Commit graph

2151 commits

Author SHA1 Message Date
Eric Chiang
a7db295714 Merge pull request #698 from Calpicow/groupsearch_by_dn
Allow getAttr to return DN
2016-11-18 13:55:18 -08:00
Phu Kieu
d4aba443ac Allow getAttr to return DN
Specify "DN" as attribute name to return, but will only work if not present in ldap.Entry.Attributes
Use when full DN is stored in groupSearch's userAttr
2016-11-18 13:51:47 -08:00
Eric Chiang
5c602d36d9 server: fix expiry test flake
Ensure compared times are within a second of one another instead of
rounding, which can flake if the two times are different enough to
do round to different values.

Tested using the golang.org/x/tools/cmd/stress tool.

The following set of commands fail without this patch:

    $ go get golang.org/x/tools/cmd/stress
    $ go test -o server.test github.com/coreos/dex/server
    $ stress ./server.test -test.run=TestOAuth2CodeFlow
    219 runs so far, 0 failures
    425 runs so far, 0 failures
    618 runs so far, 0 failures
    802 runs so far, 0 failures
    ^C

Closes #699
2016-11-18 13:47:16 -08:00
Eric Chiang
f45a1a9375 Merge pull request #697 from Calpicow/enable_groups
Enable groups scope
2016-11-18 13:32:01 -08:00
Phu Kieu
35180a72f1 Enable groups scope 2016-11-18 13:13:32 -08:00
rithu leena john
04360fa354 Merge pull request #695 from rithujohn191/add-list-password
api: add call to list passwords
2016-11-17 17:23:32 -08:00
rithu john
ee9738d663 api: adding a gRPC call for listing passwords. 2016-11-17 16:56:54 -08:00
Eric Chiang
e6b54250db Merge pull request #684 from ericchiang/examples-k8s-fixup
examples/k8s: update kubernetes examples
2016-11-17 15:28:00 -08:00
Eric Chiang
3ecfaf700e examples/k8s: update kubernetes examples 2016-11-17 14:10:55 -08:00
Eric Chiang
ff748a2f52 Merge pull request #694 from ericchiang/delete-todo
*: remove TODO.md file
2016-11-17 10:59:56 -08:00
Eric Chiang
2b20c4565f *: remove TODO.md file
This existed for when we were developing v2 but v1 was using the
issue tracker. We've since moved these goals to the issue tracker.
2016-11-17 10:53:11 -08:00
rithu john
19c22807a7 api: adding ListPasswords() method to the storage interface. 2016-11-16 17:25:38 -08:00
Eric Chiang
2e74b48492 Merge pull request #690 from rithujohn191/connector-docs
Documentation: LDAP connector documentation.
2016-11-16 16:11:44 -08:00
rithu john
8589650605 Documentation: LDAP connector documentation. 2016-11-16 15:29:17 -08:00
Eric Chiang
57178fd5f3 Merge pull request #685 from ericchiang/add-openssl-to-docker-container
Dockerfile: add OpenSSL to Docker container
2016-11-16 09:47:23 -08:00
Eric Chiang
13a1ebe053 Merge pull request #689 from cjyar/master
connector/ldap: Always set tls.Config.ServerName, to support LDAP ser…
2016-11-15 13:44:43 -08:00
Eric Chiang
91c88c8b12 Merge pull request #688 from SEJeff/patch-1
Fix a tyop in the storage documentation
2016-11-15 13:38:15 -08:00
Jeff Schroeder
da6cd9687d Documentation: fix a typo in the storage documentation 2016-11-15 15:14:11 -06:00
Chris Jones
384ac87deb connector/ldap: Always set tls.Config.ServerName, to support LDAP servers with public CA certs. 2016-11-15 14:06:39 -07:00
Eric Chiang
2ec3349f5d Merge pull request #686 from cjyar/master
Require the connector to have an ID.
2016-11-15 11:10:22 -08:00
Chris Jones
a2b78c28fc cmd/dex: validate that connectors have an ID. 2016-11-15 11:39:45 -07:00
Eric Chiang
ff119d1556 Dockerfile: add OpenSSL to Docker container
Add OpenSSL to the dex Docker container so wget can be used to query
HTTPS endpoint. This is a requirement for health checking when dex is
doing its own TLS termination.

This increased the image size from 20.37 MB to 20.92 MB (+550 KB).

