Commit graph

579 commits

Author SHA1 Message Date
Eric Chiang
5c5df23a57 db: print better error messages for invalid input
When client secrets are not base64 encoded, print an error message
that's not a generic base64 decode error:

   client secrets must be base64 decodable. See issue #337.
   Please consider replaceing "secret" with "c2VjcmV0"

When a user file is missing a mandatory field print an error message.

	Unable to build Server: user elroy-foo is missing email field

For #400
2016-04-11 16:31:50 -07:00
Eric Chiang
7858da565f server: add more validation to --no-db static file parsing
In #393 the format of the static user file in --no-db mode changed.
However, the old format loads without error, which has caused
issues for developers with existing user files.

Add an explicit check to ensure the file is not using the old
format. If they are, print a better error message.
2016-04-11 16:21:31 -07:00
Eric Chiang
e0f8e8a8ee vendor: revendor using glide 2016-04-08 11:56:29 -07:00
Eric Chiang
3b86cd524c *: move from godep to glide 2016-04-08 11:56:18 -07:00
Stephan Renatus
ed89be44ef bugfix: make getCreds work for non-admins (#396) 2016-04-08 10:14:01 -07:00
Eric Chiang
70cb0546ce *: don't go get vet (#397)
It's part of the standard tooling and no longer lives in
golang.org/x/tools.

See https://golang.org/cl/20810
2016-04-08 08:40:37 -07:00
Eric Chiang
cd7d3fff85 Merge pull request #386 from ericchiang/revoke_refresh_2
add ability to revoke refresh tokens in user API
2016-04-06 13:45:23 -07:00
Eric Chiang
e6177cf307 Merge pull request #393 from ericchiang/nodb_users
remove passwordInfos from local connector
2016-04-06 11:30:08 -07:00
Eric Chiang
553e7d0167 server: add refresh token revocation API to server 2016-04-06 11:29:51 -07:00
Eric Chiang
64380734e6 *: implement refresh revocation user API methods 2016-04-06 11:29:09 -07:00
Eric Chiang
aa00a4b094 schema/workerschema: regenerate worker schema 2016-04-06 11:27:41 -07:00
Eric Chiang
b7f663b520 schema/workerschema: add refresh token revocation endpoints to API 2016-04-06 11:27:06 -07:00
Eric Chiang
ab4cbe7219 schema: fix generator script to work with vendor directory 2016-04-06 11:26:29 -07:00
Eric Chiang
7416929455 *: add revocation methods to refresh repo 2016-04-06 11:25:50 -07:00
Eric Chiang
ac73d3cdf2 *: load password infos from users file in no-db mode not connectors
In --no-db mode, load passwords from the users file instead of the
connectors file. This allows us to remove the password infos field
from the local connector and stop loading them during connector
registration, a case that was causing panics when using a real
database (see #286).

Fixes #286
Closes #340
2016-04-06 11:15:05 -07:00
Eric Chiang
de8f345642 Merge pull request #392 from ericchiang/admin_client_registration_2
add client registration to the admin API
2016-04-05 13:39:46 -07:00
Eric Chiang
b10645f58d *: add client registration endpoint to admin API 2016-04-05 11:37:26 -07:00
Eric Chiang
0445da2dfe schema/adminschema: regenerate admin schema 2016-04-05 11:36:31 -07:00
Eric Chiang
1548180518 schema/adminschema: add enpoints for registering clients 2016-04-05 11:36:11 -07:00
Eric Chiang
6120f7ac05 *: add isAdmin option to client repo when creating a client 2016-04-05 11:29:58 -07:00
Eric Chiang
eb6dceadfd Merge pull request #368 from ericchiang/remove_non_existent_envvar
Documentation: remove reference to DEX_APP_REDIRECTURL
2016-03-17 10:35:54 -07:00
Eric Chiang
7c5e670631 Merge pull request #375 from Tecsisa/370-required-response-type-param
Fix response_type missing param
2016-03-17 10:35:37 -07:00
Rubén Soleto Buenvarón
821b242c83 Fix response_type missing param
This commit fix problem with response_type param, which is required according to OIDC spec, when it is missing.
 At now, when connector_id url query param is not set, connector view use response_type that client request instead of default "code".

