Alexander Matyushentsev
51d9b3d3ca
Issue #1184 - Github connector now returns a full group list when no org is specified
2018-11-14 15:31:31 -08:00
Taras Burko
bf39130bab
Configurable team name field for GitHub connector
2018-09-14 01:09:48 +03:00
Stephan Renatus
b9f6594bf0
*: github.com/coreos/dex -> github.com/dexidp/dex
...
Signed-off-by: Stephan Renatus <srenatus@chef.io>
2018-09-05 17:57:08 +02:00
silenceshell
468b5e3f0a
fix typo
...
Should `pulic` be `public`?
2018-05-10 11:55:11 +08:00
Michael Stapelberg
a41d93db4a
Implement the “authproxy” connector (for Apache2 mod_auth etc.)
2017-10-25 21:53:51 +02:00
Eric Chiang
980400db0b
Makefile: error out if go files aren't correctly formatted
...
Noticed in #1058 that our gofmt make target isn't actually erroring
if someone commits misformatted code.
2017-09-14 09:44:15 -07:00
Eric Stroczynski
763e174a7f
Merge pull request #1039 from estroz/move-group-scope-check
...
connector/github: fix groups scope check when 'orgs' is populated
2017-08-21 14:36:44 -07:00
Eric Stroczynski
ce9ac761a6
connector/github: abstract scope check and group getter
2017-08-21 14:30:00 -07:00
rithu leena john
e59d67f466
Merge pull request #1038 from xogroup/github-enterprise
...
When connecting to GitHub Enterprise, force email verified field to true
2017-08-18 13:58:50 -07:00
Chien Huey
99370b5880
Updated comment to include reference to GitHub Enterprise not supporting verified emails
2017-08-18 11:46:05 -04:00
Eric Stroczynski
e92f38f38f
connector/github: error if no groups scope without orgs
...
We should always check if a user is in any orgs or teams specified
in config, and whether the groups scope is also included in client
requests. If not, return an error, because dex wouldn't have required
permissions to do the request anyway (need read:org).
2017-08-17 17:15:45 -07:00
Chien Huey
98f6a217d3
When connecting to GitHub Enterprise, force email verified field to true
2017-08-17 17:26:10 -04:00
Eric Stroczynski
5894d017d5
connector/github: debug->info logging, more informative userInOrg msg
2017-08-17 11:56:35 -07:00
Eric Stroczynski
484327fd5f
connector/github: only user users' login name in API reqs
2017-08-17 10:32:18 -07:00
Eric Stroczynski
26527011ab
connector/github: enable private, primary emails; refactor API calls
...
Documentation: removed private emails caveats section
2017-08-08 18:04:34 -07:00
Eric Stroczynski
9d154802a2
connector/github: multiple orgs, query by teams
...
Documentation: examples of GitHub `orgs` field with multiple orgs
and org with teams; note legacy behavior
2017-08-08 10:57:42 -07:00
Eric Stroczynski
4a88d0641a
: update {S->s}irupsen/logrus
2017-07-25 13:46:44 -07:00
rithu john
682d78f527
connector: improve error message for callback URL mismatch
2017-06-13 15:52:33 -07:00
rithu john
76b9eb1db9
connector/github: add support for github enterprise.
2017-04-11 10:04:59 -07:00
Eric Chiang
777eeafabc
*: update go-oidc and use standard library's context package
2017-03-08 10:33:19 -08:00
Ali Javadi
98bfa4fbb1
Fixes #706
2017-01-27 05:12:58 +03:30
rithu john
2e22a948cf
cmd/dex: add logging config and serve logger for different modules.
2016-12-12 15:56:50 -08:00
Eric Chiang
952e0f81f5
connector: add RefreshConnector interface
2016-11-22 12:53:46 -08:00
Eric Chiang
aa7f304bc1
*: switch to github.com/ghodss/yaml for more consistent YAML parsing
...
ghodss/yaml converts from YAML to JSON before attempting to unmarshal.
This allows us to:
* Get the correct behavor when decoding base64'd []byte slices.
* Use *json.RawMessage.
* Not have to support extravagant YAML features.
* Let our structs use `json:` tags
2016-11-03 14:39:32 -07:00
Eric Chiang
d7912a3a97
Merge pull request #638 from ericchiang/dev-share-a-single-callback
...
*: allow call connectors to share a single a single callback
2016-10-27 16:59:04 -07:00
Eric Chiang
a3235d022a
*: verify "state" field before passing request to callback connectors
...
Let the server handle the state token instead of the connector. As a
result it can throw out bad requests earlier. It can also use that
token to determine which connector was used to generate the request
allowing all connectors to share the same callback URL.
Callbacks now all look like:
https://dex.example.com/callback
Instead of:
https://dex.example.com/callback/ (connector id)
Even when multiple connectors are being used.
2016-10-27 10:23:09 -07:00
Eric Chiang
a11db557b4
*: expand environment variables in config
...
Allow users to define config values which are read form environemnt
variables. Helpful for sensitive variables such as OAuth2 client IDs
or LDAP credentials.
2016-10-22 13:49:40 -07:00
Eric Chiang
bfe560ee21
rename
2016-08-10 22:31:42 -07:00
Eric Chiang
f4c5722e42
*: connectors use a different identity object than storage
2016-08-02 21:20:18 -07:00
Eric Chiang
cab271f304
initial commit
2016-07-26 15:51:24 -07:00