mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-05-19 14:21:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 46008a7235 Add struct field for storing upstream access token in downstream session Ryan Richard 2021-12-06 14:43:39 -08:00
  • 2c5b74c960 Merge pull request #905 from vmware-tanzu/dependabot/docker/golang-1.17.4 Mo Khan 2021-12-06 15:44:42 -05:00
  • db68fc3a2b Bump golang from 1.17.3 to 1.17.4 dependabot[bot] 2021-12-06 01:14:25 +00:00
  • 29490ee665 ran go mod tidy Ryan Richard 2021-12-03 16:40:01 -08:00
  • b981055d31 Support revocation of access tokens in UpstreamOIDCIdentityProviderI Ryan Richard 2021-12-03 13:44:24 -08:00
  • edd3547977 Merge pull request #903 from vmware-tanzu/code-walkthrough-doc Ryan Richard 2021-12-03 12:19:29 -08:00
  • aa361a70a7 clarifications to code walkthrough doc Ryan Richard 2021-12-03 10:50:02 -08:00
  • 7b6bdd8129 fix link to blog and add another in doc Ryan Richard 2021-12-03 10:31:46 -08:00
  • 4aed3385b6 Merge branch 'main' into code-walkthrough-doc Ryan Richard 2021-12-03 09:17:35 -08:00
  • 2736c3603a fix typo in doc Ryan Richard 2021-12-03 09:17:17 -08:00
  • 3ea90467b7 add first draft of code walk-through doc Ryan Richard 2021-12-02 17:18:50 -08:00
  • 683027468e Update ROADMAP.md anjalitelang 2021-12-02 12:00:54 -05:00
  • 269cae3a9f Merge pull request #895 from enj/enj/f/warning_rt Mo Khan 2021-11-30 16:15:39 -05:00
  • 9d4a932656 phttp: add generic support for RFC 2616 14.46 warnings headers Monis Khan 2021-11-30 12:55:19 -05:00
  • 1611cf681a Merge pull request #876 from vmware-tanzu/upstream_refresh_revocation_during_gc Mo Khan 2021-11-23 20:15:37 -05:00
  • 78474cfae9 Merge branch 'main' into upstream_refresh_revocation_during_gc Mo Khan 2021-11-23 19:29:13 -05:00
  • aaf847040f Merge pull request #893 from vmware-tanzu/fix_unit_test Mo Khan 2021-11-23 19:25:16 -05:00
  • e44540043d Attempt to fix a unit test that always failed on my laptop Ryan Richard 2021-11-23 15:47:19 -08:00
  • 69be273e01 Merge branch 'main' into upstream_refresh_revocation_during_gc Ryan Richard 2021-11-23 14:55:44 -08:00
  • 5a1de2f54c Merge pull request #888 from vmware-tanzu/customize_ports Mo Khan 2021-11-23 17:51:04 -05:00
  • 91eed1ab24 Merge branch 'main' into upstream_refresh_revocation_during_gc Ryan Richard 2021-11-23 12:11:39 -08:00
  • 3ca8c49334 Improve garbage collector log format and some comments Ryan Richard 2021-11-23 12:11:17 -08:00
  • f28b33bbf0 Merge branch 'main' into customize_ports Mo Khan 2021-11-23 08:30:48 -05:00
  • 537f85205d Merge pull request #889 from enj/enj/i/strict_tls_acceptance Mo Khan 2021-11-18 16:37:15 -05:00
  • b8a93b6b90 Merge branch 'main' into customize_ports Ryan Richard 2021-11-18 09:31:18 -08:00
  • 764a1ad7e4 tls: fix integration tests for long lived environments Monis Khan 2021-11-18 03:35:30 -05:00
  • 6a68c6532c Merge pull request #873 from enj/enj/i/strict_tls Mo Khan 2021-11-17 19:17:13 -05:00
  • 3b3641568a GC retries failed upstream revocations for a while, but not forever Ryan Richard 2021-11-17 15:58:44 -08:00
  • cd686ffdf3 Force the use of secure TLS config Monis Khan 2021-10-20 07:59:24 -04:00
  • ca2cc40769 Add impersonationProxyServerPort to the Concierge's static ConfigMap Ryan Richard 2021-11-17 13:27:59 -08:00
  • 2383a88612 Add aggregatedAPIServerPort to the Concierge's static ConfigMap Ryan Richard 2021-11-16 16:43:51 -08:00
  • 48518e9513 Add trace logging to help observe upstream OIDC refresh token revocation Ryan Richard 2021-11-11 12:24:05 -08:00