Fixes #370
2016-03-17 08:00:49 +01:00
Eric Chiang
d660dbea8a Merge pull request #341 from ericchiang/rm_build_units
*: remove build-units script
2016-03-14 13:17:25 -07:00
Eric Chiang
1dd831700d Merge pull request #348 from ericchiang/db_health
server: add db heatlh checker to server checkers
2016-03-14 13:17:19 -07:00
Eric Chiang
36e166cdef Merge pull request #369 from ericchiang/vendor
move outside dependencies to ./vendor directory
2016-03-14 13:17:12 -07:00
Eric Chiang
8d2adf458e Merge pull request #362 from ericchiang/roadmap_for_0_4
Documentation: update roadmap for 0.4 release cycle
2016-03-10 09:51:48 -08:00
Eric Chiang
a391ba0584 *: don't build with Go versions with known security vulnerabilities 2016-03-09 14:01:42 -08:00
Eric Chiang
4a830ddcc3 *: move build scripts to use GO15VENDOREXPERIMENT
closes #328
2016-03-09 13:06:23 -08:00
Eric Chiang
d17790413b *: updated Godeps.json 2016-03-09 13:05:03 -08:00
Eric Chiang
08b12a0e5c *: move ./Godeps/_workspace/src/ to ./vendor/ 2016-03-09 13:04:05 -08:00
Eric Chiang
dd1eb3f7e7 Documentation: UX review pushed back to 0.5 2016-03-09 12:46:17 -08:00
Eric Chiang
a273031c28 Documentation: remove reference to DEX_APP_REDIRECTURL
Fixes #365
2016-03-09 10:41:13 -08:00
Eric Chiang
bbfd3a1989 Documentation: update roadmap for 0.4 release cycle 2016-03-09 09:33:43 -08:00
Eric Chiang
38be227aa2 Merge pull request #357 from ericchiang/query_escape
server: url decode basic auth credentials
2016-03-02 21:38:19 -08:00
Eric Chiang
c3aa6a1ee3 server: correctly decode oauth2 basic auth credentials
Fixes #336
2016-03-02 21:31:54 -08:00
Eric Chiang
016445b1fc Merge pull request #358 from ericchiang/fix_emails_test
integration: fix email case sensitivity test
2016-03-02 19:36:17 -08:00
Eric Chiang
804dd6d57c integration: fix email case sensitivity test 2016-03-02 18:13:32 -08:00
Eric Chiang
c92aae647c Merge pull request #331 from Tecsisa/184-resend-email-invitation
add support for resend an invite email
2016-03-02 16:53:17 -08:00
Eric Chiang
60b843e78b Merge pull request #339 from ericchiang/case_insensitive_emails
db: email comparison should be case insensitive
2016-03-02 16:51:47 -08:00
Eric Chiang
09069a51a7 Merge pull request #356 from ericchiang/fix_cross_compilation
Fix cross compilation
2016-03-02 14:47:39 -08:00
Eric Chiang
875d5d09bf db: regenerate migrations 2016-03-02 14:47:17 -08:00
Eric Chiang
4feaae98b0 db: add better comment about migration 2016-03-02 14:47:00 -08:00
Eric Chiang
91ef40b124 *: fix release script 2016-03-02 12:41:24 -08:00
Eric Chiang
93b89ad0e9 db: protect the sqlite3 import with a cgo tag 2016-03-02 12:02:55 -08:00
Eric Chiang
01a24542e9 *: fix tests that care about email case sensitivity 2016-03-01 14:09:10 -08:00
Eric Chiang
2a0cc47419 db: generate in-memory migration assets 2016-03-01 10:59:25 -08:00
Eric Chiang
f738188c13 db: switch migration source to use in-memory migration
When reading migrations from files, sql-migrate attempts to split
SQL statements. The parsing logic does not handle $BODY$ statements
and broke when the migration included one.

Replace go-bindata with a small migration generation script and use
in memory migrations instead.
2016-03-01 10:55:05 -08:00
Eric Chiang
208afd3b01 *: add functional tests for case insensitive emails 2016-03-01 10:54:12 -08:00
Eric Chiang
9bc68edae7 *: add migration to convert all emails to lowercase
Fixes #338
2016-03-01 10:51:50 -08:00