Commit Graph

1274 Commits

Author SHA1 Message Date
justin-slowik
9882ea453f better support for /device/callback redirect uris with public clients.
Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:25:06 -04:00
justin-slowik
f6d8427f32 Added device flow static client to config-dev.yaml
Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:25:05 -04:00
Justin Slowik
9c699b1028 Server integration test for Device Flow (#3)
Extracted test cases from OAuth2Code flow tests to reuse in device flow

deviceHandler unit tests to test specific device endpoints

Include client secret as an optional parameter for standards compliance

Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:25:05 -04:00
Justin Slowik
9bbdc721d5 Device flow token code exchange (#2)
* Added /device/token handler with associated business logic and storage tests.

Perform user code exchange, flag the device code as complete.

Moved device handler code into its own file for cleanliness.  Cleanup

* Removed PKCE code

* Rate limiting for /device/token endpoint based on ietf standards

* Configurable Device expiry

Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:25:05 -04:00
Justin Slowik
0d1a0e4129 Device token api endpoint (#1)
* Added /device/token handler with associated business logic and storage tests.

* Use crypto rand for user code

Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:25:05 -04:00
Justin Slowik
6d343e059b Generates/Stores the device request and returns the device and user codes.
Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:25:05 -04:00
Mark Sagi-Kazar
11fc8568cb Remove vendor folder
Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:25:05 -04:00
Mark Sagi-Kazar
bad2a06960 Revendor dependencies
Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:24:38 -04:00
krishnadurai
6698f1f80a Corrects imports after merge
Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:24:25 -04:00
krishnadurai
776aa9dd53 Option to add staticPasswords from environment variables
Signed-off-by: justin-slowik <justin.slowik@thermofisher.com>
2020-07-08 16:24:25 -04:00
Nándor István Krácser
62efe7bf07
Merge pull request #1441 from jimmythedog/1440-fix-msoft-refresh-token
dexidp#1440 Add offline_access scope, if required
2020-07-08 16:13:26 +02:00
Márk Sági-Kazár
1d892c6cac
Merge pull request #1750 from dexidp/api-v2-v2
API v2 v2
2020-07-03 23:03:32 +02:00
Márk Sági-Kazár
0be5232edd
Merge pull request #1748 from dexidp/go114
Build with Go 1.14
2020-07-01 14:41:49 +02:00
Márk Sági-Kazár
04c137e594
Merge pull request #1749 from dexidp/pkg-dev-badge
Replace godoc badge with pkg.go.dev badge
2020-07-01 14:41:15 +02:00
Mark Sagi-Kazar
1b2ab6fa35
Update api documentation 2020-07-01 14:33:22 +02:00
Mark Sagi-Kazar
e84682d7b9
Add v2 api module 2020-07-01 14:20:57 +02:00
Mark Sagi-Kazar
7bbda55225
Replace godoc badge with pkg.go.dev badge 2020-07-01 14:08:17 +02:00
Mark Sagi-Kazar
dc3dcdd5c5
Build with Go 1.14 2020-07-01 14:02:01 +02:00
Márk Sági-Kazár
5160c659c8
Merge pull request #1747 from dexidp/docker-build
Add docker build and push to docker hub
2020-07-01 13:55:53 +02:00
Mark Sagi-Kazar
0b067af8e7
Add docker build and push to docker hub 2020-07-01 13:03:41 +02:00
Márk Sági-Kazár
eef8c0a60d
Merge pull request #1745 from dexidp/remove-vendor
Remove vendor
2020-06-30 21:50:39 +02:00
Mark Sagi-Kazar
8b089dc441
Remove remaining references to vendor 2020-06-30 18:55:50 +02:00
Mark Sagi-Kazar
83d5f77495
Remove revendor from Makefile 2020-06-30 18:52:00 +02:00
Mark Sagi-Kazar
d1b4443740
Add vendor to gitignore 2020-06-30 18:51:50 +02:00
Mark Sagi-Kazar
f29b54d11c
Remove vendor folder 2020-06-30 18:51:19 +02:00
Márk Sági-Kazár
df34848caa
Merge pull request #1741 from dexidp/separate-api-package
Add separate module for the api package
2020-06-30 18:49:43 +02:00
Mark Sagi-Kazar
4792f0c59f
Revendor dependencies 2020-06-30 17:36:41 +02:00
Nándor István Krácser
371df97cbf
Merge pull request #1743 from dexidp/docker-compose
add docker-compose.yaml for local testing
2020-06-30 14:12:49 +02:00
Márk Sági-Kazár
415a4ea4f7
Merge pull request #1742 from dexidp/remove-copypasta
Remove copypasta dependency
2020-06-30 13:51:03 +02:00
Nandor Kracser
5b7a664e9d
add docker-compose for local testing 2020-06-30 13:46:05 +02:00
Mark Sagi-Kazar
af9dfd4a29
Remove copypasta dependency 2020-06-30 13:12:36 +02:00
Mark Sagi-Kazar
dad8d6d687
Add separate module for the api package 2020-06-30 13:11:06 +02:00
Stephen Augustus
e1a45ba33e
Merge pull request #1738 from justaugustus/augustus
MAINTAINERS: Add Stephen Augustus (@justaugustus)
2020-06-25 15:25:11 -04:00
Stephen Augustus
e151af1b44 MAINTAINERS: Add Stephen Augustus (justaugustus)
Signed-off-by: Stephen Augustus <saugustus@vmware.com>
2020-06-25 13:59:17 -04:00
Stephen Augustus
de871b3f8a MAINTAINERS: Alpha-sort maintainers
Signed-off-by: Stephen Augustus <saugustus@vmware.com>
2020-06-25 13:16:41 -04:00
Joel Speed
9d7e472c63
Merge pull request #1720 from candlerb/fix-google
Allow the "google" connector to work without a service account
2020-06-19 17:10:23 +01:00
Márk Sági-Kazár
2ca992e9b3
Merge pull request #1721 from candlerb/fix-token-comment
Fix comment for implicit flow
2020-05-31 21:54:31 +02:00
techknowlogick
0a9f56527e
Add Gitea connector (#1715)
* Add Gitea connector

