Skip to content

v2.6.2

Latest
Latest
Compare
Choose a tag to compare
@dlpzx dlpzx released this 15 Jan 15:54
2.6.2
749ffc3
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

🔐 Security

Data.all permission model has been reviewed to ensure all Mutations and Queries have proper permissions:

  • Add MANAGE_SHARES permissions by @dlpzx in #1702
  • Add permission check - is tenant to update SSM parameters API by @dlpzx in #1714
  • Add GET_SHARE_OBJECT permissions to get data filters API by @dlpzx in #1717
  • Add permissions on list datasets for env group + cosmetic S3 Datasets by @dlpzx in #1718
  • Add GET_WORKSHEET permission in RUN_SQL_QUERY by @dlpzx in #1716
  • Add permissions to Quicksight monitoring service layer by @dlpzx in #1715
  • Add LIST_ENVIRONMENT_DATASETS permission for listing shared datasets and cleanup unused code by @dlpzx in #1719
  • Add is_owner permissions to Glossary mutations + add new integration tests by @dlpzx in #1721
  • Refactor env permissions + modify getTrustAccount by @dlpzx in #1712
  • Add Feed consistent permissions by @dlpzx in #1722
  • Add Votes consistent permissions by @dlpzx in #1724
  • Consistent get_<DATA_ASSET> permissions - Dashboards by @dlpzx in #1729

🧪 Test improvements

Integration tests are in sync with main without 2.7 planned features. In this PR all core modules, optional modules and submodules are tested. That includes: tenant-permissions, omics, mlstudio, votes, notifications and backwards compatiblity of s3 shares. by @SofiaSazonova, @noah-paige , @petrkalos and @dlpzx

In addition, the following PR adds functional tests that ensure the permission model of data.all is not corrupted.

Dependencies

Contributors

SofiaSazonova, petrkalos, and 3 other contributors
Assets 2
Loading