Commit graph

612 commits

Author SHA1 Message Date
Eric Chiang
0e3cb55982 Merge pull request #726 from ericchiang/v1-dont-deploy-on-merge
v1: don't deploy on merge
2016-12-07 10:18:44 -08:00
Eric Chiang
4b56270494 *: don't deploy on merge
We don't want to clutter the Quay repo with non-release tags,
particularly if they're not for the master branch.
2016-12-06 18:53:54 -08:00
Eric Chiang
3ef830f7e1 Merge pull request #707 from pborzenkov/go-oidc-padding
Pull updated go-oidc package with base64 padding fixes
2016-11-23 09:21:19 -08:00
Pavel Borzenkov
f76c43ec4f server: fix tests to expect unpadded base64 messages
Signed-off-by: Pavel Borzenkov <pavel.borzenkov@gmail.com>
2016-11-23 20:02:19 +03:00
Pavel Borzenkov
abd6805f1c *: revendor
Signed-off-by: Pavel Borzenkov <pavel.borzenkov@gmail.com>
2016-11-23 20:02:09 +03:00
Pavel Borzenkov
5fa9e498b5 *: update go-oidc to include base64 padding fixes
Update to pull the fixes done by
https://github.com/coreos/go-oidc/pull/115

Signed-off-by: Pavel Borzenkov <pavel.borzenkov@gmail.com>
2016-11-23 20:01:04 +03:00
Eric Chiang
4b9bdf163d Merge pull request #633 from ElijahCaine/coreos-style-guide-contrib
docs: mention CoreOS docs style guide
2016-10-25 10:30:37 -07:00
Elijah C. Voigt
298357e25d docs: mention CoreOS docs style guide
That style guide is (or ought to be) enforced in all CoreOS repository
documentation (.md files).
This change makes that more obvious.
2016-10-24 17:46:23 -07:00
Eric Chiang
b692252814 Merge pull request #580 from ajanthan/facebookconnector
Connector: Connector for Facebook
2016-10-11 10:47:57 -07:00
ajanthan
464b7fb1af Connector: Connector for Facebook
This implements dex connector for facebook

Fixes #391
2016-10-07 16:19:44 -07:00
Eric Chiang
372e4a0576 Merge pull request #581 from squat/revert_btn_fix
frontend: revert button fix
2016-09-29 15:48:30 -07:00
Lucas Serven
f6762fd30b frontend: revert button fix
This commit reverts the last fix to the button, since it introduced
another issue. Also, it addressed the root cause of the original
problem, which was that one of the templates was missing the correct
class.
2016-09-29 15:37:42 -07:00
Lucas Serven
f1f7d1c474 Merge pull request #579 from squat/fix-button-style
static: fix button styles
2016-09-22 11:40:41 -07:00
Lucas Serven
340eb30055 static: fix button styles 2016-09-22 11:14:12 -07:00
Eric Chiang
9a78dca137 Merge pull request #575 from summerwind/support-expires_in-field
server: add expires_in field to the response of token endpoint
2016-09-12 09:28:57 -07:00
Moto Ishizawa
dc979c1d6d server: use time.Time instead of int64 for token expiration time 2016-09-12 18:52:50 +09:00
Moto Ishizawa
25e4228e35 server: add expires_in field to the response of token endpoint 2016-09-11 23:47:18 +09:00
Eric Chiang
9f67e5dcae Merge pull request #571 from remohammadi/patch-1
documentation: multiple fixes in examples README
2016-09-05 12:06:42 -07:00
Reza Mohammadi
7d9a98f96e documentation: multiple fixes in examples README
* In a9dce1c, the defaults are set to the `.example` paths, except for `emailer.json` which is instead committed into the git repository. So there's no need to duplicate those file in order to start dex-worker.
* The default value for discovery is moved from `/` to `/dex` in #521
* Typo in `client-secret` value.
2016-09-04 18:50:57 +04:30
Eric Chiang
d758e38cd4 Merge pull request #529 from Tecsisa/Clients_create_users
ClientCredentials flow in basic User operations (createUser, getUser, resendInvitationMail)
2016-09-01 09:15:28 -07:00
Adrián López Gómez
9b8ab3bdc6 ClientCredentials flow in UserAPI
Fixes #528
2016-09-01 08:34:36 +02:00
Eric Chiang
0086a1c1bb Merge pull request #570 from ericchiang/update-go-oidc-for-hmac-changes
Update go-oidc for hmac changes
2016-08-29 09:22:34 -07:00
Eric Chiang
4ea7cebd7f *: revendor 2016-08-27 08:50:30 -07:00
Eric Chiang
d218f5251e *: update go-oidc 2016-08-27 08:50:18 -07:00
Eric Chiang
7caaca9a2c Merge pull request #558 from ericchiang/fix-local-registration-for-non-root-url
server: fix registration redirect for non-root URLs
2016-08-19 16:48:51 -07:00
Eric Chiang
fa8f98acac server: fix registration redirect for servers listenin at non-base URLs 2016-08-19 16:25:32 -07:00
Eric Chiang
7525e5623c Merge pull request #560 from ericchiang/fix-user-api
server: fix the path registration for user APIs at non-root URLs
2016-08-18 17:03:20 -07:00
Eric Chiang
b466ae7a70 server: fix the path registration for user APIs at non-root URLs 2016-08-18 16:15:13 -07:00
Eric Chiang
b33227bcd4 Merge pull request #556 from ericchiang/bump-go-oidc-to-remove-capnslog-dependency
*: update go-oidc to remove dependency on capnslog
2016-08-16 12:54:23 -07:00
Eric Chiang
2e57dde3c4 *: revendor 2016-08-16 12:33:16 -07:00
Eric Chiang
9f095c559f *: update go-oidc to remove dependency on capnslog
This change updates the vendored go-oidc package to remove the
dependency on capnslog. It also pulls in a few other minor changes
as part of that package's development.
2016-08-16 12:31:46 -07:00
Eric Chiang
630bf86f32 Merge pull request #540 from Tecsisa/519-refresh-token-only-work-once
refresh token rotation
2016-08-16 08:22:21 -07:00
Rubén Soleto Buenvarón
c91b37aa9e refresh token rotation
Update refresh token flow to revoke old refresh token and generates a new one.

