/service/AuditServiceTest.java | 152 ++
.../ci/service/service/PersonServiceTest.java | 216 +-
.../service/ProjectMembershipServiceTest.java | 120 +-
.../ci/service/service/UserAccountServiceTest.java | 76 +
.../worker/amie/ProcessingEventWorkerTest.java | 313 +++
allocations/devtools/amie/README.md | 79 +
allocations/devtools/amie/amie-traffic.js | 118 +
allocations/devtools/amie/mock-amie-server.py | 417 ++++
allocations/domain/db/embed.go | 23 +
allocations/domain/db/migrate.go | 55 +
.../db/migrations/000001_initial_schema.down.sql | 27 +
.../db/migrations/000001_initial_schema.up.sql | 174 ++
allocations/domain/go.mod | 13 +
allocations/domain/go.sum | 70 +
allocations/domain/model/cluster_account.go | 28 +
allocations/domain/model/membership.go | 30 +
allocations/domain/model/person.go | 46 +
allocations/domain/model/project.go | 28 +
allocations/domain/store/account_store.go | 74 +
allocations/domain/store/membership_store.go | 103 +
allocations/domain/store/person_dns_store.go | 80 +
allocations/domain/store/person_global_id_store.go | 66 +
allocations/domain/store/person_store.go | 111 +
allocations/domain/store/project_store.go | 65 +
allocations/domain/store/stores.go | 71 +
allocations/go.work | 7 +
allocations/go.work.sum | 2609 ++++++++++++++++++++
allocations/provisioner/go.mod | 3 +
allocations/provisioner/noop.go | 57 +
allocations/provisioner/provisioner.go | 81 +
compose/docker-compose.yml | 27 +-
compose/grafana/dashboards/amie-service.json | 195 ++
.../grafana/provisioning/dashboards/dashboards.yml | 12 +
.../grafana/provisioning/datasources/mariadb.yml | 17 +
.../provisioning/datasources/prometheus.yml | 9 +
compose/prometheus/prometheus.yml | 18 +
deployment/account-provisioning/README.md | 151 ++
deployment/account-provisioning/enroll-node.yml | 334 +++
.../account-provisioning/files/pam_oauth2_sshd.te | 45 +
.../group_vars/all.yml.example | 90 +
.../inventory/hosts.example.yml | 49 +
.../templates/99-pam-oauth2-device.conf.j2 | 40 +-
.../templates/pam-oauth2-config.json.j2 | 46 +
.../account-provisioning/templates/sssd.conf.j2 | 59 +
deployment/account-provisioning/verify.yml | 137 +
pom.xml | 6 +
192 files changed, 19627 insertions(+), 453 deletions(-)
copy deployment/terraform/aws/modules/keycloak/resources/docker-entrypoint.sh
=> allocations/access-amie/Makefile (55%)
mode change 100755 => 100644
create mode 100644 allocations/access-amie/README.md
create mode 100644 allocations/access-amie/amieclient/client.go
create mode 100644 allocations/access-amie/amieclient/client_test.go
create mode 100644 allocations/access-amie/config.yaml.example
create mode 100644 allocations/access-amie/config/config.go
create mode 100644 allocations/access-amie/db/db.go
create mode 100644 allocations/access-amie/db/errors.go
create mode 100644 allocations/access-amie/db/tx.go
create mode 100644 allocations/access-amie/go.mod
create mode 100644 allocations/access-amie/go.sum
create mode 100644 allocations/access-amie/handler/data_account_create.go
create mode 100644 allocations/access-amie/handler/data_account_create_test.go
create mode 100644 allocations/access-amie/handler/data_project_create.go
create mode 100644 allocations/access-amie/handler/data_project_create_test.go
create mode 100644 allocations/access-amie/handler/handler.go
create mode 100644
allocations/access-amie/handler/inform_transaction_complete.go
create mode 100644
allocations/access-amie/handler/inform_transaction_complete_test.go
create mode 100644 allocations/access-amie/handler/noop.go
create mode 100644 allocations/access-amie/handler/noop_test.go
create mode 100644 allocations/access-amie/handler/request_account_create.go
create mode 100644
allocations/access-amie/handler/request_account_create_test.go
create mode 100644
allocations/access-amie/handler/request_account_inactivate.go
create mode 100644
allocations/access-amie/handler/request_account_inactivate_test.go
create mode 100644
allocations/access-amie/handler/request_account_reactivate.go
create mode 100644
allocations/access-amie/handler/request_account_reactivate_test.go
create mode 100644 allocations/access-amie/handler/request_person_merge.go
create mode 100644 allocations/access-amie/handler/request_person_merge_test.go
create mode 100644 allocations/access-amie/handler/request_project_create.go
create mode 100644
allocations/access-amie/handler/request_project_create_test.go
create mode 100644