Additionally add Ed and Rithu as maintainers.
2016-11-14 17:25:19 -08:00
Eric Chiang
e1f6679107 Merge pull request #683 from rithujohn191/add-version-endpoint
api: add gRPC definition for version endpoint.
2016-11-14 12:33:09 -08:00
rithu john
de4e23a27b api: add gRPC definition for version endpoint. 2016-11-14 11:37:48 -08:00
Eric Chiang
36ade89e54 Merge pull request #680 from jvanderhoof/patch-1
Small spelling fix.
2016-11-11 13:42:46 -08:00
Jason Vanderhoof
80770df520 Small spelling fix. 2016-11-11 14:24:17 -07:00
Eric Chiang
48449e718c Merge pull request #676 from srenatus/patch-1
README: fix links
2016-11-09 00:06:15 -08:00
Stephan Renatus
18d53e7a28 README: fix links 2016-11-09 09:03:14 +01:00
Eric Chiang
16d5e02cbb Merge pull request #675 from ericchiang/readme-tweeks
README: add link on v2 and section on getting help
2016-11-08 15:30:00 -08:00
Eric Chiang
447253c8de README: add link on v2 and section on getting help 2016-11-08 15:29:13 -08:00
Eric Chiang
674bec0468 Merge pull request #674 from ericchiang/readme-docs-v2
*: readme updates for v2
2016-11-08 15:20:51 -08:00
Eric Chiang
a52e324f68 *: readme updates for v2 2016-11-08 14:36:29 -08:00
Eric Chiang
2417fc9154 Documentation/logos: add logos 2016-11-08 11:51:47 -08:00
Eric Chiang
96fb0733fe Merge pull request #669 from ericchiang/config-env
cmd/dex: only expand from env for storages and connectors
2016-11-05 17:56:11 -07:00
Eric Chiang
5302fefdfb Merge pull request #671 from ericchiang/fix-server-time-bug
server: use seconds instead of nano seconds for expires_in and expiry
2016-11-05 07:56:06 -07:00
Eric Chiang
7f24ebb051 Merge pull request #664 from ericchiang/dev-docs-v2
Documentation: add doc describing v2 changes
2016-11-05 07:55:16 -07:00
Eric Chiang
12a5c0ada3 server: use seconds instead of nano seconds for expires_in and expiry 2016-11-04 17:00:10 -07:00
Eric Chiang
c9889683b4 Documentation: add doc describing v2 changes 2016-11-04 16:56:21 -07:00
Eric Chiang
d86a774a29 Merge pull request #670 from ericchiang/example-app-debug
cmd/example-app: add a --debug flag
2016-11-04 14:29:39 -07:00
Eric Chiang
015e7cf606 cmd/dex: only expand from env for storages and connectors
Bcrypt'd hashes have "$" characters in them. This means that #667
(accepting actually bcrypted values) combined with #627 (expanding
config with environment variables) broke the example config.

For now, allow storages and connectors to expand their configs from
the environment, but don't do this anywhere else.
2016-11-03 21:38:32 -07:00
Eric Chiang
35d6423ac2 cmd/example-app: add a --debug flag 2016-11-03 21:36:15 -07:00
Eric Chiang
ce703a7fe1 Merge pull request #665 from rithujohn191/expose-serv-opts
cmd/dex: expose IDTokensValidFor and RotateKeysAfter server options in config
2016-11-03 18:25:44 -07:00
rithu leena john
600e761266 cmd/dex: expose IDTokensValidFor and RotateKeysAfter server options in config. 2016-11-03 17:25:36 -07:00
Eric Chiang
d11224f2bb Merge pull request #668 from ericchiang/dev-ldap-conn
connector: accept base64 encoded CA and add convience open method
2016-11-03 16:39:22 -07:00
Eric Chiang
0f31566b27 connector: accept base64 encoded CA and add convience open method 2016-11-03 16:28:23 -07:00
Eric Chiang
53852d4e42 Merge pull request #667 from ericchiang/dev-switch-yaml-package
*: switch to github.com/ghodss/yaml for more consistent YAML parsing
2016-11-03 15:29:18 -07:00
Eric Chiang
59240f93b1 vendor: revendor 2016-11-03 15:24:47 -07:00
Eric Chiang
df50308713 glide.yaml: add new yaml package 2016-11-03 15:24:35 -07:00
Eric Chiang
ebe51e736d cmd/dex: accept raw bcrypt'd hash as well as base64'd version of hash 2016-11-03 15:23:56 -07:00
Eric Chiang
aa7f304bc1 *: switch to github.com/ghodss/yaml for more consistent YAML parsing
ghodss/yaml converts from YAML to JSON before attempting to unmarshal.
This allows us to:

* Get the correct behavor when decoding base64'd []byte slices.
* Use *json.RawMessage.
* Not have to support extravagant YAML features.
* Let our structs use `json:` tags
2016-11-03 14:39:32 -07:00