Commit Graph

  • 9823971b7d Make insecure-oidc-allow-unverified-email configuration usage consistent Daryl Finlay 2019-07-11 15:58:31 +0100
  • 776d063b98 Update changelog to include --insecure-oidc-allow-unverified-email Daryl Finlay 2019-07-11 15:23:24 +0100
  • 39b6a42d43 Mark option to skip verified email check as insecure Daryl Finlay 2019-07-11 15:18:36 +0100
  • 018a25be04 Create option to skip verified email check in OIDC provider Daryl Finlay 2019-05-20 12:32:10 +0100
  • ecd0f89c84
    Merge pull request #206 from nniikkoollaaii/feature/update_docs_nginx_auth_request Joel Speed 2019-07-10 09:38:21 +0100
  • 387a7267e1 update configuration.md auth_request section Seip, Nikolai 2019-07-10 10:26:31 +0200
  • 4eefc01600
    Merge pull request #195 from steakunderscore/banner-flag Joel Speed 2019-07-04 11:24:16 +0100
  • aa37564655
    Merge branch 'master' into banner-flag Henry Jenkins 2019-07-02 14:03:21 +0100
  • 85c5cef783
    Merge pull request #198 from steakunderscore/switch_to_golangci-lint Joel Speed 2019-07-01 16:37:26 +0100
  • ce7e384095 Remove TODO vetshadow as it's part of govet hjenkins 2019-07-01 16:27:19 +0100
  • b9cfa8f49f Add changelog entry Henry Jenkins 2019-06-19 15:35:32 +0100
  • 924eab6355 Adds banner flag Henry Jenkins 2019-06-19 15:24:25 +0100
  • 5bcb998e6b Update changelog Henry Jenkins 2019-06-23 20:55:42 +0100
  • d24aacdb5c Fix lint errors Henry Jenkins 2019-06-23 20:41:23 +0100
  • 411adf6f21 Switch linter to golangci-lint Henry Jenkins 2019-06-23 20:40:59 +0100
  • 317f09f41e
    Merge pull request #65 from lsst/jwt_bearer_passthrough Joel Speed 2019-06-21 15:40:34 +0100
  • 3881955605 Update unit tests for ValidateGroup Brian Van Klaveren 2019-06-20 16:57:20 -0700
  • bd651df3c2 Ensure groups in JWT Bearer tokens are also validated Fix a minor auth logging bug Brian Van Klaveren 2019-06-20 13:40:04 -0700
  • 89f38e76d5 Made setting of proxied headers deterministic based on configuration alone Adam Eijdenberg 2019-06-20 14:17:15 +1000
  • af5c1a69fb Update all Dockerfiles Brian Van Klaveren 2019-06-19 10:13:06 -0700
  • f1bf99f5f1 Install gometalinter in Dockerfile Brian Van Klaveren 2019-06-17 13:29:50 -0700
  • 058ffd1047 Update unit tests for username Brian Van Klaveren 2019-06-17 13:11:49 -0700
  • 5a50f6223f Do not infer username from email Brian Van Klaveren 2019-06-17 12:58:40 -0700
  • 100f126405 Make JwtIssuer struct private Brian Van Klaveren 2019-06-05 16:09:29 -0700
  • 2f6dcf3b5f Move refreshing code to block acquiring cookied session Brian Van Klaveren 2019-06-05 16:08:34 -0700
  • 48dbb391bc Move around CHANGELOG.md update Brian Van Klaveren 2019-05-20 15:24:59 -0700
  • 54d91c69cc Use logger instead of log Brian Van Klaveren 2019-05-01 10:19:00 -0700
  • 350c1cd127 Use JwtIssuer struct when parsing Brian Van Klaveren 2019-05-01 10:00:54 -0700
  • 58b06ce761 Fall back to using sub if email is none (as in PR #57) Brian Van Klaveren 2019-05-01 09:22:25 -0700
  • 79acef9036 Clarify skip-jwt-bearer-tokens default and add env tags Brian Van Klaveren 2019-05-01 09:18:54 -0700
  • 10f65e0381 Add a more realistic test for JWT passthrough Brian Van Klaveren 2019-04-30 14:06:11 -0700
  • 1ff74d322a Fix imports Brian Van Klaveren 2019-04-26 19:47:53 -0700
  • 69cb34a04e Add unit tests for JWT -> session translation Brian Van Klaveren 2019-04-26 19:16:45 -0700