allocations/access-amie/handler/request_project_inactivate.go
create mode 100644
allocations/access-amie/handler/request_project_inactivate_test.go
create mode 100644
allocations/access-amie/handler/request_project_reactivate.go
create mode 100644
allocations/access-amie/handler/request_project_reactivate_test.go
create mode 100644 allocations/access-amie/handler/request_user_modify.go
create mode 100644 allocations/access-amie/handler/request_user_modify_test.go
create mode 100644 allocations/access-amie/handler/router.go
create mode 100644 allocations/access-amie/handler/router_test.go
create mode 100644 allocations/access-amie/handler/testutil_test.go
create mode 100644 allocations/access-amie/main.go
create mode 100644 allocations/access-amie/metrics/metrics.go
create mode 100644 allocations/access-amie/metrics/metrics_test.go
create mode 100644 allocations/access-amie/model/audit.go
create mode 100644 allocations/access-amie/model/error.go
create mode 100644 allocations/access-amie/model/event.go
create mode 100644 allocations/access-amie/model/packet.go
copy allocations/{access-ci-service/src/main =>
access-amie}/proto/amie_packets.proto (54%)
create mode 100644 allocations/access-amie/proto/gen/amie_packets.pb.go
create mode 100644 allocations/access-amie/proto/gen/internal_events.pb.go
copy allocations/{access-ci-service/src/main =>
access-amie}/proto/internal_events.proto (58%)
create mode 100644 allocations/access-amie/server/server.go
create mode 100644 allocations/access-amie/service/account_service.go
create mode 100644 allocations/access-amie/service/account_service_test.go
create mode 100644 allocations/access-amie/service/audit_service.go
create mode 100644 allocations/access-amie/service/audit_service_test.go
create mode 100644 allocations/access-amie/service/membership_service.go
create mode 100644 allocations/access-amie/service/membership_service_test.go
create mode 100644 allocations/access-amie/service/person_service.go
create mode 100644 allocations/access-amie/service/person_service_test.go
create mode 100644 allocations/access-amie/service/project_service.go
create mode 100644 allocations/access-amie/service/project_service_test.go
create mode 100644 allocations/access-amie/store/audit_store.go
create mode 100644 allocations/access-amie/store/error_store.go
create mode 100644 allocations/access-amie/store/event_store.go
create mode 100644 allocations/access-amie/store/packet_store.go
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/data_account_create/incoming-data.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/data_account_create/outgoing-inform.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/data_project_create/incoming-data.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/data_project_create/outgoing-inform.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/inform_transaction_complete/incoming-inform.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_account_create/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_account_create/outgoing-notify.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_account_inactivate/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_account_inactivate/outgoing-notify.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_account_reactivate/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_account_reactivate/outgoing-notify.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_person_merge/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_person_merge/outgoing-inform.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_project_create/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_project_create/outgoing-notify.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_project_inactivate/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_project_inactivate/outgoing-notify.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_project_reactivate/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_project_reactivate/outgoing-notify.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_user_modify_delete/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_user_modify_delete/outgoing-inform.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_user_modify_replace/incoming-request.json (100%)
copy allocations/{access-ci-service/src/test/resources/mock-data =>
access-amie/testdata}/request_user_modify_replace/outgoing-inform.json (100%)
create mode 100644 allocations/access-amie/worker/poller.go
