mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-05-19 14:21:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • d55ae3f8bb Bump all deps to latest Monis Khan 2022-01-21 11:25:56 -05:00
  • c8d4b73f94 Merge pull request #967 from vmware-tanzu/refresh-token-test-warnings Ryan Richard 2022-01-21 04:20:46 -08:00
  • b30dad72ed Fix new refresh token grace period test to have warnings Margo Crawford 2022-01-20 14:54:59 -08:00
  • 31cdd808ac Merge pull request #951 from vmware-tanzu/short-session-warning Margo Crawford 2022-01-20 14:44:32 -08:00
  • e85a6c09f6 Merge pull request #953 from vmware-tanzu/dependabot/go_modules/github.com/tdewolff/minify/v2-2.9.29 Ryan Richard 2022-01-20 14:16:05 -08:00
  • 025ef6311b Merge pull request #943 from vmware-tanzu/dependabot/go_modules/github.com/ory/fosite-0.42.0 Mo Khan 2022-01-20 17:03:52 -05:00
  • 842ef38868 Ensure warning is on stderr and not stdout. Margo Crawford 2022-01-20 13:43:29 -08:00
  • acd23c4c37 Separate test for access token refresh Margo Crawford 2022-01-20 08:52:16 -08:00
  • 38d184fe81 Integration test + making sure we get the session correctly in token handler Margo Crawford 2022-01-19 13:20:49 -08:00
  • b0ea7063c7 Supervisor should emit a warning when access token lifetime is too short Margo Crawford 2022-01-18 15:34:19 -08:00
  • fe819e3512 Empty commit to trigger CI Ryan Richard 2022-01-20 13:37:15 -08:00
  • 42ca31055a Empty commit to trigger CI Ryan Richard 2022-01-20 13:25:29 -08:00
  • 652797ba0b Merge branch 'main' into dependabot/go_modules/github.com/tdewolff/minify/v2-2.9.29 Ryan Richard 2022-01-20 12:23:02 -08:00
  • 89c40259f3 Use latest github.com/ory/x v0.0.336 Ryan Richard 2022-01-20 12:21:19 -08:00
  • 520fcf195a Merge branch 'main' into dependabot/go_modules/github.com/ory/fosite-0.42.0 Ryan Richard 2022-01-20 12:16:54 -08:00
  • 284ce00aef Merge pull request #957 from vmware-tanzu/dependabot/go_modules/github.com/ory/x-0.0.334 Ryan Richard 2022-01-20 12:10:57 -08:00
  • db789dc2bf Merge branch 'main' into dependabot/go_modules/github.com/tdewolff/minify/v2-2.9.29 Ryan Richard 2022-01-20 12:10:24 -08:00
  • 6ddc953989 Merge branch 'main' into dependabot/go_modules/github.com/ory/fosite-0.42.0 Ryan Richard 2022-01-20 12:10:01 -08:00
  • 1f21e30bb2 Merge pull request #948 from vmware-tanzu/upstream-oidc-refresh-groups Ryan Richard 2022-01-20 12:07:42 -08:00
  • 6c923d3bc6 Merge pull request #956 from vmware-tanzu/fix-scopes-access-token-refresh-test Margo Crawford 2022-01-19 16:19:13 -08:00
  • cd3d1333de Bump github.com/ory/x from 0.0.331 to 0.0.334 dependabot[bot] 2022-01-19 22:07:18 +00:00
  • dff53b8144 Changes for Fosite's new RevokeRefreshTokenMaybeGracePeriod() interface Ryan Richard 2022-01-19 13:57:01 -08:00
  • 513c943e87 Keep all scopes except offline_access in integration test Margo Crawford 2022-01-19 13:29:26 -08:00
  • 3b1cc30e8d Update unit test to match new JS minify output after minify upgrade Ryan Richard 2022-01-19 13:29:07 -08:00
  • a4ca44ca14 Improve error handling when upstream groups is invalid during refresh Ryan Richard 2022-01-19 12:57:47 -08:00
  • 4ce2f9db50 Bump github.com/tdewolff/minify/v2 from 2.9.26 to 2.9.29 dependabot[bot] 2022-01-19 01:05:43 +00:00
  • 78bdb1928a Merge branch 'main' into upstream-oidc-refresh-groups Ryan Richard 2022-01-18 16:03:14 -08:00
  • b2bdf01152 Bump github.com/ory/fosite from 0.41.0 to 0.42.0 dependabot[bot] 2022-01-18 23:53:34 +00:00
  • 956f6f1eab Merge pull request #945 from enj/enj/i/supervisor_ports Mo Khan 2022-01-18 18:52:32 -05:00
  • 1e1789f6d1 Allow configuration of supervisor endpoints Monis Khan 2021-12-15 15:48:55 -05:00
  • 70bd831099 Merge branch 'main' into upstream-oidc-refresh-groups Ryan Richard 2022-01-18 14:36:18 -08:00