  • 187960e9d8 Improve token pattern matching Unit tests for token discovery Brian Van Klaveren 2019-04-24 08:25:29 -0700
  • 8413c30c26 Update changelog with info about -skip-jwt-bearer-tokens Brian Van Klaveren 2019-02-14 15:00:49 -0800
  • b895f49c52 Use idToken expiry because that's the time checked for refresh RefreshSessionIfNeeded checks the token expiry, we want to use the ID token's expiry Brian Van Klaveren 2019-02-12 10:32:26 -0800
  • 8083501da6 Support JWT Bearer Token and Pass through Brian Van Klaveren 2019-01-17 12:49:14 -0800
  • 3e839a609e removed usage of secondary email addresses until https://gitlab.com/gitlab-org/gitlab-ce/issues/56779 has been solved Ruben Wagner 2019-06-16 12:40:26 +0200
  • 822eee7c95
    Merge fcf0b02cc1 into 0af18d6d7c Benjamin Staffin 2019-06-15 18:37:52 +0000
  • fcf0b02cc1 Add note about #150, fix several URL typos in the changelog Benjamin Staffin 2019-06-15 14:37:20 -0400
  • faf49ee4e3 Fix redirects on /sign_in when -skip-provider-button is set Benjamin Staffin 2019-05-08 20:44:22 -0400
  • 9063e4f320 Merge branch 'github_master' into github_ouven_master Ruben Wagner 2019-06-15 17:31:44 +0200
  • 0af18d6d7c
    Merge pull request #141 from openai/googleGroupEmail Joel Speed 2019-06-15 14:05:56 +0200
  • 77e1fff753
    Merge pull request #185 from jonas/check-against-validate-url-string Joel Speed 2019-06-15 12:30:03 +0200
  • 0d6fa6216d
    Merge pull request #180 from govau/littletidyups Joel Speed 2019-06-15 12:21:54 +0200
  • 6366690927
    Fix gofmt for changed files Joel Speed 2019-06-15 11:33:29 +0200
  • 417fde190c
    Update changelog Joel Speed 2019-06-15 11:22:41 +0200
  • fb9616160e
    Move logger to pkg/logger Joel Speed 2019-05-24 17:08:48 +0100
  • d1ef14becc
    Move cookie to pkg/encryption Joel Speed 2019-05-24 17:06:48 +0100
  • d69560d020 No need for case when only 2 conditions Adam Eijdenberg 2019-06-15 18:48:27 +1000
  • 7a8fb58ad1
    Only validate tokens if ValidateURL resolves to a non-empty string Jonas Fonseca 2019-06-14 11:33:05 -0400
  • 1c449496e4
    Add support for Traefik Maxime Lagresle 2019-06-13 20:10:42 +0200
  • d76451ff99 HotFix v3.2.0 add azure option azure-domain-hint Thomas Boutry 2019-06-10 15:32:52 -0400
  • 765443bc41
    Ensure flag values are set correctly config-improvements Joel Speed 2019-06-09 10:16:44 +0200
  • 8e92e3dc3d
    Test overriding values with environment variables Joel Speed 2019-06-08 23:12:56 +0200
  • 6f9db420d5
    Test a config YAML can be loaded Joel Speed 2019-06-08 22:52:59 +0200
  • cf3eac0242
    Init Viper for config with defaulting Joel Speed 2019-06-08 22:20:18 +0200
  • 180765e8a6
    Move logger to pkg/logger Joel Speed 2019-05-24 17:08:48 +0100
  • c9fbf5d3c9
    Move cookie to pkg/encryption Joel Speed 2019-05-24 17:06:48 +0100
  • 8027cc454e
    Move api to pkg/requests Joel Speed 2019-05-24 16:55:12 +0100
  • f35c82bb0f The AuthOnly path also needs the response headers set Adam Eijdenberg 2019-06-07 14:25:12 +1000
  • 9e59b4f62e Restructure so that serving data from upstream is only done when explicity allowed, rather than as implicit dangling else Adam Eijdenberg 2019-06-07 13:50:44 +1000
  • 572646e0d5
    Merge pull request #175 from govau/bumpoidc Joel Speed 2019-06-06 17:54:25 +0100
  • 78feaec6fa
    Merge branch 'master' into bumpoidc Joel Speed 2019-06-06 17:38:19 +0100
  • 55a853cf51
