Commit graph

405 commits

Author SHA1 Message Date
Eric Chiang
03e2bf68d6 vendor: update go-oidc to fix parsing panic 2016-04-25 17:06:32 -07:00
Eric Chiang
40635754ea Merge pull request #422 from gmgreg/gmgreg-patch-2
K8S dex-overlord.yaml ordering fix
2016-04-20 14:57:57 -07:00
mgreg
af556fc2aa reordered dex-overlord.yaml 2016-04-20 14:39:18 -07:00
bobbyrullo
69ca9dba2e Merge pull request #411 from bobbyrullo/cross_client
Use Client defined in dex instead of go-oidc for storing clients
2016-04-20 14:38:18 -07:00
Bobby Rullo
9c403aba41 fix dexctl 2016-04-20 14:31:28 -07:00
Bobby Rullo
399b15abeb integration, *: Improve tests for admin api
* TestCreateClient was missing test coverage on error cases
* Fixed bug where 500s were being reported for bad requests
* changed function signature of NewAdminAPI back to old way of passing
  in lots of repos: passing in a DbMap made it difficult to test
* added swappable ID and Secret generators when creating Clients
2016-04-20 14:31:27 -07:00
Bobby Rullo
3442a5af1c functional: test Admin field serialization 2016-04-20 14:31:27 -07:00
Bobby Rullo
e7141336bc db: Client() should not return the secret
It's never used by downstream code, and besides, it's not really the
secret but a Hash of the secret.
2016-04-20 14:31:27 -07:00
Bobby Rullo
158bfa5ed7 client: Add tests for ClientsFromReader
Also require client ID and secret.
2016-04-20 14:31:27 -07:00
Bobby Rullo
e5948ab3ce *: ClientIdentityXXX -> ClientXXX
Get rid of all outdated "ClientIdentity" terminology.
2016-04-20 14:31:27 -07:00
Bobby Rullo
95757e8779 *: Client Repo now deals with custom Client object
This is instead of oidc.ClientIdentity. This makes it easier to add new
fields custom to dex to the client.
2016-04-20 14:31:27 -07:00
Eric Chiang
0a7ab7b47d Merge pull request #421 from gmgreg/gmgreg-patch-1
Update examples/README.md
2016-04-20 13:24:15 -07:00
gmgreg
2653f6b566 Update README.md
Fix command line for example-cli
2016-04-20 11:53:36 -07:00
Eric Chiang
c459aa1779 Merge pull request #420 from ericchiang/example_callback
examples/app: infer callback path from redirect URL
2016-04-19 16:54:13 -07:00
Eric Chiang
9d7cebce7c examples/app: infer callback path from redirect URL 2016-04-19 15:55:07 -07:00
Eric Chiang
c269a37189 Merge pull request #417 from ericchiang/rm_generator_import
schema: remove generator_import file used for godep
2016-04-19 13:33:04 -07:00
Eric Chiang
b8f74b06fb Merge pull request #414 from andrewstuart/feat/k8s-update
contrib/k8s: update to use 1.2 features
2016-04-19 10:07:35 -07:00
Eric Chiang
f6889d958e schema: remove generator_import file used for godep
generator_import.go existed to trick godep to vendoring a main
package. Since moving to glide, this file is no longer needed.
2016-04-19 09:39:49 -07:00
Andrew Stuart
64eeececde
contrib/k8s: update to use 1.2 features
- Consolidate files
- Update to Deployments
- Use Ingress, add ingress controller help in README
- Remove hardcoded namespace in postgres URI
- Remove hardcoded IP addresses
- Add readinessProbes
2016-04-18 21:14:02 -07:00
Bobby Rullo
35cefb7da9 schema: generate code 2016-04-15 17:23:27 -07:00
Bobby Rullo
1bbca1d43c schema: tweaks to make Client API more regular 2016-04-15 17:22:59 -07:00
Eric Chiang
c2c7f03f47 Merge pull request #409 from Tecsisa/408-test-handleToken
tests: add HandleTokenFunc test
2016-04-15 08:32:53 -07:00
Adrián López Gómez
d3d2db8e05 tests: add HandleTokenFunc test
Fixes #408
2016-04-15 09:17:02 +02:00
Eric Chiang
58d9ae90c0 Merge pull request #399 from ericchiang/glide
replace godep with glide
2016-04-13 15:32:33 -07:00
Eric Chiang
804d06c44e Merge pull request #402 from ericchiang/static_users
server: add more validation to --no-db static file parsing
2016-04-13 09:39:27 -07:00
Eric Chiang
69364ec221 Merge pull request #403 from ericchiang/db_errors
db: print better error messages for invalid input
2016-04-12 14:11:18 -07:00
Eric Chiang
5c5df23a57 db: print better error messages for invalid input
When client secrets are not base64 encoded, print an error message
that's not a generic base64 decode error:

   client secrets must be base64 decodable. See issue #337.
   Please consider replaceing "secret" with "c2VjcmV0"

When a user file is missing a mandatory field print an error message.

