Proposal: IP subnet-based access control module

[Nasser Grainawi]

Hi folks,

I (with a lot of AI assistance) created a new Gerrit module that enforces project access based on

source IP/CIDR. This use case has been mentioned in the past ( [AUTH] how make gerrit support restrict login account by iplist) and came up again internally for me, so I decided to see if it would be reasonable to support it. Turns out it wasn't too challenging.

I think the only existing auth module is modules/virtualhost, so there's no existing prefix convention of something like 'access-', but maybe that was an oversight? Any objections to me creating a repo for 'modules/access-ipsubnet'?

Thanks,
Nasser

[Luca Milanesio]

LGTM, thanks for sharing it !

Luca.