    Merge pull request #155 from lsst/redis-session-store Joel Speed 2019-06-05 11:39:47 +0100
  • 405f9b3bb0 Update CHANGELOG with descriptions about redis support Add updates from master Brian Van Klaveren 2019-06-05 00:02:49 -0700
  • 4721da02f2 Ensure SessionStores can handle recieving cookies for the wrong implementation Joel Speed 2019-05-30 11:55:42 +0100
  • c1ae0ca807 Make sure the cookie exists before we clear the session in redis Joel Speed 2019-05-30 10:53:53 +0100
  • 22199fa417 Fix ticket retrieval with an invalid ticket Joel Speed 2019-05-30 10:10:28 +0100
  • 3155ada287 Ensure sessions are refreshable in redis session store Joel Speed 2019-05-29 15:25:56 +0100
  • 2e2327af6c Check SaveSession works when an existing session is present Joel Speed 2019-05-29 11:59:58 +0100
  • ae0258a203 Documentation updates around Redis and Redis Sentinel use Brian Van Klaveren 2019-05-28 13:26:40 -0700
  • 518c1d3e8e Add Redis sentinel compatibility Joel Speed 2019-05-24 17:32:55 +0100
  • fc06e2dbef Update documentation and changelog for redis store Brian Van Klaveren 2019-05-20 14:46:38 -0700
  • 5095c3647d Add redis-connection-url flag Joel Speed 2019-05-17 13:16:43 +0100
  • 4f5dbace9f Refactor persistent tests with more Context Joel Speed 2019-05-16 17:38:42 +0100
  • 7e7bfb5daf Stop miniredis after each test Joel Speed 2019-05-16 17:32:54 +0100
  • bc3d75a2ed Run persistent tests with multiple option groups Joel Speed 2019-05-16 17:29:53 +0100
  • 42f14a41d9 Clean up persistent SessionStore tests Joel Speed 2019-05-16 17:25:41 +0100
  • a7693cc72a Tranfser all cookies in tests Joel Speed 2019-05-16 17:13:14 +0100
  • 93df7d9132 Remove spurious comment Joel Speed 2019-05-16 17:08:59 +0100
  • a6b8f7bde2 Rename expire -> expiration Joel Speed 2019-05-16 17:08:10 +0100
  • 2f61e42c37 More obvious comment on CFB Joel Speed 2019-05-16 17:07:43 +0100
  • f435fa68ab Make loadSessionFromString private Joel Speed 2019-05-16 17:06:13 +0100
  • 130d03758d Fix comments on Redis options Joel Speed 2019-05-16 17:03:38 +0100
  • 7a1fc52e33 Fix go-redis version pin Joel Speed 2019-05-15 17:24:06 +0100
  • b255ed56ef Sign cookies in the Redis Session store Joel Speed 2019-05-15 17:20:32 +0100
  • 2c566a5f5b Use session CreatedAt for cookie timings Joel Speed 2019-05-15 17:08:15 +0100
  • 296d989e58 Simplify redis store options Joel Speed 2019-05-15 17:06:05 +0100
  • f2562e8973 Pin version of go-redis Brian Van Klaveren 2019-05-13 11:54:22 -0700
  • 42731f0617 Check cookie error and doc on cookie handling Brian Van Klaveren 2019-05-13 11:54:06 -0700
  • b1bd3280db Add support for a redis session store Brian Van Klaveren 2019-05-09 16:09:22 -0700
  • e881612ea6 Fix session_state type Brian Van Klaveren 2019-05-08 12:35:15 -0700
  • b6c60f52ee Bump go-oidc Adam Eijdenberg 2019-06-03 14:54:54 +1000
  • 1355c1ce30
    Merge pull request #170 from zeha/release-tarballs-as-before Joel Speed 2019-06-03 16:23:30 +0100
  • df6b6b7ce0
    Merge pull request #176 from govau/fixnogopath Joel Speed 2019-06-03 16:21:39 +0100
  • 40cf6b2626
    Merge pull request #168 from pusher/drop-1.11 Joel Speed 2019-06-03 15:22:35 +0100
  • 006322562d
    Bump go version in configure to check for go 1.12 Joel Speed 2019-06-03 14:58:39 +0100
  • f0b6f1525b
    Update changelog Joel Speed 2019-05-30 14:58:22 +0100
  • 29fb71fac5
    Drop Go 1.11 from Travis CI Joel Speed 2019-05-30 14:56:22 +0100