Arsharth/dex
1
0
Fork 0
forked from mystiq/dex
Code Issues Pull requests Packages Projects Releases Wiki Activity
579 commits 27 branches 73 tags 23 MiB
Commit graph

579 commits

This branch
This branch
All branches
Author SHA1 Message Date
Derek McQuay 9b052f37c9
clearified redirect-uri and make cmd location 2017-03-09 22:36:37 -08:00
Derek McQuay a6ab82d6c0
update kubernetes example-app explanation 
Clarify some potentially confusing issues with how to run and build the
example-app binary.
 2017-03-09 17:17:07 -08:00
Eric Chiang 90e9225e05 Merge pull request #842 from ericchiang/go-1-8 
*: only use docker when releasing, update to Go 1.8, remove aci scripts
 2017-03-09 11:04:18 -08:00
Eric Chiang ee27a4f9f4 *: only use docker when releasing, update to Go 1.8, remove aci scripts 
This change modifies our release process to only require Docker
when building a release and updates our released binary to use Go
1.8. It also removes our .aci scripts, which we've not been
regularly building.

A nice consequence is that OSX users can now build a release image.
 2017-03-09 10:46:09 -08:00
Eric Chiang 95d54956e9 Merge pull request #840 from ericchiang/oidc-bump 
*: update go-oidc and use standard library's context package
 2017-03-08 11:46:40 -08:00
Eric Chiang e5f60fe9dd vendor: revendor 2017-03-08 10:33:36 -08:00
Eric Chiang 777eeafabc *: update go-oidc and use standard library's context package 2017-03-08 10:33:19 -08:00
rithu leena john 6dd415997a Merge pull request #835 from rithujohn191/fix-client-example 
examples/grpc-client: minor corrections in the dex client example.
 2017-03-07 13:35:44 -08:00
rithu john 08db0eb5ce examples/grpc-client: minor corrections in the dex client example. 2017-03-03 15:58:30 -08:00
Eric Chiang afe2e47e3d Merge pull request #834 from pgburt/paulb-prod-users-integrations 
Added produciton-users and integrations pages
 2017-03-03 11:57:14 -08:00
Paul Burt a660e7cd7a Added produciton-users and integrations pages 2017-03-03 13:49:22 -05:00
Eric Chiang 3e5480a859 Merge pull request #829 from ericchiang/fix-keys-expiry 
server: fix expiry detection for verification keys
 2017-03-01 12:46:23 -08:00
Eric Chiang 920f6fb5cd Merge pull request #825 from ericchiang/http2 
storage/kubernetes: enable HTTP/2 support
 2017-03-01 12:46:07 -08:00
Eric Chiang 2c4752d5d4 server: fix expiry detection for verification keys 2017-03-01 12:43:45 -08:00
rithu leena john 3797a71ec9 Merge pull request #812 from rithujohn191/example-client 
examples: adding a gRPC client example.
 2017-02-28 13:34:23 -08:00
Eric Chiang 38c77e0f33 storage/kubernetes: enable HTTP/2 support 2017-02-28 12:42:06 -08:00
rithu john fa2f76bcdb examples: adding a gRPC client example. 2017-02-28 12:06:44 -08:00
rithu leena john bb896a8222 Merge pull request #823 from ericchiang/tpr-already-exists 
storage/kubernetes: fix conflict error detection in TRP creation
 2017-02-27 11:21:43 -08:00
Eric Chiang a7b8e52b92 storage/kubernetes: fix conflict error detection in TRP creation 
PR #815 fixed the Kubernetes storage implementation by correctly
returning storage.ErrAlreadyExists on POST conflicts. This caused a
regression in TPR creation (#822) when some, but not all, of the
resources already existed. E.g. for users upgrading from old
versions of dex.

Fixes #822
 2017-02-27 11:01:47 -08:00
rithu leena john 8e562dac2d Merge pull request #819 from SEJeff/patch-1 
[storage.md] Fix the ThirdPartyResource syntax
 2017-02-24 13:55:19 -08:00
Jeff Schroeder 58d80547ef [storage.md] Fix the ThirdPartyResource syntax 
This makes manually creating the `o-auth2-client.oidc.coreos.com` actually work.
 2017-02-24 15:35:29 -06:00
Eric Chiang cd93930934 Merge pull request #817 from ericchiang/fix-hash-bug 
storage/kubernetes: fix hash initialization bug
 2017-02-24 12:58:22 -08:00
Eric Chiang 1da2ae279c storage/kubernetes: fix hash initialization bug 2017-02-24 12:55:04 -08:00
Eric Chiang 25b902b0c2 Merge pull request #815 from ericchiang/fix-k8s-storage 
storage/kubernetes: fix kubernetes storage conformance test failures
 2017-02-23 19:31:45 -08:00
Eric Chiang 4be029c6c1 storage/kubernetes: fix kubernetes storage conformance test failures 2017-02-23 19:23:19 -08:00
Eric Chiang 58eb25aa60 Merge pull request #813 from SEJeff/patch-1 
[Makefile] Allow specifying VERSION as an env var
 2017-02-23 10:44:25 -08:00
Jeff Schroeder 4630f69f17 [Makefile] Allow specifying VERSION as an env var 
This makes specifying the VERSION when building native operating system packages require less hacks.

