informatic
682322c980
sso: implement populate_obj, fix membership edit form
2022-04-29 22:48:21 +02:00
informatic
576ff1b0ea
sso: implement RS256 JWT signing algo
2022-04-29 01:10:29 +02:00
informatic
a57ab99014
Implement membership_required client option
...
User without an active membership:
* will be able to log into sso.hackerspace.pl
* will not be able to create/modify any of their clients
* will not be able to authorize to any client that has "Active
membership required" option enabled
* API requests for said user will return 402 (in case a token has
already been issued)
Authorization errors will now be wrapped in properly rendered alerts.
2022-04-29 00:24:35 +02:00
informatic
c4c810cd25
sso: expose same info in id_token and userinfo endpoint
2021-02-01 16:56:50 +01:00
informatic
b3483a9b6d
directory: handle broken groups ACL, migrate to cn=sso
2020-10-10 18:56:07 +02:00
informatic
2f8816cfda
refine .*ignore configuration
2020-10-10 18:12:02 +02:00
informatic
ffd3e8561b
Add group membership reporting in userinfo endpoint
2020-10-10 18:07:25 +02:00
informatic
15e3c059eb
Code reformat
2020-10-10 17:40:22 +02:00
informatic
614775ed4b
License this repository under the ISC license.
2020-08-15 19:05:09 +02:00
informatic
df83515e6d
Add destroy and regenerate secret actions to self-service portal
2020-05-31 19:53:42 +02:00
informatic
cbfcdbd823
select client_secret_post authentication method by default
2020-05-31 19:07:17 +02:00
informatic
033b46b360
fix crdb support by casting uuid
...
Postgres seems to happily take in and automatically cast uuid type
values into varchar columns. This is not the case with cockroachdb.
2020-05-31 19:05:57 +02:00
informatic
7b71359733
layout cleanups
2020-05-31 01:28:58 +02:00
informatic
b495cae6cd
fix csrf breaking proxies
2020-05-31 01:15:24 +02:00
informatic
5c6938ae5a
use SECRET_KEY as JWT secret key (until we get proper rsa support)
2020-05-31 00:35:00 +02:00
informatic
f633f2d617
add redirect_uri add/remove buttons
2020-05-31 00:15:26 +02:00
informatic
fa7912621d
authorize: check scope when granting by default
2020-05-30 23:09:38 +02:00
informatic
a5e1465c28
allow non-tld redirect URI entry
2020-05-30 23:09:05 +02:00
informatic
b17854c5c3
fix token expiration date display
2020-05-30 23:08:52 +02:00
informatic
64770ea1da
final fixups
2020-05-30 22:53:06 +02:00
informatic
3daace694e
Add scope management to self-service portal
2020-05-30 14:51:29 +02:00
informatic
54e1ba0608
Add self-service client registration
2020-05-25 21:57:04 +02:00
informatic
dcc698cbec
Initial commit
2020-05-24 15:00:18 +02:00