* Add details to readme

* resolve lint issue
2020-05-26 13:54:40 +02:00
Brian Candler
442d3de11d Allow the "google" connector to work without a service account
Fixes #1718
2020-05-22 09:24:26 +00:00
Brian Candler
d2c9305e0f Fix comment for implicit flow 2020-05-21 12:00:53 +01:00
Márk Sági-Kazár
709d4169d6
Merge pull request #1694 from flant/fix-openshift-root-ca
Fix OpenShift connector rootCA option
2020-05-12 13:55:45 +02:00
Márk Sági-Kazár
ba723caa0a
Merge pull request #1704 from srenatus/sr/saml/filter-allowed-groups
connector/saml: add 'FilterGroups' setting
2020-05-12 13:40:29 +02:00
Márk Sági-Kazár
c0dfeb7068
Merge pull request #1692 from flant/oidc-icon
Add icon for OIDC provider
2020-05-12 13:39:53 +02:00
m.nabokikh
47b0d33142 Add icon for OIDC provider
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
2020-05-12 15:33:15 +04:00
m.nabokikh
521aa0802f Fix OpenShift connector rootCA option
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
2020-05-12 15:31:27 +04:00
Stephan Renatus
4a0feaf589 connector/saml: add 'FilterGroups' setting
This should make AllowedGroups equivalent to an LDAP group filter:

When set to true, only the groups from AllowedGroups will be included in the
user's identity.

Signed-off-by: Stephan Renatus <srenatus@chef.io>
2020-05-12 13:29:05 +02:00
poh chiat
d87cf1c924
create github oauthconfig with redirecturl (#1700) 2020-05-12 13:23:00 +02:00
Márk Sági-Kazár
336e284a46
Merge pull request #1701 from tkleczek/static_client_secret_fix
allow no secret for static public clients
2020-05-12 13:07:46 +02:00
Tomasz Kleczek
c830d49884 allow no secret for static public clients
For statically-configured public clients it should be allowed for both
Secret and SecretEnv fields to be empty.
2020-05-05 17:09:09 +02:00
Martijn
0a85a97ba9
Allow preferred_username claim to be set for Crowd connector (#1684)
* Add atlassiancrowd connector to list in readme

* Add TestIdentityFromCrowdUser

* Set preferred_username claim when configured

* Add preferredUsernameField option to docs

* Log warning when mapping invalid crowd field
2020-04-23 20:14:15 +02:00