-
Notifications
You must be signed in to change notification settings - Fork 22
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Authentication in GMT #872
base: main
Are you sure you want to change the base?
Conversation
Old Energy EstimationEco-CI Output:
🌳 CO2 Data: |
Old Energy EstimationEco-CI Output:
🌳 CO2 Data: |
* main: Clarifications on units in CarbonDB
* main: Fetch mode named digestable (#885)
Old Energy EstimationEco-CI Output:
🌳 CO2 Data: |
Old Energy EstimationEco-CI Output:
🌳 CO2 Data: |
Eco-CI Output:
🌳 CO2 Data: |
|
* main: Bump python from 3.12.5-slim-bookworm to 3.12.6-slim-bookworm in /docker (#898) Bump psycopg[binary] from 3.2.1 to 3.2.2 (#900) Bump fastapi[standard] from 0.114.0 to 0.114.2 (#899) Added new demo data [skip ci] (#892) Added re-licensing option Bump pytest from 8.3.2 to 8.3.3 (#890) Updated Cloud Energy Bump pydantic from 2.9.0 to 2.9.1 (#889) Adds checks to the install scripts (#886) Bump fastapi[standard] from 0.113.0 to 0.114.0 (#887)
This PR introduces the authentication functionality to GMT.
Authentication serves following functional needs:
Design considerations
GMT is designed to be a fully self-hostable and open source application. In many cases no authentication is needed for open source teams using thus.
By default GMT will install a "DEFAULT" user which however has access to all ressources, has no quotas or limits.
The authentication is designed to be transparent when not configured meaning that the frontend as well as the CLI interface will transparently inject the "DEFAULT" user whenever accessing ressources.
Only when the system is updated, new machines are added or the code is modified the authentication token ACLs must be altered.
This is the current data structure of the ACL
Missing features
Measurement quotas are not applied yet. Only API quotas so fardata retention limit is not implemented yet