mirror of
https://github.com/BerriAI/litellm.git
synced 2025-04-26 19:24:27 +00:00
2eaa0079f2
* feat(handle_jwt.py): initial commit adding custom RBAC support on jwt auth allows admin to define user role field and allowed roles which map to 'internal_user' on litellm * fix(auth_checks.py): ensure user allowed to access model, when calling via personal keys Fixes https://github.com/BerriAI/litellm/issues/8029 * feat(handle_jwt.py): support role based access with model permission control on proxy Allows admin to just grant users roles on IDP (e.g. Azure AD/Keycloak) and user can immediately start calling models * docs(rbac): add docs on rbac for model access control make it clear how admin can use roles to control model access on proxy * fix: fix linting errors * test(test_user_api_key_auth.py): add unit testing to ensure rbac role is correctly enforced * test(test_user_api_key_auth.py): add more testing * test(test_users.py): add unit testing to ensure user model access is always checked for new keys Resolves https://github.com/BerriAI/litellm/issues/8029 * test: fix unit test * fix(dot_notation_indexing.py): fix typing to work with python 3.8 |
||
|---|---|---|
| .. | ||
| auth_checks.py | ||
| auth_checks_organization.py | ||
| auth_utils.py | ||
| handle_jwt.py | ||
| litellm_license.py | ||
| model_checks.py | ||
| oauth2_check.py | ||
| oauth2_proxy_hook.py | ||
| public_key.pem | ||
| rds_iam_token.py | ||
| route_checks.py | ||
| service_account_checks.py | ||
| user_api_key_auth.py | ||