  • 01a7978387 Merge pull request #940 from vmware-tanzu/ldap_and_activedirectory_status_conditions_bug Ryan Richard 2022-01-18 14:35:49 -08:00
  • 1a2514f417 Merge branch 'main' into ldap_and_activedirectory_status_conditions_bug Ryan Richard 2022-01-18 10:09:14 -08:00
  • 6143d66504 Increase timeout on linter for when CI gets slow Ryan Richard 2022-01-18 10:06:53 -08:00
  • 1602fca5ed Increase timeout on linter for when CI gets slow Ryan Richard 2022-01-18 10:06:53 -08:00
  • ebcf71c30c Update ROADMAP.md anjalitelang 2022-01-18 10:34:09 -05:00
  • 88f3b29515 Merge branch 'main' into upstream-oidc-refresh-groups Ryan Richard 2022-01-14 16:51:12 -08:00
  • 75e4093067 Merge branch 'main' into ldap_and_activedirectory_status_conditions_bug Ryan Richard 2022-01-14 16:50:34 -08:00
  • 619b0ba052 Merge pull request #904 from vmware-tanzu/upstream_access_revocation_during_gc Ryan Richard 2022-01-14 16:45:29 -08:00
  • 548977f579 Update group memberships during refresh for upstream OIDC providers Ryan Richard 2022-01-14 16:38:21 -08:00
  • 7551af3eb8 Fix code that did not auto-merge correctly in previous merge from main Ryan Richard 2022-01-14 10:59:39 -08:00
  • 814399324f Merge branch 'main' into upstream_access_revocation_during_gc Ryan Richard 2022-01-14 10:49:22 -08:00
  • 50e4871d65 Merge pull request #944 from vmware-tanzu/refresh-with-no-refresh-token Margo Crawford 2022-01-14 10:23:41 -08:00
  • db0a765b98 Merge branch 'main' into ldap_and_activedirectory_status_conditions_bug Ryan Richard 2022-01-14 10:06:16 -08:00
  • 092a80f849 Refactor some variable names and update one comment Ryan Richard 2022-01-14 10:06:00 -08:00
  • 5b161be334 Refactored oidcUpstreamRefresh Margo Crawford 2022-01-12 14:28:52 -08:00
  • 62be761ef1 Perform access token based refresh by fetching the userinfo Margo Crawford 2022-01-12 18:05:10 -08:00
  • 651d392b00 Refuse logins when no upstream refresh token and no userinfo endpoint Ryan Richard 2022-01-11 15:40:38 -08:00
  • 6f3977de9d Store access token when refresh not available for authcode flow. Margo Crawford 2022-01-11 11:00:54 -08:00
  • 91924ec685 Revert adding allowAccessTokenBasedRefresh flag to OIDCIdentityProvider Ryan Richard 2022-01-10 17:03:31 -08:00
  • 683a2c5b23 WIP adding access token to storage upon login Margo Crawford 2022-01-05 10:31:38 -08:00
  • 1f146f905a Add struct field for storing upstream access token in downstream session Ryan Richard 2021-12-06 14:43:39 -08:00
  • 82f54b5556 Merge pull request #917 from vmware-tanzu/oidc-refresh-user-info-checks Mo Khan 2022-01-12 20:27:00 -05:00
  • 2b744b2eef Add back comment about deferring validation when id token subject is missing Margo Crawford 2022-01-12 11:19:43 -08:00
  • 438b58193d Empty commit to trigger CI Ryan Richard 2022-01-10 13:47:13 -08:00
  • 2958461970 Addressing PR feedback Margo Crawford 2022-01-07 15:04:58 -08:00
  • f2d2144932 rename ValidateToken to ValidateTokenAndMergeWithUserInfo to better reflect what it's doing Margo Crawford 2021-12-16 12:53:49 -08:00
  • c9cf13a01f Check for issuer if available Margo Crawford 2021-12-14 15:27:08 -08:00
  • 0cd086cf9c Check username claim is unchanged for oidc. Margo Crawford 2021-12-14 11:59:52 -08:00
  • b098435290 Refactor validatetoken to handle refresh case without id token Margo Crawford 2021-12-13 16:40:13 -08:00
  • 74b007ff66 Validate that issuer url and urls returned from discovery are https Margo Crawford 2021-12-03 16:11:53 -08:00
  • ed96b597c7 Check for subject matching with upstream refresh Margo Crawford 2021-11-29 16:44:58 -08:00
  • 6b9fc7aa59 Merge branch 'main' into ldap_and_activedirectory_status_conditions_bug Ryan Richard 2022-01-10 09:23:09 -08:00
  • d438bfbc99 Merge pull request #939 from vmware-tanzu/dependabot/go_modules/github.com/ory/x-0.0.331 Mo Khan 2022-01-09 12:04:56 -05:00