Refs: #811
 2017-02-23 12:23:33 -06:00
Eric Chiang af0d9cebd1 Merge pull request #810 from caarlos0/patch-1 
simplified clone: using go get
 2017-02-22 08:38:13 -08:00
Carlos Alexandro Becker f57e19e6ab simplified clone: using go get 2017-02-22 09:33:01 -03:00
rithu leena john c76832eaea Merge pull request #809 from rithujohn191/set-error-flag 
storage: Surface "already exists" errors.
 2017-02-21 16:09:48 -08:00
rithu john 3df1db1864 storage: Surface "already exists" errors. 2017-02-21 15:00:22 -08:00
rithu leena john 90c80e700a Merge pull request #807 from rithujohn191/fix-typo 
web/static/main.css: fix typo.
 2017-02-21 13:30:07 -08:00
rithu john 0ee40865a2 web/static/main.css: fix typo. 2017-02-20 08:48:36 -08:00
rithu leena john 7e9dc836eb Merge pull request #802 from rithujohn191/token-revocation 
api: adding a gRPC call for revoking refresh tokens.
 2017-02-15 08:43:58 -08:00
rithu john 1ec19d4fbf api: adding a gRPC call for revoking refresh tokens. 2017-02-15 07:48:20 -08:00
rithu leena john b119ffddcb Merge pull request #801 from rithujohn191/token-revocation 
api: adding a gRPC call for listing refresh tokens.
 2017-02-13 18:36:56 -08:00
rithu john d201e49248 api: adding a gRPC call for listing refresh tokens. 2017-02-13 16:12:16 -08:00
rithu leena john 53e383670a Merge pull request #793 from rithujohn191/token-revocation 
storage: Add OfflineSession object to backend storage.
 2017-02-09 19:46:00 -08:00
rithu john d928ac0677 storage: Add OfflineSession object to backend storage. 2017-02-09 19:01:28 -08:00
rithu leena john 49f446c1a7 Merge pull request #800 from ericchiang/server-test-comments 
server: clean up test comments and code flow
 2017-02-07 10:37:32 -08:00
Eric Chiang 80038847de server: clean up test comments and code flow 2017-02-07 10:31:51 -08:00
Eric Chiang dd415f5e2f Merge pull request #799 from ericchiang/thirdpartyresources 
Documentation: warn admins not to edit dex ThirdPartyResources manually
 2017-02-06 15:04:40 -08:00
rithu leena john 167d7be281 Merge pull request #790 from givia/github-teams-pagination 
Fixes #706
 2017-02-06 11:13:03 -08:00
Eric Chiang adf3703962 Documentation: warn admins not to edit dex ThirdPartyResources manually 2017-02-06 10:35:27 -08:00
Eric Chiang 7f860e09b5 Merge pull request #796 from ericchiang/html-template 
{web,server}: use html/template and reduce use of auth request ID
 2017-02-02 17:33:06 -08:00
Eric Chiang 72a431dd4b {web,server}: use html/template and reduce use of auth request ID 
Switch from using "text/template" to "html/template", which provides
basic XSS preventions. We haven't identified any particular place
where unsanitized user data is rendered to the frontend. This is
just a preventative step.

At the same time, make more templates take pure URL instead of
forming an URL themselves using an "authReqID" argument. This will
help us stop using the auth req ID in certain places, preventing
garbage collection from killing login flows that wait too long at
the login screen.

Also increase the login session window (time between initial
redirect and the user logging in) from 30 minutes to 24 hours,
and display a more helpful error message when the session expires.

How to test:

1. Spin up dex and example with examples/config-dev.yaml.
2. Login through both the password prompt and the direct redirect.
3. Edit examples/config-dev.yaml removing the "connectors" section.
4. Ensure you can still login with a password.

(email/password is "admin@example.com" and "password")
 2017-02-02 11:11:00 -08:00
rithu leena john 12f969364e Merge pull request #794 from rithujohn191/saml-doc 
Documentation: Minor changes to SAML connector doc.
 2017-02-02 09:49:00 -08:00
rithu john fecd596ae2 Documentation: Minor changes to SAML connector doc. 2017-02-01 11:28:46 -08:00
rithu leena john 42d0728048 Merge pull request #785 from holgerkoser/master 
Improve SAML Signature and Response Validation
 2017-02-01 11:14:13 -08:00
rithu leena john 27224cdc98 Merge pull request #788 from givia/gitlab-connector 
connector: add GitLab connecor
 2017-02-01 09:39:37 -08:00