DeforaNetworks/corteza
DeforaNetworks/corteza
3
0
Fork 0
Code
3,367 Commits 2 Branches 228 Tags
Commit Graph

30 Commits

Author SHA1 Message Date
Denis Arh
53dd7cc292 Validate token and resolve identity from token earlier in the chain. 2022-02-09 10:58:47 +01:00
Tomaž Jerman
849ac9410c Use custom token middleware to use JWT via query params 2022-02-07 09:21:31 +01:00
Denis Arh
6c7d89a921 Fix user-id claim parsing 2022-01-22 21:47:36 +01:00
Denis Arh
6c3bef0750 Refactor token-issuer (ex-jwt) to be more robust and configurable 2022-01-21 15:31:10 +01:00
Denis Arh
46675080fe Another set of after-update JWT fixes 2022-01-19 14:55:33 +01:00
Denis Arh
59ec77e204 Refactor JWT implementation 2022-01-18 21:50:18 +01:00
Denis Arh
3ffa0ef8be Fixing codebase after JWT lib switch 2022-01-11 15:35:05 +01:00
Denis Arh
72999ca692 Replacing dgrijalva/jwt-go with lestrrat-go/jwx 2022-01-11 10:56:17 +01:00
Denis Arh
922243605d Refactored and cleanedup workflow exection 2021-12-17 12:53:06 +01:00
Denis Arh
f53c23311e Refactor role security, support it for ext. auth flow 2021-11-23 15:09:04 +01:00
Denis Arh
5aafe5319b Improve how JWT is generated from the CLI 2021-11-10 14:18:17 +01:00
Denis Arh
426b9c4fb0 Refactored access token removal logic 2021-09-22 21:09:55 +02:00
Vivek Patel
0249641bda Ensure extra user validation during access token validation 
- validate a token exist in store
- when user is suspended, deleted or roles are removed - removes ALL user's tokens
 2021-09-22 21:09:55 +02:00
Vivek Patel
54cbfe20d8 Adds JWT token generation methods 
- Generates token encoded with user and save it to store
- Updated token generation method usage in Corredor and Impersonalization
 2021-09-22 21:09:55 +02:00
Denis Arh
5d6945cec9 Add locale handling, translation dec/enc and serving 2021-08-23 19:10:21 +02:00
Denis Arh
67d7882b8e Fix ClaimsToIdentify to return identity with all authenticated roles 2021-07-21 22:47:19 +02:00
Denis Arh
20e05280b3 System wide RBAC changes 2021-07-08 11:42:18 +02:00
Denis Arh
b923953ca5 Removing superuser logic 2021-07-08 11:24:12 +02:00
Denis Arh
bcf83b25e8 Extend token verification to non-standard auth flow 2021-05-13 14:08:54 +02:00
Vivek Patel
21c9e9010e Sends pending prompts via websocket 2021-05-13 14:08:54 +02:00
Vivek Patel
d6b3278b6e Implements websocket along with in memory websocket sessions. 
- Implements route for websocket
- Adds default config and encoder for websocket messaging
 2021-05-13 14:08:54 +02:00
Denis Arh
10ef5b0df5 Improve how HTTP status on error is sent 2021-04-29 07:46:07 +02:00
Denis Arh
b245726c9b Implement client_credentials g.type with user imp. 2021-04-29 07:46:07 +02:00
Denis Arh
53be013377 Implement new auth UI, deprecate auth API endpoints 2021-02-23 07:34:10 +01:00
Denis Arh
ecb7f52c31 Improve error creation & handling by API 2020-11-04 14:18:33 +01:00
Denis Arh
c8d552e6a6 Implement new store infrastructure 2020-08-24 15:40:15 +02:00
Denis Arh
3548742b85 Flip checking logic for url signature check 2020-01-28 10:13:17 +01:00
Denis Arh
41ce1b1c75 Make SuperUser functions more resiliant to nil values 2020-01-18 07:05:34 +01:00
Denis Arh
e7504dd35f Add FindByAny, Stringer for users 2020-01-18 07:05:34 +01:00
Denis Arh
62aa794b84 Move internal/auth to pkg/auth 2019-10-01 17:47:43 +02:00