88d1e2b041
keystone: test cases, refactoring and cleanup
2019-01-11 15:14:56 +01:00
a965365a2b
keystone: refresh token and groups
2019-01-11 15:14:11 +01:00
0774a89066
keystone: squashed changes from knangia/dex
2019-01-11 15:12:59 +01:00
b78b8aeee0
Replace "GET", "POST" to http.MethodGet and http.MethodPost
2018-12-27 16:27:36 +08:00
468c74d1d2
Make expiry of auth requests configurable
2018-12-13 11:50:34 +01:00
f3acec0b1b
Merge pull request #1275 from ccojocar/client-update-api
...
Extend the API with a function which updates the client configuration
2018-11-27 11:47:16 +01:00
01c6b9dd91
Remove the 'public' field from UpdateClientReq proto message
2018-11-26 19:07:59 +01:00
ff8b44558e
Issue #1263 - Render error message provided by connector if user authentication failed
2018-11-13 15:44:28 -08:00
281ec27118
Update also to a list of empty redirect URIs and Peers
2018-11-13 09:59:45 +01:00
9d1ec6c36b
Revert "Avoid overwriting exiting redirect URI and trusted peers when updating the client"
...
This reverts commit 49fa5ee6e8
2018-11-13 09:58:17 +01:00
49fa5ee6e8
Avoid overwriting exiting redirect URI and trusted peers when updating the client
...
Also skip configure the Public field.
2018-11-12 21:48:14 +01:00
c9b18b2785
Add tests for UpateClient API
2018-11-12 18:43:48 +01:00
9926a0dced
Extend the API with a function which updates the client configuration
2018-11-12 17:33:06 +01:00
e1acb6d577
Merge pull request #1307 from edtan/upstream-add-bitbucket-connector
...
Add Bitbucket connector
2018-10-12 09:02:21 +02:00
74bfbcefbc
minor spelling correction
2018-10-09 15:57:37 -05:00
d26e23c16f
Make suggested code changes
2018-10-05 10:43:49 -04:00
8c75d85b60
Add Bitbucket connector
2018-09-30 15:08:07 -04:00
b9f6594bf0
*: github.com/coreos/dex -> github.com/dexidp/dex
...
Signed-off-by: Stephan Renatus <srenatus@chef.io >
2018-09-05 17:57:08 +02:00
01d63b086f
Merge pull request #1176 from vyshane/master
...
New id_provider scope that adds the connector ID and user ID to the ID token claims
2018-02-03 11:47:42 -08:00
b03c85e56e
Add new federated:id scope that causes Dex to add a federated_claims claim containing the connector_id and user_id to the ID token
2018-02-03 18:40:03 +08:00
ce686390a5
Merge pull request #1144 from srenatus/sr/support-direct-post-without-get-first
...
handlers/connector_login: update AuthRequest irregardless of method
2018-02-01 11:26:57 -08:00
5f03479d29
*: Add go runtime, process, HTTP and gRPC metrics
2017-12-21 21:24:09 +01:00
da45adcb6e
email scope only allows access to a user's email address
2017-12-17 12:08:19 -05:00
f013a44581
handlers/connector_login: check before update (optimization)
...
Signed-off-by: Stephan Renatus <srenatus@chef.io >
2017-12-11 08:32:22 +01:00
f18d7afc6f
handlers/connector_login: update AuthRequest irregardless of method
...
Before, you could not POST your credentials to a password-connector's
endpoint without GETing that endpoint first. While this makes sense for
browser clients; automated interactions with Dex don't need to look at
the password form to fill it in.
A symptom of that missing GET was that the POST succeeded (!) with
login successful: connector "", username="admin", email="admin@example.com ", groups=[]
Note the connector "". A subsequent call to finalizeLogin would then
fail with
connector with ID "" not found: failed to get connector object from storage: not found
Now, the connector ID of an auth request will be updated for both GETs
and POSTs.
Signed-off-by: Stephan Renatus <srenatus@chef.io >
2017-12-08 11:49:52 +01:00
joannano
Krzysztof Balka
knangia
Haines Chan
Maximilian Gaß
Stephan Renatus
Cosmin Cojocar
Alexander Matyushentsev
Danny Sauer
Ed Tan
Eric Chiang
Vy-Shane Xie
Frederic Branczyk
Eric Buth