Arsharth/dex
1
0
Fork 0
forked from mystiq/dex
Code Issues Pull requests Projects Releases Packages Wiki Activity
424 commits 27 branches 73 tags 23 MiB
Commit graph

14 commits

Author SHA1 Message Date
Bobby Rullo
399b15abeb integration, *: Improve tests for admin api 
* TestCreateClient was missing test coverage on error cases
* Fixed bug where 500s were being reported for bad requests
* changed function signature of NewAdminAPI back to old way of passing
  in lots of repos: passing in a DbMap made it difficult to test
* added swappable ID and Secret generators when creating Clients
 2016-04-20 14:31:27 -07:00
Eric Chiang
b10645f58d *: add client registration endpoint to admin API 2016-04-05 11:37:26 -07:00
Eric Chiang
07af73f367 *: don't allow sqlite3 if --no-db flag not specified 2016-02-12 13:19:05 -08:00
Eric Chiang
0deccc7050 cmd: add version to command worker and overlord, print go version 
Closes #272
 2016-01-15 11:15:32 -08:00
Eric Chiang
49389c9b90 cmd, db: verify at least one secret is passed to --key-secrets 
Passing an empty list to the overlord or worker's --key-secrets
flag currently causes an out of range panic. Always check to ensure
there's at least one element passed.

Fixes #130
Fixes #217
 2015-12-16 20:28:21 -08:00
Eric Chiang
f43655a8c3 user/manager: connector must exists when creating remote identity 
Add ConnectorConfigRepo to UserManager. When trying to create a
RemoteIdentity, validate that the connector ID exists.

Fixes #198
 2015-12-07 17:34:08 -08:00
Eric Chiang
d518447282 user: move user manager to it's own package 
This commit moves the user.Manage to its own package (user/manager)
so it can import the connector package in a later commit.

For clarity, it renames "Manager" to "UserManager" using gorname.

This commit has no functional changes.
 2015-12-07 15:34:14 -08:00
George Tankersley
07a4d4441e pkg/crypto: replace old crypto with new crypto 2015-10-29 13:45:25 -07:00
Bobby Rullo
55040c55fa server, integration, cmd: Protect Admin API 
Admin API now requires a 128 byte base64 encoded secret to be passed in
Authorization header, closing up a potential security hole for those
who expose this service.
 2015-10-01 13:15:45 -07:00
Bobby Rullo
62aa12fa6c cmd/dex-overlord: was using the wrong err 2015-09-01 17:07:10 -07:00
Bobby Rullo
9b64ecb2d7 cmd/dex-overlord: bind admin API on 127.0.0.1 
Instead of 0.0.0.0; this is safer, since the admin API is very powerful.

fixes #97
 2015-08-31 13:42:16 -07:00
Bobby Rullo
d0c199b62c cmd, server: base64 encode multiple secrets 
Two things here:

    * key secrets are now base64 encoded strings, so we get the full key
      space

    * we can pass >1 of them in so we can rotate them
 2015-08-26 10:43:24 -07:00
Bobby Rullo
8b6a2699d9 cmd/dex-overlord, db: migrations in overlord 
Migrations happen only in the overlord, so there's no thundering herd,
and database initialziation can be more easily controlled.
 2015-08-20 11:44:43 -07:00
Bobby Rullo
66fe201c24 *: move original project to dex 2015-08-18 11:26:57 -07:00