6.5 KiB
6.5 KiB
Yann FY23Q3 Report
Individual Development Plan
Results
Accomplishments
- Added support for AND/OR queries in tk-store. Should help
- PIAM (Provisioning)
- Start of the work related to Entitlements (see: https://github.com/advthreat/iroh/issues/7835)
- Free Tier Provisioning (the
xdr-provisioning
repository + Platform Provisioning API) - IROH config work to help ops and prevent release problems
-
Recurring admin tasks:
- added bunch of XDR Flags (see #response/1742)
- moved the TG OAuth2 client from config to DB on INT
- Managed to get Wanderson back to better efficiency after being difficult during its move and his daughter
- Managed Olivier to his best. Very discrete but pretty strong.
For full details look at the code last quarter report section.
Improvements/opportunities for development:
- I should work even more closely with PIAM as this is fruitful and could have a lot of impact on IROH team as well as the rest of the IROH ecosystem (IROH + modules + integrations).
- Entitlement will be an interesting topic
- Wanderson and Olivier are not yet fully autonomous while working with some IROH-Auth parts. So there are still room for teaching and improvements.
Principles & Behaviors
Accomplishments
- Advocate: even while it was questionable I did my best to provide only positive XDR feedback to the team.
- Customer value: see the Results Accomplishments section (most of them add customer value)
-
Learn:
- bash scripts containing Clojure
- matrix testing (this was not very visible PR but this is a testing framework improvements)
- matrix representation inside Clojure code, this is helpful to visualize and easily change scopes associated to roles for example.
- Team for results: engaged team ops + Matt + IROH-Auth for iroh config issue
Improvements/opportunities for development:
Team Impact
Accomplishments
admin-clj
scripts should be helpful, for now use only for- IROH default config should help ops
- PIAM contacts will be useful in the future
- Mario PR feedback was a really nice exchange while we are not having much cross-sub-team discussions.
- Helped Explain RBAC technical consequences with other teams, in particular SXO, but also the UI.
Improvements/opportunities for development:
- RBAC: Next quarter will probably start discussions with DI and perhaps CSC.
Code last quarter [44]
ctia [1 (1 / 0)]
- bump snakeyaml to address CVE-2022-38751 #1346
iroh [30 (27 / 3)]
- Add a missing option to disable default configs #7805
- Add a script to init tokens without login in #7794
- Fix schema for Response #7804
- Add support to onboard a single app #7796
- Add a role instrospection route to help the UI and other clients #7785
- Fix scopes declaration for execute-workflow route #7799
- Fix a Swagger bug due to schema name conflict #7790
- Web api search improvements #7728
- add profile and notification to ao-jwt #7726
- Tk store combinator search queries (AND, OR, NOT) #7691
- Fix a case where the body is
nil
#7685 - Add xdr-instance-id field to the orgs #7707
- PIAM: Provisioning onboard endpoint #7659
- Add ff scope script #7680
- added a script to add feature-flag scopes from command line #7676
- prefer to use client from DB than client from config #7672
- Align scopes to SXO behaviour #7673
- fix lein start #7663
- PIAM provisioning no idp-mapping for create user #7655
- Default bootstrap & config #6868
- Add Entitlements to Orgs #7631
- Remove yaml to supported format for profile API #7632
- Fix a flaky test in either_test.clj #7610
- Role Matrix representation in the code. #7583
- fix some wording only for admin users view #7579
- Improve User login logs situation #7555
- Added a composable redis.nix #7535
between 3 and 4 months ago
tenzin-config [6 (6 / 0)]
xdr-provisioning [5 (5 / 0)]
- Improve help regarding setting env vars
- Improve the command line parsing
- rename script to .sh
- Add onboarding of DI and CSC
- Initial provisioning Script