  • 7f99d78462 Fix bug where LDAP or AD status conditions were not updated correctly Ryan Richard 2022-01-07 17:19:13 -08:00
  • a7ff638f4c Bump github.com/ory/x from 0.0.330 to 0.0.331 dependabot[bot] 2022-01-07 13:45:37 +00:00
  • 287d5094ec Merge pull request #938 from vmware-tanzu/dependabot/docker/golang-1.17.6 Mo Khan 2022-01-07 08:13:16 -05:00
  • f2b4d667d1 Bump golang from 1.17.5 to 1.17.6 dependabot[bot] 2022-01-07 01:04:10 +00:00
  • fff27a4270 Merge pull request #935 from enj/enj/i/bump_0001 Mo Khan 2022-01-03 19:48:08 -05:00
  • f90f173826 Bump all deps to latest Monis Khan 2022-01-03 17:32:52 -05:00
  • cc88d2a334 Merge pull request #931 from vmware-tanzu/dependabot/docker/distroless/static-80c956f Mo Khan 2022-01-03 10:49:08 -05:00
  • a0ddf4a945 Bump distroless/static from bca3c20 to 80c956f dependabot[bot] 2021-12-27 01:17:24 +00:00
  • 05277a5579 Merge pull request #925 from enj/enj/i/flexible_cli_redirect Mo Khan 2021-12-17 15:51:44 -05:00
  • c155c6e629 Clean up nits in AD code Monis Khan 2021-12-15 10:30:36 -05:00
  • a6085c9678 Drop unsafe unwrapper for exec.roundTripper Monis Khan 2021-12-15 09:39:46 -05:00
  • 86f2bea8c5 pinniped CLI: allow all forms of http redirects Monis Khan 2021-12-14 15:55:35 -05:00
  • adf04d29f7 Merge pull request #914 from enj/enj/i/bump_0.23.0 Mo Khan 2021-12-16 21:45:32 -05:00
  • 9599ffcfb9 Update all deps to latest where possible, bump Kube deps to v0.23.1 Monis Khan 2021-12-10 17:22:36 -05:00
  • 69d5951296 Merge pull request #919 from microwavables/updating-community-details Mo Khan 2021-12-16 17:14:21 -05:00
  • b148359337 Merge pull request #918 from vmware-tanzu/replace_reflections Mo Khan 2021-12-16 17:10:28 -05:00
  • e31a410096 Updated community and resources pages Nanci Lancaster 2021-12-16 15:46:14 -06:00
  • 6bf67f44ef replace reflections in go.mod Ryan Richard 2021-12-16 11:15:24 -08:00
  • fdc91ec56c Merge pull request #909 from vmware-tanzu/dependabot/docker/golang-1.17.5 Mo Khan 2021-12-10 12:41:02 -05:00
  • 884d18bade Bump golang from 1.17.4 to 1.17.5 dependabot[bot] 2021-12-10 17:03:50 +00:00
  • ca2ee26c86 Merge pull request #884 from vmware-tanzu/upstream-ad-refresh Mo Khan 2021-12-09 20:51:46 -05:00
  • 59d999956c Move ad specific stuff to controller Margo Crawford 2021-12-09 14:02:40 -08:00
  • acaad05341 Make pwdLastSet stuff more generic and not require parsing the timestamp Margo Crawford 2021-12-08 15:03:57 -08:00
  • 65f3464995 Fix issue with very high integer value parsing, add unit tests Margo Crawford 2021-12-07 16:57:39 -08:00
  • ee4f725209 Incorporate PR feedback Margo Crawford 2021-12-06 16:24:31 -08:00
  • ef5a04c7ce Check for locked users on ad upstream refresh Margo Crawford 2021-11-16 16:31:32 -08:00
  • f62e9a2d33 Active directory checks for deactivated user Margo Crawford 2021-11-05 11:53:07 -07:00
  • da9b4620b3 Active Directory checks whether password has changed recently during upstream refresh Margo Crawford 2021-10-28 12:00:56 -07:00
  • 8db0203839 Add test for upstream ldap idp not found, wrong idp uid, and malformed fosite session storage Margo Crawford 2021-10-25 14:25:43 -07:00
  • 92bd3b49c8 Merge branch 'main' into upstream_access_revocation_during_gc Ryan Richard 2021-12-09 14:16:52 -08:00
  • 4110297a8f Update ROADMAP.md anjalitelang 2021-12-09 16:59:09 -05:00
  • dbcb213691 Merge branch 'main' into upstream_access_revocation_during_gc Ryan Richard 2021-12-08 14:29:59 -08:00
  • f410d2bd00 Add revocation of upstream access tokens to garbage collector Ryan Richard 2021-12-08 14:29:25 -08:00
  • 7a3b5e3571 Merge pull request #908 from vmware-tanzu/microwavables-main Mo Khan 2021-12-08 14:38:21 -05:00
  • 505bc47ae1 Added GOVERNANCE.md file to repo Nanci Lancaster 2021-12-07 13:08:26 -06:00
  • c9c218fdf0 Merge branch 'main' into upstream_access_revocation_during_gc Ryan Richard 2021-12-06 14:47:27 -08:00