Eric Chiang
a3235d022a
*: verify "state" field before passing request to callback connectors
...
Let the server handle the state token instead of the connector. As a
result it can throw out bad requests earlier. It can also use that
token to determine which connector was used to generate the request
allowing all connectors to share the same callback URL.
Callbacks now all look like:
https://dex.example.com/callback
Instead of:
https://dex.example.com/callback/ (connector id)
Even when multiple connectors are being used.
2016-10-27 10:23:09 -07:00
Eric Chiang
7084a801d7
*: port oob template
2016-10-19 12:45:17 -07:00
Eric Chiang
892fa3fe35
server: rename "rotationStrategy.period" to "rotationFrequency"
...
gorename command run:
gorename \
-from '"github.com/coreos/dex/server".rotationStrategy.period' \
-to rotationFrequency
2016-10-17 10:57:14 -07:00
Eric Chiang
d8033999d5
server: fix key rotation polling
2016-10-17 10:47:47 -07:00
Eric Chiang
89ecfd2ede
server: only print gc stats if something has been removed
2016-10-13 21:55:56 -07:00
Eric Chiang
96440e4cc5
*: fix linting
2016-10-13 18:15:20 -07:00
Eric Chiang
5bec61d73f
Merge pull request #602 from ericchiang/dev-add-garbage-collect-method-to-storage
...
dev branch: add garbage collect method to storage
2016-10-12 22:08:53 -07:00
Eric Chiang
4296604f11
{cmd,server}: move garbage collection logic to server
2016-10-12 21:50:20 -07:00
Eric Chiang
3e20a080fe
server: fix auth request expiry
2016-10-12 18:51:13 -07:00
Eric Chiang
2834da443f
server: allow extra spaces in scopes
...
go-oidc sends an extra space before the list of scopes. This is bad
but we have to support it, so we'll be more lenient and ignore
duplicated whitespace.
2016-10-12 15:37:12 -07:00
Eric Chiang
ac6e419d48
server: add tests for refreshing with explicit scopes
2016-10-10 11:02:27 -07:00
Eric Chiang
8518c30123
Merge pull request #593 from ericchiang/dev-expose-skip-approval
...
dev branch: expose skip approval screen option
2016-10-07 11:56:09 -07:00
Eric Chiang
dcbe67d89c
{cmd/dex,server}: expose skip approval screen option
2016-10-07 11:53:01 -07:00
Eric Chiang
6dbb5c4de6
server: fix cross client scope prefix
2016-10-07 11:40:41 -07:00
Eric Chiang
cdf0b91690
server: add an option to enable emails and passwords from the database
2016-10-05 17:26:41 -07:00
Eric Chiang
98b207b59a
Merge pull request #585 from ericchiang/dev-api
...
dev branch: add a simple gRPC API
2016-10-05 14:14:28 -07:00
Eric Chiang
9243a092cf
server: add a test for the health check handler
2016-10-05 08:02:02 -07:00
Eric Chiang
e873a31b21
server: add health check endpoint
2016-10-04 17:20:17 -07:00
Eric Chiang
8b079168be
server: add gRPC service implementation
2016-10-04 00:30:30 -07:00
Eric Chiang
82a55cf785
{server,storage}: add LoggedIn flag to AuthRequest and improve storage docs
...
Currently, whether or not a user has authenticated themselves through
a connector is indicated by a pointer being nil or non-nil. Instead
add an explicit flag that marks this.
2016-09-30 22:40:04 -07:00
Eric Chiang
04912c04e3
server: generate string literals instead of escaped strings
...
When compiling the default templates into the source code, use
string literals instead of escaped strings to reduce merge
conflicts.
2016-09-05 18:06:17 -07:00
Eric Chiang
608d8ba984
*: switch dex to the ported templates
2016-09-05 17:25:39 -07:00
Eric Chiang
027e3d366c
server: generate default templates map
2016-09-05 17:25:12 -07:00
Eric Chiang
63a62b6754
*: add code to serialize templates into go code
...
Add a small program to iterate over the templates directory and
generate a go map of name to file data. This is so we can compile
these templates into the dex binary instead of requiring files on
disk.
Also add a Makefile rule to do this automatically.
2016-09-05 17:25:12 -07:00
Eric Chiang
571024182d
*: set response types supported in discovery based on server config
2016-08-25 16:18:09 -07:00
Eric Chiang
02dd18483d
server: add integration test for the implicit flow
2016-08-24 11:21:39 -07:00
Eric Chiang
c113df961a
*: support the implicit flow
2016-08-24 11:21:39 -07:00
Eric Chiang
c33ad3e0f3
server: fix oauth2 values and remove unused code
2016-08-24 11:14:38 -07:00
Eric Chiang
4fe7260bb3
server: run server tests at a non-root URL
...
As we've seen on master it's very easy mistakenly make changes that
assume root URL paths. Run server integration tests at a non-root
issuer URL to prevent this.
2016-08-19 16:00:19 -07:00
Eric Chiang
bfe560ee21
rename
2016-08-10 22:31:42 -07:00
Eric Chiang
4cbe9bbc82
server: cache signing keys
2016-08-10 20:51:58 -07:00
Eric Chiang
235ae9c3c4
server: update discovery to include offline_access scope
2016-08-08 19:10:32 -07:00
Eric Chiang
53d1be4a87
*: load static clients from config file
2016-08-05 09:54:03 -07:00
Eric Chiang
3110f45c3d
*: lots of renaming
2016-08-02 21:57:36 -07:00
Eric Chiang
f4c5722e42
*: connectors use a different identity object than storage
2016-08-02 21:20:18 -07:00
Eric Chiang
cab271f304
initial commit
2016-07-26 15:51:24 -07:00