  • de79f15068 Merge branch 'main' into upstream_refresh_revocation_during_gc Ryan Richard 2021-11-10 15:35:42 -08:00
  • 2388e25235 Revoke upstream OIDC refresh tokens during GC Ryan Richard 2021-11-10 15:34:19 -08:00
  • c570f08b2b Merge pull request #885 from vmware-tanzu/dependabot/docker/golang-1.17.3 Mo Khan 2021-11-05 21:45:56 -04:00
  • 2aeb464b43 Bump golang from 1.17.2 to 1.17.3 dependabot[bot] 2021-11-06 00:55:39 +00:00
  • 5a3f83f90f Merge pull request #877 from vmware-tanzu/upstream-ldap-refresh Mo Khan 2021-11-05 18:08:45 -04:00
  • cb60a44f8a extract ldap refresh search into helper function Margo Crawford 2021-11-05 14:18:54 -07:00
  • b5b8cab717 Refactors: Margo Crawford 2021-11-03 15:17:50 -07:00
  • c84329d7a4 Fix broken ldap_client_test Margo Crawford 2021-11-03 11:41:29 -07:00
  • f988879b6e Addressing code review changes Margo Crawford 2021-11-03 10:33:22 -07:00
  • 84edfcb541 Refactor out a function, add tests for getting the wrong idp uid Margo Crawford 2021-10-26 17:03:16 -07:00
  • 722b5dcc1b Test for change to stored username or subject. Margo Crawford 2021-10-26 16:24:02 -07:00
  • 8396937503 Updates to tests and some error assertions Margo Crawford 2021-10-26 15:01:09 -07:00
  • 2c4dc2951d resolved a couple of testing related todos Margo Crawford 2021-10-25 16:45:30 -07:00
  • 7a58086040 Check that username and subject remain the same for ldap refresh Margo Crawford 2021-10-25 14:25:43 -07:00
  • 19281313dd Basic upstream LDAP/AD refresh Margo Crawford 2021-10-22 13:57:30 -07:00
  • 71f7ea686d Fix typo in community meeting time Mo Khan 2021-11-04 12:02:46 -04:00
  • d5d957f6ee Fix CONTRIBUTING zoom link Mo Khan 2021-11-04 11:53:14 -04:00
  • e371c34237 Fix README zoom link Mo Khan 2021-11-04 11:52:28 -04:00
  • b5be763631 Fix typo in community meeting time Mo Khan 2021-11-04 08:38:33 -04:00
  • f03e5f4fef Merge pull request #883 from enj/enj/i/dockerfile_tweaks Mo Khan 2021-11-03 14:45:23 -04:00
  • a042f74a88 Dockerfile: build all files and trim file system paths Monis Khan 2021-11-03 10:26:13 -04:00
  • aae586b4ef Merge pull request #879 from vmware-tanzu/dependabot/docker/distroless/static-bca3c20 Mo Khan 2021-11-02 09:54:48 -04:00
  • 1c3545e234 Bump distroless/static from 07869ab to bca3c20 dependabot[bot] 2021-10-28 01:02:33 +00:00
  • c494f65b84 Update ROADMAP.md anjalitelang 2021-10-27 10:43:31 -04:00
  • 6c47c3327a Add hint to hack/prepare-for-integration-tests.sh Margo Crawford 2021-10-26 16:25:34 -07:00
  • 3f698d24e5 Merge pull request #878 from enj/enj/i/cli_link Mo Khan 2021-10-26 17:42:53 -04:00
  • 2ba5d51120 Change default install hint to use get.pinniped.dev/cli Monis Khan 2021-10-26 14:56:49 -04:00
  • c3060e3474 Merge pull request #872 from anjaltelang/main Margo Crawford 2021-10-26 13:41:17 -07:00
  • 59256264ec Changing the architecture.md weight back to 100 Anjali Telang 2021-10-26 16:34:32 -04:00
  • 3aa14accd7 Merge pull request #875 from siddhant94/add-install-hint-kubeconfig Mo Khan 2021-10-26 15:38:39 -04:00
  • f93cdcb9c5 Merge remote-tracking branch 'upstream/main' into main Anjali Telang 2021-10-26 15:29:56 -04:00
  • 1b6b4106db Add --install-hint flag to get kubeconfig command vagrant 2021-10-22 09:36:37 +00:00
  • f25d2870ce Merge pull request #874 from enj/enj/i/distroless_nonroot Mo Khan 2021-10-25 16:54:47 -04:00
  • 7921a58988 Use 65532 instead of 1001 as non-root user Monis Khan 2021-10-25 16:21:54 -04:00
  • 7d30bfc22c Start using CodeQL Mo Khan 2021-10-25 16:05:12 -04:00
  • bdb199c53a Merge pull request #858 from vmware-tanzu/upstream_refresh Mo Khan 2021-10-25 12:32:35 -04:00