Fixes #519
2016-08-16 08:05:01 +02:00
Eric Chiang
44295706ea Merge pull request #555 from ericchiang/travis-testing
*: pin version of openldap container
2016-08-15 13:24:06 -07:00
Eric Chiang
852cc3872e *: pin version of openldap container for Travis tests
Upstream changes to the osixia/openldap broke our LDAP intergraiton
tests. For now pin the version of oxisia/openldap. Long term rewrite
the tests do they don't depend on the container's file system,
possibly when addressing #477.

Closes #554
2016-08-15 13:07:41 -07:00
Eric Chiang
043fcdadfa Merge pull request #545 from roidelapluie/quickstart
documentation: fix getting-started
2016-08-15 09:39:04 -07:00
Eric Chiang
1d3f7f38ad Merge pull request #546 from roidelapluie/typo
documentation: fix typos in getting-started
2016-08-15 09:38:53 -07:00
Julien Pivotto
1595a1affd
documentation: fix typos in getting-started
| Typo           | Fix            |
| -------------- | -------------- |
| a an api       | an api         |
| adminsitrative | administrative |
| attemping      | attempting     |

[skip ci]

Signed-off-by: Julien Pivotto <roidelapluie@inuits.eu>
2016-08-15 09:22:42 +02:00
Julien Pivotto
256f2431f9
documentation: fix getting-started
The discovery URL has changed and now ends with /dex. As the scripts
were updated in #525, the documentation was not.

Broken since #521.

[skip ci]

Signed-off-by: Julien Pivotto <roidelapluie@inuits.eu>
2016-08-15 09:22:20 +02:00
Eric Chiang
e6ef25bb74 Merge pull request #527 from zlabjp/azure-connector
connector: add azure connector
2016-08-12 10:39:53 -07:00
Moto Ishizawa
eb0c312734 connector: add emailClaim setting to OIDC Connector
Add emailCiam setting to OIDC Connector for supporting an ID token
that does not contain the email claim.
2016-08-12 10:45:47 +09:00
Eric Chiang
882ced4213 Merge pull request #544 from ericchiang/fix-client-secrets-in-examples
*: update examples to hold valid client secrets for no-db mode
2016-08-11 13:04:38 -07:00
Eric Chiang
bef9f3c221 Merge pull request #542 from whitlockjc/uaa-connector
connector: add uaa connector
2016-08-11 12:56:46 -07:00
Eric Chiang
cced75f138 *: update examples to hold valid client secrets for no-db mode 2016-08-11 12:53:48 -07:00
Eric Chiang
ac518139d3 Merge pull request #537 from wyattanderson/register-display-name
server: when registering a user, set user name if OIDC identity contains one
2016-08-10 23:06:58 -07:00
Jeremy Whitlock
27b80cbca8 connector: add uaa connector
This commit adds support for dex to authenticate users from a
CloudFoundry User Account and Authentication (UAA) Server.

Fixes: #538
2016-08-10 16:04:39 -06:00
Eric Chiang
5dec7194d2 Merge pull request #541 from kanor1306/patch-1
Fix typo in dexctl parameter
2016-08-10 09:29:56 -07:00
Nicanor Gutierrez
dace4b2d25 Fix typo in dexctl parameter 2016-08-10 12:37:55 +02:00
Wyatt Anderson
26508c6bab server: when registering a user, set display name
When automatically registering a user from an IP that provides
a `DisplayName`, set it on the created user so that JWT we create
contain a meaningful `name` field.
2016-08-04 11:45:05 -04:00
Eric Chiang
0e94e76255 Merge pull request #531 from ericchiang/user-api-accept-bearer-tokens-with-multiple-audiences
user api: accept bearer tokens with multiple audiences
2016-08-02 12:34:05 -07:00