Joel Speed
30ea963bb6
Merge pull request #1656 from taxibeat/oidc-prompt-type
...
Make prompt configurable for oidc offline_access
2020-02-28 10:56:13 +00:00
Nándor István Krácser
b7cf701032
Merge pull request #1515 from flant/atlassian-crowd-connector
...
new connector for Atlassian Crowd
2020-02-24 10:09:27 +01:00
Chris Loukas
d33a76fa19
Make prompt configurable for oidc offline_access
2020-02-19 16:10:28 +02:00
Hidetake Iwata
2ec5e5463f
Update kubelogin-activedirectory.md for credential plugin
2020-02-12 21:47:41 +09:00
Ivan Mikheykin
7ef1179e75
feat: connector for Atlassian Crowd
2020-02-05 12:40:49 +04:00
Vitaliy Dmitriev
f2e7823db9
connector/ldap: add multiple user to group mapping
...
Add an ability to fetch user's membership from
groups of a different type by specifying multiple
group attribute to user attribute value matchers
in the Dex config:
userMatchers:
- userAttr: uid
groupAttr: memberUid
- userAttr: DN
groupAttr: member
In other words the user's groups can be fetched now from
ldap structure similar to the following:
dn: cn=john,ou=People,dc=example,dc=org
objectClass: person
objectClass: inetOrgPerson
sn: doe
cn: john
uid: johndoe
mail: johndoe@example.com
userpassword: bar
dn: cn=qa,ou=Groups,ou=Portland,dc=example,dc=org
objectClass: groupOfNames
cn: qa
member: cn=john,ou=People,dc=example,dc=org
dn: cn=logger,ou=UnixGroups,ou=Portland,dc=example,dc=org
objectClass: posixGroup
gidNumber: 1000
cn: logger
memberUid: johndoe
Signed-off-by: Vitaliy Dmitriev <vi7alya@gmail.com>
2020-01-03 10:40:21 +01:00
Andrew Block
296659cb50
Reduced OpenShift scopes and enhanced documentation
2019-12-26 03:14:20 -06:00
Andrew Block
5afa02644a
Added OpenShift documentation to README
2019-12-25 11:52:42 -05:00
Andrew Block
92e63771ac
Added OpenShift connector
2019-12-22 02:27:09 -05:00
Nandor Kracser
a38e215891
connector/google: support group whitelisting
...
Signed-off-by: Nandor Kracser <bonifaido@gmail.com>
2019-12-03 16:27:07 +01:00
Nándor István Krácser
c41035732f
Merge pull request #1434 from jacksontj/groups
...
Add option to enable groups for oidc connectors
2019-11-27 14:00:36 +01:00
Joel Speed
9d9a1017e4
Add documentation for google connector
2019-11-19 17:12:41 +00:00
Nándor István Krácser
b7184be3dd
Merge pull request #1569 from bhageena/master
...
Fix spelling errors in docs
2019-11-05 10:34:40 +01:00
Nándor István Krácser
6d41541964
Merge pull request #1544 from kenperkins/saml-groups
...
Adding support for allowed groups in SAML Connector
2019-10-30 13:28:34 +01:00
Tony Hsu
6e35f24399
Fix typo
2019-10-22 11:27:12 +08:00
Chandan Rai
efdb5de6d8
Fix spelling errors in docs
2019-10-14 18:52:40 +05:30
Thomas Jackson
21ab30d207
Add option to enable groups for oidc connectors
...
There's been some discussion in #1065 regarding what to do about
refreshing groups. As it stands today dex doesn't update any of the
claims on refresh (groups would just be another one). The main concern
with enabling it is that group claims may change more frequently. While
we continue to wait on the upstream refresh flows, this adds an option
to enable the group claim. This is disabled by default (so no behavioral
change) but enables those that are willing to have the delay in group
claim change to use oidc IDPs.
Workaround to #1065
2019-09-13 15:50:33 -07:00
Ken Perkins
285c1f162e
connector/saml: Adding group filtering
...
- 4 new tests
- Doc changes to use the group filtering
2019-09-10 10:53:19 -07:00
Nandor Kracser
ff34e570b4
connector/gitlab: implement useLoginAsID as in GitHub connector
2019-07-28 19:49:49 +02:00
Maxime Desrosiers
458585008b
microsoft: option for group UUIDs instead of name and group whitelist
2019-07-25 09:14:33 -04:00
flarno11
8c1716d356
make userName configurable
2019-06-03 14:09:07 +02:00
cappyzawa
9650836851
make userID configurable
2019-05-24 19:52:33 +09:00
Thomas Jackson
52d09a2dfa
Add option in oidc to hit the optional userinfo endpoint
...
