History

Serge Bazanski 0aa2910d00 hswaw/capacifier: rewrite it in go This reimplements capacifier, one of the earliest just-some-flask-code-on-boston-packets services, in Go. It's a minimum reimplementation, as this service is generally deprecated - but some stuff still depends on it. So we do away with capacifier v0's bespoke rule language and just hardcode everything. It's not like any of these rules ever changed, anyway. This is not yet deployed. Change-Id: Id65ef92784a524c32ae5223cd5460736ac683116 Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1509 Reviewed-by: ironbound <ironbound@hackerspace.pl>		2023-04-07 18:15:11 +00:00
..
BUILD.bazel	hswaw/capacifier: rewrite it in go	2023-04-07 18:15:11 +00:00
capacifier.go	hswaw/capacifier: rewrite it in go	2023-04-07 18:15:11 +00:00
README.md	hswaw/capacifier: rewrite it in go	2023-04-07 18:15:11 +00:00

README.md

capacifier

rewrite-in-go of code.haclerspace.pl/tomek/capacifier.

This is one of the oldest API services at the Warsaw hackerspace, and exists solely to provide a generic 'is X a member of Y' functionality. It's generally deprecated (instead OIDC should be used as much as possible), but it's so entrenched into our infra that it's difficult to fully kill.

While the previous implementation had a whole bespoke rule expression language, this implementation is stupidly simple, with all rules hardcoded.

Running

Get the password for the capacifier service account from prod.

Then:

    bazel run //hswaw/capacifier -- --ldap_bind_pw xxx