DeforaNetworks/corteza
DeforaNetworks/corteza
3
0
Fork 0
Code
3,310 Commits 2 Branches 228 Tags
Commit Graph

153 Commits

Author SHA1 Message Date
Denis Arh
b22a4f8ea7 Reuse user from session when issuing oa2 token 
This way we keep user's roles in case the list was modified
by external-auth-provider role security
 2022-01-25 16:59:37 +01:00
Denis Arh
f53463a32d Fix session lifetime on sigunp (was set to zero) 2022-01-22 21:02:03 +01:00
Denis Arh
6c3bef0750 Refactor token-issuer (ex-jwt) to be more robust and configurable 2022-01-21 15:31:10 +01:00
Denis Arh
b61fb170bf Add id_token in auth token request 
ID token carries personal information about end-users that authenticate on an OpenID Connect flow.
 2022-01-20 10:11:44 +01:00
Denis Arh
46675080fe Another set of after-update JWT fixes 2022-01-19 14:55:33 +01:00
Denis Arh
59ec77e204 Refactor JWT implementation 2022-01-18 21:50:18 +01:00
Denis Arh
3ffa0ef8be Fixing codebase after JWT lib switch 2022-01-11 15:35:05 +01:00
Denis Arh
72999ca692 Replacing dgrijalva/jwt-go with lestrrat-go/jwx 2022-01-11 10:56:17 +01:00
Denis Arh
60020f8510 Upgrade go-chi&co 2022-01-11 10:53:49 +01:00
Peter Grlica
717cae5c0b Added support for SAML HTTP binding 2022-01-11 08:26:24 +01:00
Peter Grlica
c75e4486c7 Added SAML signed requests support 2022-01-03 09:17:39 +01:00
Tomaž Jerman
77121945b3 Fix i18n key lapsus in tests 2021-12-16 15:55:10 +01:00
Katrin Yordanova
f769b4ff09 Fix broken translations on password reset 2021-12-15 18:17:37 +02:00
Vivek Patel
a2091dbbf6 Add Corteza OIDC support 
This provides `well know` endpoint for corteza which defines a set of values that can be retrieved by a client in order to self-configure.

Added route for `public-keys` which can help a client to determine if the public key is changed since the last time and automatically update itself to use this new information.
 2021-12-06 13:55:29 +05:30
Denis Arh
f53c23311e Refactor role security, support it for ext. auth flow 2021-11-23 15:09:04 +01:00
Tomaž Jerman
420b5ee195 Implement support for base password constraints 2021-11-22 13:36:32 +01:00
Tomaž Jerman
14450dc45f Add support for setting oauth token TTL 2021-11-17 12:57:12 +01:00
Denis Arh
5aafe5319b Improve how JWT is generated from the CLI 2021-11-10 14:18:17 +01:00
Denis Arh
accc9ceb1f Fix auth asset exports 2021-11-05 07:46:04 +01:00
Denis Arh
84762e068b Fix padding on auth form 2021-10-27 15:56:42 +02:00
Denis Arh
1fa84826c3 Load user's roles after profile-update 2021-10-11 21:03:31 +02:00
Denis Arh
c67276c3d3 Fix JWT generator command 2021-10-07 16:48:20 +02:00
Denis Arh
a4b9518cde Fix password labe i18n key on login form 2021-10-07 14:19:53 +02:00
Matija Rešek
5fba7b5acd Change fonts of auth input autocomplte 2021-10-07 10:29:47 +02:00
Denis Arh
88ad86e39c Fix uneeded error handling after successful login 2021-10-06 16:14:35 +02:00
Matija Rešek
2af6b756e8 Fix auth font loading 2021-10-06 09:47:29 +02:00
Denis Arh
03beda0e5d Add more randomness to the generated JWTs 2021-10-04 21:20:24 +02:00
Denis Arh
65144c7b26 Prevent context-canceled errors from logging 2021-10-04 21:20:24 +02:00
Matija Rešek
bb117df707 Make footer scrollable 2021-10-04 12:24:44 +02:00
Denis Arh
e23ba61c9a Improve SAML IdP name handling 2021-10-02 08:32:45 +02:00
Denis Arh
1e5e956195 Cleanup SAML setup, cert loading, fix live-reload 2021-10-02 08:32:45 +02:00
Matija Rešek
715f45edf2 Remove version and qc link from footer 2021-10-01 16:34:22 +02:00
Matija Rešek
cb9c49fd7c Move auth screens footer to bottom 2021-10-01 14:43:33 +02:00
Denis Arh
dd8921d392 Add ability to disable CSRF 2021-10-01 10:08:58 +02:00
Jože Fortun
9ee3ab0bb8 Update themes for auth screens 2021-09-27 17:02:58 +02:00
Tomaž Jerman
57c0c319aa Post testing tweaks 
* Auth screens
 2021-09-24 18:17:13 +02:00
Katrin Yordanova
ac587db589 Fix styles for auth screens 2021-09-24 16:13:18 +03:00
Denis Arh
4276000add Add support for decoding content-language header from request 2021-09-22 11:26:14 +02:00
Tomaž Jerman
48a8705053 Resolve SAML initialization issues 
* invalid certificates
* invalid URL
* enabled/disabled
 2021-09-22 11:25:16 +02:00
Denis Arh
1b3a811cfd Add resource limiting for users 2021-09-22 07:16:40 +02:00
Denis Arh
c7446a032a Simplifiy auth test mock functions 2021-09-18 05:58:10 +02:00
Denis Arh
98eda7d474 Fix broken auth tests, optimize how locale is passed on 2021-09-18 05:57:42 +02:00
Denis Arh
92970c090a Implements language selector and some lang list improvements 2021-09-17 15:56:42 +02:00
Denis Arh
3113257097 Implements language selector and some lang list improvements 2021-09-17 01:17:44 +02:00
Vivek Patel
3705232988 Fixes auth tests 2021-09-12 15:31:10 +05:30
Vivek Patel
3ac2a1f3fa Extends user add cli command 
- Adds flag `make-password-link` to generate temp token to create users password
- Adds route and handler for create user password
- Updates few auth label translation reference
- Fixes reset-password issue with existing login session
- Updates tests
 2021-09-12 12:49:34 +05:30
Mario Burazer
25b573000b Add icon link from auth to the caller app 2021-09-02 14:19:20 +02:00
Denis Arh
1bf4cbbe3e Add missing temp 'language' tpl function 2021-08-25 22:50:58 +02:00
Denis Arh
3a9348500b Refactor lang loading, support sorting, enabling 2021-08-25 22:46:15 +02:00
Denis Arh
62c1571bdc Add configurable locale reloading (via options) 2021-08-25 17:07:14 +02:00