DeforaNetworks/corteza
3
0
Fork 0
Code Activity
3,653 Commits 2 Branches 228 Tags
cd865edb2be5e30f2a6b4abbbbb6f2f017e81a39
Commit Graph

174 Commits

Author SHA1 Message Date
Tomaž Jerman
674b62bb89 Fix auth refresh token configuration 
Prior version didn't push refresh exparation forward so
an expired refresh token could be issued.
 2022-07-04 13:00:26 +02:00
Peter Grlica
c12385ebaa Handle email confirmation token correctly 2022-07-04 12:58:06 +02:00
Katrin Yordanova
ae177514cf Bring back login button in login template 2022-06-23 20:21:17 +03:00
Katrin Yordanova
6e4402e15e Redesign login template 2022-06-16 15:01:45 +03:00
Denis Arh
ebe36a758c Fix hide/show for remember-me button on login screen 2022-05-24 14:24:36 +02:00
Denis Arh
691e3e2900 Fix session & cookie exp. setting logic 
Ensures that cookies on non-permanent login are set without max-age to
ensure removal when browser/tab is closed.

Sessions stored in the database are now updated and expiration value
slides forward in time with every activity from the user.
 2022-05-24 10:46:21 +02:00
Denis Arh
dd3d25a5ae Deprecate/remove AUTH_JWT_EXPIRY 
JWT expiration is now controled via AUTH_OAUTH2_ACCESS_TOKEN_LIFETIME
 2022-05-24 10:44:54 +02:00
Denis Arh
cda604b614 Fix loading of scenarios in auth dev-mode 2022-05-09 19:58:20 +02:00
Denis Arh
773d64636f Refactored store codegen, replace squirrel with goqu 2022-04-23 16:34:04 +02:00
Katrin Yordanova
56af630c05 Add data-test-id to login and signup templates 2022-04-05 17:35:44 +03:00
Peter Grlica
679af2f556 Added CLI jwt token duration option 2022-04-05 09:01:40 +02:00
Denis Arh
c32b45c332 Fix password-reset flow when MFA is enabled 2022-03-22 18:03:42 +01:00
Denis Arh
7ab973b4c6 Fix MFA enable/disable alerts & errors 2022-03-22 18:03:01 +01:00
Denis Arh
dfe19c4c3a Fix exported auth assets serving in non-dev mode 2022-03-15 09:18:35 +01:00
Tomaž Jerman
ab805f0075 Add missing roles, impersonate user to JWT tokens 2022-03-02 10:04:04 +01:00
Denis Arh
9b84ad5f2d Add post payload length protection for auth pages 2022-03-01 16:13:49 +01:00
Vivek Patel
5ccf28488f Remove all auth tokens of user along with deleting all sessions 
Also remove `Delete this session` button from each session and,
fix issue with auth token access of active login session, even after deleting sessions from admin.
 2022-03-01 16:12:42 +05:30
Denis Arh
96c335e9f4 Add back-link sanitization on logout page 2022-03-01 09:13:37 +01:00
Denis Arh
43ddaf1e56 Update auth templates to use general assets, update auth background 2022-02-21 16:56:21 +01:00
Denis Arh
957e700563 Allow custom client ID and scope when generating JWT from CLI 2022-02-11 08:44:57 +01:00
Vivek Patel
6777576948 Refactor OIDC provider scope string 2022-02-07 09:21:31 +01:00
Denis Arh
b22a4f8ea7 Reuse user from session when issuing oa2 token 
This way we keep user's roles in case the list was modified
by external-auth-provider role security
 2022-01-25 16:59:37 +01:00
Denis Arh
f53463a32d Fix session lifetime on sigunp (was set to zero) 2022-01-22 21:02:03 +01:00
Denis Arh
6c3bef0750 Refactor token-issuer (ex-jwt) to be more robust and configurable 2022-01-21 15:31:10 +01:00
Denis Arh
b61fb170bf Add id_token in auth token request 
ID token carries personal information about end-users that authenticate on an OpenID Connect flow.
 2022-01-20 10:11:44 +01:00
Denis Arh
46675080fe Another set of after-update JWT fixes 2022-01-19 14:55:33 +01:00
Denis Arh
59ec77e204 Refactor JWT implementation 2022-01-18 21:50:18 +01:00
Denis Arh
3ffa0ef8be Fixing codebase after JWT lib switch 2022-01-11 15:35:05 +01:00
Denis Arh
72999ca692 Replacing dgrijalva/jwt-go with lestrrat-go/jwx 2022-01-11 10:56:17 +01:00
Denis Arh
60020f8510 Upgrade go-chi&co 2022-01-11 10:53:49 +01:00
Peter Grlica
717cae5c0b Added support for SAML HTTP binding 2022-01-11 08:26:24 +01:00
Peter Grlica
c75e4486c7 Added SAML signed requests support 2022-01-03 09:17:39 +01:00
Tomaž Jerman
77121945b3 Fix i18n key lapsus in tests 2021-12-16 15:55:10 +01:00
Katrin Yordanova
f769b4ff09 Fix broken translations on password reset 2021-12-15 18:17:37 +02:00
Vivek Patel
a2091dbbf6 Add Corteza OIDC support 
This provides `well know` endpoint for corteza which defines a set of values that can be retrieved by a client in order to self-configure.

Added route for `public-keys` which can help a client to determine if the public key is changed since the last time and automatically update itself to use this new information.
 2021-12-06 13:55:29 +05:30
Denis Arh
f53c23311e Refactor role security, support it for ext. auth flow 2021-11-23 15:09:04 +01:00
Tomaž Jerman
420b5ee195 Implement support for base password constraints 2021-11-22 13:36:32 +01:00
Tomaž Jerman
14450dc45f Add support for setting oauth token TTL 2021-11-17 12:57:12 +01:00
Denis Arh
5aafe5319b Improve how JWT is generated from the CLI 2021-11-10 14:18:17 +01:00
Denis Arh
accc9ceb1f Fix auth asset exports 2021-11-05 07:46:04 +01:00
Denis Arh
84762e068b Fix padding on auth form 2021-10-27 15:56:42 +02:00
Denis Arh
1fa84826c3 Load user's roles after profile-update 2021-10-11 21:03:31 +02:00
Denis Arh
c67276c3d3 Fix JWT generator command 2021-10-07 16:48:20 +02:00
Denis Arh
a4b9518cde Fix password labe i18n key on login form 2021-10-07 14:19:53 +02:00
Matija Rešek
5fba7b5acd Change fonts of auth input autocomplte 2021-10-07 10:29:47 +02:00
Denis Arh
88ad86e39c Fix uneeded error handling after successful login 2021-10-06 16:14:35 +02:00
Matija Rešek
2af6b756e8 Fix auth font loading 2021-10-06 09:47:29 +02:00
Denis Arh
03beda0e5d Add more randomness to the generated JWTs 2021-10-04 21:20:24 +02:00
Denis Arh
65144c7b26 Prevent context-canceled errors from logging 2021-10-04 21:20:24 +02:00
Matija Rešek
bb117df707 Make footer scrollable 2021-10-04 12:24:44 +02:00