opentdf/platform

Issues

• Improve automated security unit testing

  #1341 opened a month ago by jentfoo
  2

• ZTDF: validate size / length values before allocating buffers during read

  #1391 opened a month ago by dmihalcik-virtru
  0

• Bug: SDK logs too verbosely and uses wrong error type when public client id not found in well-known

  #1414 opened a month ago by jakedoublev
  0

• Update Resource Mapping Groups policy object to support the `Metadata` property

  #1398 opened a month ago by ryanulit
  0

• Policy: trace level logs should show sql queries being run

  #1413 opened a month ago by jakedoublev
  0

• Policy: migrate integration test fixtures to sqlc models

  #1411 opened a month ago by jakedoublev
  0

• KAS Grant Specificity: Grants to Values should replace grants on Attributes

  #1329 opened a month ago by dmihalcik-virtru
  5

• update golangci-lint to 1.60

  #1409 opened a month ago by dmihalcik-virtru
  0

• Service module panics due to regex pattern introduced in Go 1.22

  #1406 opened a month ago by jakedoublev
  0

• SDK: CI testing for backwards compatibility in Go versions other than most recent

  #1408 opened a month ago by jakedoublev
  0

• Add attributes to entities

  #1400 opened a month ago by Doom4535
  0

• SDK should support `WithOIDCAccessToken` option

  #1307 opened a month ago by jakedoublev
  3

• Use stored KAS keys from kas registry, when available

  #1349 opened a month ago by dmihalcik-virtru
  0

• Fuzzing SDK: Fuzz nanoTDF input

  #1390 opened a month ago by dmihalcik-virtru
  0

• Fuzzing SDK: Fuzz ZTDF input

  #1389 opened a month ago by dmihalcik-virtru
  0

• Unauthenticated Clients (CLI and PEPs) should be able to fetch well-known idp config values with SDK

  #1373 opened a month ago by jakedoublev
  0

• Consumption of local keycloak development fixtures should be improved

  #1384 opened a month ago by jakedoublev
  0

• CI GHA execution time is now ~9.5 to 10 minutes on average

  #1382 opened a month ago by jakedoublev
  0

• Deprecate `keycloak-from-config` command and unify in `keycloak` provisioning command for local development

  #1380 opened a month ago by jakedoublev
  0

• Should not log the expected policy hmac hash, as this is a security vulnerability

  #1379 opened a month ago by timdumm
  0

• Investigate usage of NULLIF instead of COALESCE with `pgx/v5/pgtype` to simplify UUID query logic

  #1378 opened a month ago by ryanulit
  0

• ❅ buf-setup-action sometimes fails due to rate limit

  #1372 opened a month ago by dmihalcik-virtru
  0

• Add audit support for Resource Mapping Groups

  #1370 opened a month ago by ryanulit
  0

• Create namespace buf validation regex does not support allowed values such as `example.com`

  #1361 opened a month ago by ryanulit
  3

• Namespace Grants: update GetAttributeValuesByFqns to ensure grants are provided if found for: ns, def, val

  #1331 opened a month ago by jakedoublev
  0

• sdk platform `mode` alignment

  #1360 opened a month ago by strantalis
  0

• Add CLI support for Resource Mapping Groups operations

  #1363 opened a month ago by ryanulit
  0

• Repeated runs of integration tests locally causes db connection failures

  #1362 opened a month ago by ryanulit
  0

• TDF Policy Data Attributes are case sensitive

  #1359 opened a month ago by imdominicreed
  1

• Store key identifiers with public key in KAS registry

  #1348 opened a month ago by dmihalcik-virtru
  0

• Policy: KAS registry public key `local` field should be reserved

  #1358 opened a month ago by jakedoublev
  0

• Enhancement: Policy GetAttributeByFqn db query should employ fewer roundtrips

  #1357 opened a month ago by jakedoublev
  0

• Enhancement: GetDecisions should not call GetEntitlements

  #1356 opened a month ago by jakedoublev
  0

• ADR: add KAS grants to Namespaces (not just Attribute Definition & Values)

  #1296 opened a month ago by jakedoublev
  8

• Add casbin policy for authorization http routes

  #1354 opened a month ago by elizabethhealy
  0

• Integrity / Payload Key Retrieval for 3rd Party Decryption

  #1320 opened a month ago by c-r33d
  0

• sql linting

  #1319 opened a month ago by strantalis
  0

• KAS Grants to Attributes/Values should be able to be LISTed

  #1295 opened a month ago by jakedoublev
  2

• Policy: service support for CRUD of KAS grants on namespaces

  #1332 opened a month ago by jakedoublev
  0

• Policy: KAS grants through grpc HTTP gateway should be more RESTful

  #1302 opened a month ago by jakedoublev
  0

• Policy: data layer support for CRUD KAS Grants on Namespaces

  #1330 opened a month ago by jakedoublev
  0

• CI: job to check PR issue association should allow `relates to` association that is non-closing

  #1333 opened a month ago by jakedoublev
  1

• Policy: migrations merge order issue

  #1326 opened a month ago by jakedoublev
  0

• Improve Dependency Management and Configuration

  #1316 opened a month ago by jentfoo
  0

• Add UnsafePayloadKey function

  #1310 opened a month ago by c-r33d
  0

• Authz: Casbin policy is missing some RPC naming conventions when mapping to actions for policy

  #1303 opened a month ago by jakedoublev
  0

• Auth: fix action type of kas casbin policy

  #1306 opened a month ago by elizabethhealy
  0

• Create IDP interface and "plug in" keycloak

  #1301 opened 2 months ago by pbacon-blaber
  0

• Add ability to manage policy using unique names

  #1300 opened 2 months ago by jrschumacher
  0

• put back CI proto breaking change detection after policy value members deprecation

  #1293 opened 2 months ago by jakedoublev
  0