feat: gateway: Control access scope through jwt payload #7962

FroghubMan · 2022-01-17T07:05:33Z

Proposed Changes

Add lotus-gateway command tool, specify --api-max-lookback=24h --api-wait-lookback-limit=10000 --effective-time=1h to control api permissions.

Before you mark the PR ready for review, please make sure that:

All commits have a clear commit message.
The PR title is in the form of of <PR type>: <area>: <change being made>
- example: fix: mempool: Introduce a cache for valid signatures
- PR type: fix, feat, INTERFACE BREAKING CHANGE, CONSENSUS BREAKING, build, chore, ci, docs, misc,perf, refactor, revert, style, test
- area: api, chain, state, vm, data transfer, market, mempool, message, block production, multisig, networking, paychan, proving, sealing, wallet
This PR has tests for new functionality or change in behaviour
If new user-facing features are introduced, clear usage guidelines and / or documentation updates should be included in https://lotus.filecoin.io or Discussion Tutorials.
CI is green

magik6k

Tests need fixing

gateway token authorization

eabc084

FroghubMan requested a review from a team as a code owner January 17, 2022 07:05

magik6k self-requested a review January 17, 2022 15:54

magik6k reviewed Jan 20, 2022

View reviewed changes

FroghubMan closed this Aug 4, 2022