DeforaNetworks/corteza
DeforaNetworks/corteza
3
0
Fork 0
Code
3,542 Commits 2 Branches 228 Tags
Commit Graph

170 Commits

Author SHA1 Message Date
Denis Arh
ebe36a758c Fix hide/show for remember-me button on login screen 2022-05-24 14:24:36 +02:00
Denis Arh
691e3e2900 Fix session & cookie exp. setting logic 
Ensures that cookies on non-permanent login are set without max-age to
ensure removal when browser/tab is closed.

Sessions stored in the database are now updated and expiration value
slides forward in time with every activity from the user.
 2022-05-24 10:46:21 +02:00
Denis Arh
dd3d25a5ae Deprecate/remove AUTH_JWT_EXPIRY 
JWT expiration is now controled via AUTH_OAUTH2_ACCESS_TOKEN_LIFETIME
 2022-05-24 10:44:54 +02:00
Denis Arh
cda604b614 Fix loading of scenarios in auth dev-mode 2022-05-09 19:58:20 +02:00
Denis Arh
773d64636f Refactored store codegen, replace squirrel with goqu 2022-04-23 16:34:04 +02:00
Katrin Yordanova
56af630c05 Add data-test-id to login and signup templates 2022-04-05 17:35:44 +03:00
Peter Grlica
679af2f556 Added CLI jwt token duration option 2022-04-05 09:01:40 +02:00
Denis Arh
c32b45c332 Fix password-reset flow when MFA is enabled 2022-03-22 18:03:42 +01:00
Denis Arh
7ab973b4c6 Fix MFA enable/disable alerts & errors 2022-03-22 18:03:01 +01:00
Denis Arh
dfe19c4c3a Fix exported auth assets serving in non-dev mode 2022-03-15 09:18:35 +01:00
Tomaž Jerman
ab805f0075 Add missing roles, impersonate user to JWT tokens 2022-03-02 10:04:04 +01:00
Denis Arh
9b84ad5f2d Add post payload length protection for auth pages 2022-03-01 16:13:49 +01:00
Vivek Patel
5ccf28488f Remove all auth tokens of user along with deleting all sessions 
Also remove `Delete this session` button from each session and,
fix issue with auth token access of active login session, even after deleting sessions from admin.
 2022-03-01 16:12:42 +05:30
Denis Arh
96c335e9f4 Add back-link sanitization on logout page 2022-03-01 09:13:37 +01:00
Denis Arh
43ddaf1e56 Update auth templates to use general assets, update auth background 2022-02-21 16:56:21 +01:00
Denis Arh
957e700563 Allow custom client ID and scope when generating JWT from CLI 2022-02-11 08:44:57 +01:00
Vivek Patel
6777576948 Refactor OIDC provider scope string 2022-02-07 09:21:31 +01:00
Denis Arh
b22a4f8ea7 Reuse user from session when issuing oa2 token 
This way we keep user's roles in case the list was modified
by external-auth-provider role security
 2022-01-25 16:59:37 +01:00
Denis Arh
f53463a32d Fix session lifetime on sigunp (was set to zero) 2022-01-22 21:02:03 +01:00
Denis Arh
6c3bef0750 Refactor token-issuer (ex-jwt) to be more robust and configurable 2022-01-21 15:31:10 +01:00
Denis Arh
b61fb170bf Add id_token in auth token request 
ID token carries personal information about end-users that authenticate on an OpenID Connect flow.
 2022-01-20 10:11:44 +01:00
Denis Arh
46675080fe Another set of after-update JWT fixes 2022-01-19 14:55:33 +01:00
Denis Arh
59ec77e204 Refactor JWT implementation 2022-01-18 21:50:18 +01:00
Denis Arh
3ffa0ef8be Fixing codebase after JWT lib switch 2022-01-11 15:35:05 +01:00
Denis Arh
72999ca692 Replacing dgrijalva/jwt-go with lestrrat-go/jwx 2022-01-11 10:56:17 +01:00
Denis Arh
60020f8510 Upgrade go-chi&co 2022-01-11 10:53:49 +01:00
Peter Grlica
717cae5c0b Added support for SAML HTTP binding 2022-01-11 08:26:24 +01:00
Peter Grlica
c75e4486c7 Added SAML signed requests support 2022-01-03 09:17:39 +01:00
Tomaž Jerman
77121945b3 Fix i18n key lapsus in tests 2021-12-16 15:55:10 +01:00
Katrin Yordanova
f769b4ff09 Fix broken translations on password reset 2021-12-15 18:17:37 +02:00
Vivek Patel
a2091dbbf6 Add Corteza OIDC support 
This provides `well know` endpoint for corteza which defines a set of values that can be retrieved by a client in order to self-configure.

Added route for `public-keys` which can help a client to determine if the public key is changed since the last time and automatically update itself to use this new information.
 2021-12-06 13:55:29 +05:30
Denis Arh
f53c23311e Refactor role security, support it for ext. auth flow 2021-11-23 15:09:04 +01:00
Tomaž Jerman
420b5ee195 Implement support for base password constraints 2021-11-22 13:36:32 +01:00
Tomaž Jerman
14450dc45f Add support for setting oauth token TTL 2021-11-17 12:57:12 +01:00
Denis Arh
5aafe5319b Improve how JWT is generated from the CLI 2021-11-10 14:18:17 +01:00
Denis Arh
accc9ceb1f Fix auth asset exports 2021-11-05 07:46:04 +01:00
Denis Arh
84762e068b Fix padding on auth form 2021-10-27 15:56:42 +02:00
Denis Arh
1fa84826c3 Load user's roles after profile-update 2021-10-11 21:03:31 +02:00
Denis Arh
c67276c3d3 Fix JWT generator command 2021-10-07 16:48:20 +02:00
Denis Arh
a4b9518cde Fix password labe i18n key on login form 2021-10-07 14:19:53 +02:00
Matija Rešek
5fba7b5acd Change fonts of auth input autocomplte 2021-10-07 10:29:47 +02:00
Denis Arh
88ad86e39c Fix uneeded error handling after successful login 2021-10-06 16:14:35 +02:00
Matija Rešek
2af6b756e8 Fix auth font loading 2021-10-06 09:47:29 +02:00
Denis Arh
03beda0e5d Add more randomness to the generated JWTs 2021-10-04 21:20:24 +02:00
Denis Arh
65144c7b26 Prevent context-canceled errors from logging 2021-10-04 21:20:24 +02:00
Matija Rešek
bb117df707 Make footer scrollable 2021-10-04 12:24:44 +02:00
Denis Arh
e23ba61c9a Improve SAML IdP name handling 2021-10-02 08:32:45 +02:00
Denis Arh
1e5e956195 Cleanup SAML setup, cert loading, fix live-reload 2021-10-02 08:32:45 +02:00
Matija Rešek
715f45edf2 Remove version and qc link from footer 2021-10-01 16:34:22 +02:00
Matija Rešek
cb9c49fd7c Move auth screens footer to bottom 2021-10-01 14:43:33 +02:00