Some oauth providers return "thin tokens" which won't include all of the
claims requested. This simply adds an option which will make the oidc
connector use the userinfo endpoint to fetch all the claims.
2019-05-23 09:20:48 -07:00
Eric Chiang
0babb2df18
Merge pull request #1435 from bonifaido/bitbucket-docs
...
docs: update bitbucket permission requirements
2019-05-12 10:33:01 -07:00
Nandor Kracser
a08a5811d4
gitlab: support for group whitelist
2019-04-25 12:50:29 +02:00
Nandor Kracser
b1931fc9bd
docs: update bitbucket permission requirements
2019-04-25 10:45:00 +02:00
Gerald Barker
fc723af0fe
Add option to OIDC connecter to override email_verified to true
2019-03-05 21:24:02 +00:00
Takashi Okamoto
ac290f77aa
Fix typo.
2019-02-23 16:34:10 +00:00
Stephan Renatus
7bd4071b4c
Merge pull request #1396 from jtnord/useLoginId-dexidp
...
Use github login as the id
2019-02-05 13:54:49 +01:00
James Nord
9840fccdbb
rename useLoginAsId -> useLoginAsID
2019-02-04 14:05:57 +00:00
James Nord
1911b52c6b
Add documentation for the new GitHub useLoginAsId option
2019-02-01 11:37:40 +00:00
Takashi Okamoto
337bbe5f09
fix typos.
2019-01-26 10:44:50 +00:00
Takashi Okamoto
1b7b3515d7
Add Active Directory instruction.
2019-01-26 04:26:01 +00:00
Takashi Okamoto
fbdb55aba9
Add doc for kubelogin and Active Directory ingtegration sample.
2019-01-26 04:16:55 +00:00
Stephan Renatus
007e4dae3c
Merge pull request #1358 from OwenTuz/issue-1132-initial-kubernetes-documentation-improvements
...
Kubernetes docs: clarify steps around use/creation of TLS assets.
2018-11-26 13:54:44 +01:00
Owen Tuz
9ea2ade208
LDAP docs - remove extra wording re DN
2018-11-26 11:50:44 +00:00
Owen Tuz
e603a5e631
LDAP connector - Document that 'DN' must be in capitals
2018-11-26 10:02:41 +00:00
Owen Tuz
72c9cf43a9
Fix comment in LDAP query documentation
2018-11-23 11:00:18 +00:00
Josh Winters
bb11a1ebee
github: add 'both' team name field option
...
this will result in both the team name *and* the team slug being
returned for each team, allowing a bit more flexibility in auth
validation.
Signed-off-by: Topher Bullock <tbullock@pivotal.io>
Signed-off-by: Alex Suraci <suraci.alex@gmail.com>
2018-11-20 10:12:44 -05:00
Stephan Renatus
7c8a22443a
Merge pull request #1349 from alexmt/1102-config-to-load-all-groups
...
Add config to explicitly enable loading all github groups
Follow-up for #1102 .
2018-11-20 15:15:25 +01:00
gypsydiver
f21e6a0f00
gypsydiver/1347-pr-gitlab-groups
2018-11-20 11:18:50 +01:00
Alexander Matyushentsev
7bd084bc07
Issue #1102 - Add config to explicitly enable loading all github groups
2018-11-19 10:14:38 -08:00
Alexander Matyushentsev
e5ebcf518a
Update github connector documentation
2018-11-15 09:24:21 -08:00
Danny Sauer
b9b21260bc
Add mention of scopes
parameter in OIDC doc
2018-10-17 10:48:39 -05:00
Ed Tan
6ffc8fcd8d
Rename bitbucket to bitbucketcloud
2018-10-06 11:45:56 -04:00
Ed Tan
d26e23c16f
Make suggested code changes
2018-10-05 10:43:49 -04:00
Ed Tan
8c75d85b60
Add Bitbucket connector
2018-09-30 15:08:07 -04:00
Taras Burko
bf39130bab
Configurable team name field for GitHub connector
2018-09-14 01:09:48 +03:00
Stephan Renatus
b9f6594bf0
*: github.com/coreos/dex -> github.com/dexidp/dex
...
Signed-off-by: Stephan Renatus <srenatus@chef.io>
2018-09-05 17:57:08 +02:00
Eric Chiang
4dc3347106
Merge pull request #1279 from AnianZ/master
...
fix default baseURL for GitLab connector
2018-09-04 08:09:37 -07:00