  • 1e17418585 TestSupervisorUpstreamOIDCDiscovery: include AdditionalAuthorizeParametersValid condition Monis Khan 2021-10-25 10:21:51 -04:00
  • d0ced1fd74 WIP towards revoking upstream refresh tokens during GC Ryan Richard 2021-10-22 14:32:26 -07:00
  • 303b1f07d3 Fix mistake in previous commit Ryan Richard 2021-10-22 14:06:31 -07:00
  • e0db59fd09 More small updates based on PR feedback Ryan Richard 2021-10-22 10:23:21 -07:00
  • 867853016f Merge branch 'main' into upstream_refresh Ryan Richard 2021-10-22 09:23:52 -07:00
  • be6c335bb8 Update ROADMAP.md anjalitelang 2021-10-21 10:16:54 -04:00
  • b3a1dcd634 Update ROADMAP.md anjalitelang 2021-10-21 10:10:19 -04:00
  • dec43289f6 Lots of small updates based on PR feedback Ryan Richard 2021-10-20 15:53:25 -07:00
  • 7ec0304472 Add offline_access scope for integration tests when using Dex Ryan Richard 2021-10-19 12:25:51 -07:00
  • a22507f835 Architecture should be on top of the docs page Anjali Telang 2021-10-19 13:46:30 -04:00
  • d3ade82f3f Update docs Ryan Richard 2021-10-19 09:48:40 -07:00
  • c43e019d3a Change default of additionalScopes and disallow "hd" in additionalAuthorizeParameters Ryan Richard 2021-10-18 16:41:31 -07:00
  • d68bebeb49 Merge branch 'main' into upstream_refresh Ryan Richard 2021-10-18 15:35:46 -07:00
  • c51d7c08b9 Add a comment that might be useful some day Ryan Richard 2021-10-18 15:35:22 -07:00
  • ddb23bd2ed Add upstream refresh related config to OIDCIdentityProvider CRD Ryan Richard 2021-10-14 15:49:44 -07:00
  • 9e05d175a7 Add integration test: upstream refresh failure during downstream refresh Ryan Richard 2021-10-13 15:12:19 -07:00
  • a34dae549b When performing an upstream refresh, use the configured http client Ryan Richard 2021-10-13 14:05:00 -07:00
  • 79ca1d7fb0 Perform an upstream refresh during downstream refresh for OIDC upstreams Ryan Richard 2021-10-13 12:31:20 -07:00
  • bc6da55e96 Merge pull request #860 from vmware-tanzu/dependabot/docker/golang-1.17.2 Mo Khan 2021-10-11 13:23:37 -04:00
  • 1bd346cbeb Require refresh tokens for upstream OIDC and save more session data Margo Crawford 2021-10-08 15:48:21 -07:00
  • d1d954bb3b Bump golang from 1.17.1 to 1.17.2 dependabot[bot] 2021-10-08 01:03:52 +00:00
  • 43244b6599 Do not pass through downstream prompt param Margo Crawford 2021-10-06 16:30:30 -07:00
  • c6f1d29538 Use PinnipedSession type instead of fosite's DefaultSesssion type Ryan Richard 2021-10-06 15:28:13 -07:00
  • a2cafb251a Merge pull request #857 from vmware-tanzu/impersonation-proxy-supported-clusters Margo Crawford 2021-10-06 11:40:24 -07:00
  • e0b62a46bb Merge branch 'main' into impersonation-proxy-supported-clusters Margo Crawford 2021-10-06 11:36:45 -07:00
  • 4aa66b9667 Update site/content/docs/reference/supported-clusters.md Margo Crawford 2021-10-06 11:23:29 -07:00
  • 11797db866 Change description of impersonation proxy strategy in supported clusters. Margo Crawford 2021-10-06 11:08:17 -07:00
  • c2c966b761 Merge pull request #856 from enj/enj/i/impersonation_proxy_signer_expiration Mo Khan 2021-10-06 13:51:52 -04:00
  • 4bf715758f Do not rotate impersonation proxy signer CA unless necessary Monis Khan 2021-10-06 11:46:54 -04:00
  • 946419fc18 Update ROADMAP.md anjalitelang 2021-10-05 19:31:33 -04:00
  • 2b9a869633 Merge pull request #851 from vmware-tanzu/dependabot/docker/distroless/static-7cb5539 Mo Khan 2021-10-01 08:26:29 -04:00
  • 19cecc3235 Bump distroless/static from be5d77c to 7cb5539 dependabot[bot] 2021-09-30 17:09:57 +00:00