	Unable to build Server: user elroy-foo is missing email field

For #400
2016-04-11 16:31:50 -07:00
Eric Chiang
7858da565f server: add more validation to --no-db static file parsing
In #393 the format of the static user file in --no-db mode changed.
However, the old format loads without error, which has caused
issues for developers with existing user files.

Add an explicit check to ensure the file is not using the old
format. If they are, print a better error message.
2016-04-11 16:21:31 -07:00
Eric Chiang
e0f8e8a8ee vendor: revendor using glide 2016-04-08 11:56:29 -07:00
Eric Chiang
3b86cd524c *: move from godep to glide 2016-04-08 11:56:18 -07:00
Stephan Renatus
ed89be44ef bugfix: make getCreds work for non-admins (#396) 2016-04-08 10:14:01 -07:00
Eric Chiang
70cb0546ce *: don't go get vet (#397)
It's part of the standard tooling and no longer lives in
golang.org/x/tools.

See https://golang.org/cl/20810
2016-04-08 08:40:37 -07:00
Eric Chiang
cd7d3fff85 Merge pull request #386 from ericchiang/revoke_refresh_2
add ability to revoke refresh tokens in user API
2016-04-06 13:45:23 -07:00
Eric Chiang
e6177cf307 Merge pull request #393 from ericchiang/nodb_users
remove passwordInfos from local connector
2016-04-06 11:30:08 -07:00
Eric Chiang
553e7d0167 server: add refresh token revocation API to server 2016-04-06 11:29:51 -07:00
Eric Chiang
64380734e6 *: implement refresh revocation user API methods 2016-04-06 11:29:09 -07:00
Eric Chiang
aa00a4b094 schema/workerschema: regenerate worker schema 2016-04-06 11:27:41 -07:00
Eric Chiang
b7f663b520 schema/workerschema: add refresh token revocation endpoints to API 2016-04-06 11:27:06 -07:00
Eric Chiang
ab4cbe7219 schema: fix generator script to work with vendor directory 2016-04-06 11:26:29 -07:00
Eric Chiang
7416929455 *: add revocation methods to refresh repo 2016-04-06 11:25:50 -07:00
Eric Chiang
ac73d3cdf2 *: load password infos from users file in no-db mode not connectors
In --no-db mode, load passwords from the users file instead of the
connectors file. This allows us to remove the password infos field
from the local connector and stop loading them during connector
registration, a case that was causing panics when using a real
database (see #286).

Fixes #286
Closes #340
2016-04-06 11:15:05 -07:00
Eric Chiang
de8f345642 Merge pull request #392 from ericchiang/admin_client_registration_2
add client registration to the admin API
2016-04-05 13:39:46 -07:00
Eric Chiang
b10645f58d *: add client registration endpoint to admin API 2016-04-05 11:37:26 -07:00
Eric Chiang
0445da2dfe schema/adminschema: regenerate admin schema 2016-04-05 11:36:31 -07:00
Eric Chiang
1548180518 schema/adminschema: add enpoints for registering clients 2016-04-05 11:36:11 -07:00
Eric Chiang
6120f7ac05 *: add isAdmin option to client repo when creating a client 2016-04-05 11:29:58 -07:00
Eric Chiang
eb6dceadfd Merge pull request #368 from ericchiang/remove_non_existent_envvar
Documentation: remove reference to DEX_APP_REDIRECTURL
2016-03-17 10:35:54 -07:00
Eric Chiang
7c5e670631 Merge pull request #375 from Tecsisa/370-required-response-type-param
Fix response_type missing param
2016-03-17 10:35:37 -07:00
Rubén Soleto Buenvarón
821b242c83 Fix response_type missing param
This commit fix problem with response_type param, which is required according to OIDC spec, when it is missing.
 At now, when connector_id url query param is not set, connector view use response_type that client request instead of default "code".

Fixes #370
2016-03-17 08:00:49 +01:00
Eric Chiang
d660dbea8a Merge pull request #341 from ericchiang/rm_build_units
*: remove build-units script
2016-03-14 13:17:25 -07:00