create mode 100644 allocations/access-amie/worker/processor.go
create mode 100644 allocations/access-amie/worker/processor_test.go
create mode 100644 allocations/access-amie/worker/proto_utils.go
create mode 100644 allocations/access-amie/worker/proto_utils_test.go
create mode 100644
allocations/access-ci-service/src/main/java/org/apache/custos/access/ci/service/metrics/AmieHealthIndicator.java
create mode 100644
allocations/access-ci-service/src/main/java/org/apache/custos/access/ci/service/metrics/AmieMetrics.java
copy
allocations/access-ci-service/src/main/java/org/apache/custos/access/ci/service/model/amie/{ProcessingEventType.java
=> AuditAction.java} (68%)
copy
allocations/access-ci-service/src/main/java/org/apache/custos/access/ci/service/model/amie/{ProcessingErrorEntity.java
=> AuditLogEntity.java} (61%)
copy
allocations/access-ci-service/src/main/java/org/apache/custos/access/ci/service/repo/amie/{ProcessingErrorRepository.java
=> AuditLogRepository.java} (79%)
create mode 100644
allocations/access-ci-service/src/main/java/org/apache/custos/access/ci/service/service/AuditService.java
create mode 100644
allocations/access-ci-service/src/main/resources/db/migration/V2__add_next_retry_at_to_processing_events.sql
create mode 100644
allocations/access-ci-service/src/main/resources/db/migration/V3__create_audit_log.sql
create mode 100644
allocations/access-ci-service/src/test/java/org/apache/custos/access/ci/service/metrics/AmieHealthIndicatorTest.java
create mode 100644
allocations/access-ci-service/src/test/java/org/apache/custos/access/ci/service/metrics/AmieMetricsTest.java
create mode 100644
allocations/access-ci-service/src/test/java/org/apache/custos/access/ci/service/service/AuditServiceTest.java
create mode 100644
allocations/access-ci-service/src/test/java/org/apache/custos/access/ci/service/worker/amie/ProcessingEventWorkerTest.java
create mode 100644 allocations/devtools/amie/README.md
create mode 100644 allocations/devtools/amie/amie-traffic.js
create mode 100644 allocations/devtools/amie/mock-amie-server.py
create mode 100644 allocations/domain/db/embed.go
create mode 100644 allocations/domain/db/migrate.go
create mode 100644
allocations/domain/db/migrations/000001_initial_schema.down.sql
create mode 100644
allocations/domain/db/migrations/000001_initial_schema.up.sql
create mode 100644 allocations/domain/go.mod
create mode 100644 allocations/domain/go.sum
create mode 100644 allocations/domain/model/cluster_account.go
create mode 100644 allocations/domain/model/membership.go
create mode 100644 allocations/domain/model/person.go
create mode 100644 allocations/domain/model/project.go
create mode 100644 allocations/domain/store/account_store.go
create mode 100644 allocations/domain/store/membership_store.go
create mode 100644 allocations/domain/store/person_dns_store.go
create mode 100644 allocations/domain/store/person_global_id_store.go
create mode 100644 allocations/domain/store/person_store.go
create mode 100644 allocations/domain/store/project_store.go
create mode 100644 allocations/domain/store/stores.go
create mode 100644 allocations/go.work
create mode 100644 allocations/go.work.sum
create mode 100644 allocations/provisioner/go.mod
create mode 100644 allocations/provisioner/noop.go
create mode 100644 allocations/provisioner/provisioner.go
create mode 100644 compose/grafana/dashboards/amie-service.json
create mode 100644 compose/grafana/provisioning/dashboards/dashboards.yml
create mode 100644 compose/grafana/provisioning/datasources/mariadb.yml
create mode 100644 compose/grafana/provisioning/datasources/prometheus.yml
create mode 100644 compose/prometheus/prometheus.yml
create mode 100644 deployment/account-provisioning/README.md
create mode 100644 deployment/account-provisioning/enroll-node.yml
create mode 100644 deployment/account-provisioning/files/pam_oauth2_sshd.te
create mode 100644 deployment/account-provisioning/group_vars/all.yml.example
create mode 100644 deployment/account-provisioning/inventory/hosts.example.yml
copy identity/application/src/main/resources/distribution/bin/setenv.sh =>
deployment/account-provisioning/templates/99-pam-oauth2-device.conf.j2 (58%)
mode change 100755 => 100644
create mode 100644
deployment/account-provisioning/templates/pam-oauth2-config.json.j2
create mode 100644 deployment/account-provisioning/templates/sssd.conf.j2
create mode 100644 deployment/account-provisioning/verify.yml
