zerotier/ZeroTierOne
0
0
Fork 0
mirror of https://github.com/zerotier/ZeroTierOne.git synced 2026-05-22 16:20:28 -07:00
Code Issues Packages Projects Releases Wiki Activity
6,046 Commits 15 Branches 106 Tags
f2cb9b36b2c87f41344626b91f7afff88b052d90
Commit Graph

318 Commits

Author SHA1 Message Date
Grant Limberg 0ae09577f6 Client & Central Controller updates to support additonal OIDC features (#1848) 
Client side:
* Fix compatibility with OneLogin
* Requested scopes vary by OIDC provider. Different providers have different

Controller side:
*Update Postgres queries to latest Central schema
* Added Central Controller support for the different providers
* Base OIDC provider details are still attached to an org. Client ID & group/email lists are now associated with individual networks.
 2023-01-19 15:39:15 -08:00
Adam Ierymenko ee0a194b25 Several more SSO/OIDC related fixes, and bump version to 1.8.9. 2022-04-19 21:29:11 -04:00
Adam Ierymenko ef08346a74 Fix a possible excessive memory use issue in controller and clean up a bunch of COM handling and other code in the normal node. 2022-04-19 19:59:54 -04:00
Joseph Henry f9c84c8c52 Remove stray debug trace 2022-02-08 15:32:25 -08:00
Grant Limberg d719137565 temp workaround for oidc auth dropping issue 
Add a method to "kick" the refresh thread and re-post the tokens in the case where the thread is somehow still running & controller pushes out an AUTH_REQUIRED.  This situation happens in a corner case still under investigation where the controller pushes out many copies of the network config repeatedly
 2022-01-20 09:44:56 -08:00
Grant Limberg 663a09b38d oidc stuff coming across the wire properly and generating a working login URL 2021-12-01 13:01:32 -08:00
Grant Limberg eaccce743f moar plumbing progress 2021-12-01 12:07:05 -08:00
Grant Limberg 91e9b736dd make service objs dependent on zeroidc 2021-11-18 10:42:12 -08:00
Grant Limberg fa21fdc1cc rename stuff for clarity 
authenticationURL will still be used by the client for v1 and v2 of sso
 2021-11-11 16:19:26 -08:00
Grant Limberg 8d39c9a861 plumbing full flow from controller -> client network 2021-11-04 15:40:08 -07:00
Adam Ierymenko 134d33c218 Add a bit of hardening in the network certificate of membership by incorporating a full hash of the identity to which it is issued. This means the recipient need not depend entirely on the root verifying identities properly to make sure impersonation is not occurring. 2021-09-20 15:40:55 -07:00
Grant Limberg 364ad87e2b add ssoEnabled flag to network config 2021-06-05 13:44:45 -07:00
Adam Ierymenko 810e2a761f Fix authentication URL... 2021-05-25 14:49:06 -04:00
Adam Ierymenko 6ce71c1bc3 Fix reporting of status. 2021-05-25 14:45:49 -04:00
Adam Ierymenko b270d527f4 Basic plumbing for authentication requirement and piping through of URL information. 2021-05-24 22:58:17 -04:00
Adam Ierymenko dc806dd718 Try pipelining tap reads on Linux for a little more speed. 2020-11-16 18:56:00 -05:00
Adam Ierymenko 06730c7d1d BSL date bump 2020-08-20 12:51:39 -07:00
Grant Limberg c0c215c83c single dns config per network 2020-08-12 13:08:47 -07:00
Grant Limberg 88a3c685fb latest 2020-08-04 13:52:57 -07:00
Grant Limberg d098a99d09 fix memory init issue 
and another place where dns data needs to be copied
 2020-07-31 11:42:03 -07:00
Adam Ierymenko 52a166a71f Relicense: GPLv3 -> ZeroTier BSL 1.1 2019-08-23 09:23:39 -07:00
Adam Ierymenko 3db0197865 Add try/catch in LFDB and add introspection into multicast subscriptions in client network status API 2019-08-06 15:22:57 -05:00
Adam Ierymenko e2900f4f3c Fix valgrind warning... not sure if it is an actual issue. 2019-06-17 15:23:52 -07:00
Adam Ierymenko aa831dd843 More stack->heap... 2019-06-17 14:55:33 -07:00
Adam Ierymenko 2966eac64f Get rid of ZT_FAST_MEMCPY because this is not really needed. 2019-03-22 15:50:15 -07:00