hswaw
/
sso
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
23 Commits
1 Branch
0 Tags
631 KiB
Commit Graph

23 Commits (master)

Author SHA1 Message Date
informatic 682322c980 sso: implement populate_obj, fix membership edit form 2022-04-29 22:48:21 +02:00
informatic 576ff1b0ea sso: implement RS256 JWT signing algo 2022-04-29 01:10:29 +02:00
informatic a57ab99014 Implement membership_required client option 
User without an active membership:
* will be able to log into sso.hackerspace.pl
* will not be able to create/modify any of their clients
* will not be able to authorize to any client that has "Active
membership required" option enabled
* API requests for said user will return 402 (in case a token has
already been issued)

Authorization errors will now be wrapped in properly rendered alerts.
 2022-04-29 00:24:35 +02:00
informatic c4c810cd25 sso: expose same info in id_token and userinfo endpoint 2021-02-01 16:56:50 +01:00
informatic b3483a9b6d directory: handle broken groups ACL, migrate to cn=sso 2020-10-10 18:56:07 +02:00
informatic 2f8816cfda refine .*ignore configuration 2020-10-10 18:12:02 +02:00
informatic ffd3e8561b Add group membership reporting in userinfo endpoint 2020-10-10 18:07:25 +02:00
informatic 15e3c059eb Code reformat 2020-10-10 17:40:22 +02:00
informatic 614775ed4b License this repository under the ISC license. 2020-08-15 19:05:09 +02:00
informatic df83515e6d Add destroy and regenerate secret actions to self-service portal 2020-05-31 19:53:42 +02:00
informatic cbfcdbd823 select client_secret_post authentication method by default 2020-05-31 19:07:17 +02:00
informatic 033b46b360 fix crdb support by casting uuid 
Postgres seems to happily take in and automatically cast uuid type
values into varchar columns. This is not the case with cockroachdb.
 2020-05-31 19:05:57 +02:00
informatic 7b71359733 layout cleanups 2020-05-31 01:28:58 +02:00
informatic b495cae6cd fix csrf breaking proxies 2020-05-31 01:15:24 +02:00
informatic 5c6938ae5a use SECRET_KEY as JWT secret key (until we get proper rsa support) 2020-05-31 00:35:00 +02:00
informatic f633f2d617 add redirect_uri add/remove buttons 2020-05-31 00:15:26 +02:00
informatic fa7912621d authorize: check scope when granting by default 2020-05-30 23:09:38 +02:00
informatic a5e1465c28 allow non-tld redirect URI entry 2020-05-30 23:09:05 +02:00
informatic b17854c5c3 fix token expiration date display 2020-05-30 23:08:52 +02:00
informatic 64770ea1da final fixups 2020-05-30 22:53:06 +02:00
informatic 3daace694e Add scope management to self-service portal 2020-05-30 14:51:29 +02:00
informatic 54e1ba0608 Add self-service client registration 2020-05-25 21:57:04 +02:00
informatic dcc698cbec Initial commit 2020-05-24 15:00:18 +02:00