mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-05-19 06:11:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 86865d155a Switch fuzzing test to UTC Monis Khan 2020-11-19 14:04:25 -05:00
  • 3575be7742 Add authorization code storage Monis Khan 2020-11-18 23:30:05 -05:00
  • b7d823a077 Add generic Kube API based CRUD storage Monis Khan 2020-11-17 11:42:11 -05:00
  • a47617cad0 callback_handler.go: Add JWT Audience claim to storage Ryan Richard 2020-11-19 08:53:53 -08:00
  • ee84f31f42 callback_handler.go: Add JWT Issuer claim to storage Ryan Richard 2020-11-19 08:35:23 -08:00
  • ace861f722 callback_handler.go: get some thoughts down about default upstream claims Andrew Keesler 2020-11-19 11:08:21 -05:00
  • 2e62be3ebb callback_handler.go: assert correct args are passed to token exchange Andrew Keesler 2020-11-19 10:20:46 -05:00
  • 48e0250649 callback_handler.go: test that we request openid scope correctly Andrew Keesler 2020-11-19 09:28:56 -05:00
  • 6c72507bca callback_handler.go: add test for failed upstream exchange/validation Andrew Keesler 2020-11-19 09:00:41 -05:00
  • 63b8c6e4b2 callback_handler.go: test when state missing a needed param Andrew Keesler 2020-11-19 08:51:23 -05:00
  • ffdb7fa795 callback_handler.go: add a test for invalid state auth params Andrew Keesler 2020-11-19 08:41:44 -05:00
  • 652ea6bd2a Start using fosite in the Supervisor's callback handler Ryan Richard 2020-11-18 17:15:01 -08:00
  • 3bc5952f7e Merge pull request #227 from mattmoyer/add-authorizationconfig-omitempty Mo Khan 2020-11-18 20:10:55 -05:00
  • 7520dadbdd Use omitempty on UpstreamOIDCProvider spec.authorizationConfig field. Matt Moyer 2020-11-18 14:29:13 -06:00
  • 8a4be431f6 Merge pull request #230 from vmware-tanzu/scc Mo Khan 2020-11-18 17:46:01 -05:00
  • c32e452db8 Add nonroot SCC to work on OpenShift clusters Mo Khan 2020-11-18 17:08:45 -05:00
  • 24bd8b2e42 Merge pull request #226 from absoludity/fix-getting-started4 Ryan Richard 2020-11-18 13:39:04 -08:00
  • 227fbd63aa Use an interface instead of a concrete type for UpstreamOIDCIdentityProvider Ryan Richard 2020-11-18 13:38:13 -08:00
  • c83cec341b Merge branch 'main' into fix-getting-started4 Ryan Richard 2020-11-17 15:02:36 -08:00
  • 7404ee4531 Merge pull request #224 from mattmoyer/make-oidcclient-public Matt Moyer 2020-11-17 15:13:50 -06:00
  • e0a9bef6ce Move ./internal/oidcclient to ./pkg/oidcclient. Matt Moyer 2020-11-17 12:46:54 -06:00
  • 428b9f2758 Merge pull request #223 from mattmoyer/refactor-cert-gen Matt Moyer 2020-11-17 12:45:20 -06:00
  • 0d1ad6e1df Fix some broken resource grouping/ordering in Tiltfile. Matt Moyer 2020-11-17 12:21:15 -06:00
  • 6ce2f109bf Refactor certificate generation for integration test Dex. Matt Moyer 2020-11-17 11:24:38 -06:00
  • 3b9fb71dd1 Merge pull request #222 from mattmoyer/readd-supervisor-login-tests Matt Moyer 2020-11-17 11:16:01 -06:00
  • 97552aec5f Merge branch 'main' into callback-endpoint Ryan Richard 2020-11-17 09:06:54 -08:00
  • d6d808d185 Re-add the TestSupervisorLogin integration test. Matt Moyer 2020-11-17 09:21:17 -06:00
  • b75a6cdb76 Merge pull request #221 from mattmoyer/use-https-dex Matt Moyer 2020-11-16 20:47:16 -06:00
  • b31deff0fb Update integration tests to use HTTPS Dex for UpstreamOIDCProvider testing. Matt Moyer 2020-11-16 18:16:16 -06:00
  • ee978fdde8 Add controller support for spec.tls field. Matt Moyer 2020-11-16 18:15:58 -06:00
  • e867fb82b9 Add spec.tls field to UpstreamOIDCProvider API. Matt Moyer 2020-11-16 14:42:43 -06:00
  • b17ac6ec0b Update integration tests to run Dex over HTTPS. Matt Moyer 2020-11-16 14:04:08 -06:00
  • dd2133458e Add --ca-bundle flag to "pinniped login oidc" command. Matt Moyer 2020-11-16 11:54:13 -06:00
  • e7ecfd3954 Merge pull request #219 from mattmoyer/add-test-proxy Matt Moyer 2020-11-16 17:48:16 -06:00
  • c8b17978a9 Convert CLI tests to work through an HTTP forward proxy. Matt Moyer 2020-11-16 10:40:18 -06:00
  • a4733025ce Merge pull request #220 from jonasrosland/fix-landing-text Matt Moyer 2020-11-16 16:36:44 -06:00
  • 1c7601a2b5 callback_handler.go: start happy path test with redirect Andrew Keesler 2020-11-16 17:07:34 -05:00
  • 052cdc40dc callback_handler.go: add CSRF and version state validations Ryan Richard 2020-11-16 14:41:00 -05:00
  • 332ed8e50b Fix landing page use cases jonasrosland 2020-11-16 12:00:06 -05:00
  • 4138c9244f callback_handler.go: write 2 invalid cookie tests Andrew Keesler 2020-11-16 11:47:49 -05:00
  • 57a2dc9fc1 Update default namespace for pinniped-concierge to match install-pinniped-concierge.yaml Michael Nelson 2020-11-05 17:29:43 +11:00
  • 9bb9402e89 Updated doc/demo.md with required namespace Michael Nelson 2020-11-05 17:27:34 +11:00
  • 3ef1171667 Tiny bit more code for Supervisor's callback_handler.go Andrew Keesler 2020-11-13 15:59:51 -08:00
  • 84b61fac88 Merge pull request #215 from mattmoyer/fix-upstream-oidc-provider Matt Moyer 2020-11-13 17:23:10 -06:00
  • c10393b495 Mask the raw error messages from go-oidc, since they are dangerous. Matt Moyer 2020-11-13 15:29:32 -06:00
  • d3d8ef44a0 Make more fields in UpstreamOIDCProvider optional. Matt Moyer 2020-11-13 15:28:37 -06:00
  • d5ee925e62 Merge pull request #213 from mattmoyer/more-categories Mo Khan 2020-11-13 15:51:42 -05:00
  • 47d216caae Merge pull request #209 from alexbrand/doc-fixes Mo Khan 2020-11-13 15:51:13 -05:00
  • 406d6b5544 docs/scope.md: Fix link to contrib guide Alexander Brand 2020-11-13 09:18:48 -05:00
  • ab87977c08 Put our TokenCredentialRequest API into the "pinniped" category. Matt Moyer 2020-11-13 12:09:22 -06:00
  • f4dfc22f8e Merge pull request #212 from enj/enj/i/restore_cert_ttl Matt Moyer 2020-11-13 14:11:44 -06:00
  • 785a1d14fb Merge pull request #199 from mattmoyer/add-oidc-upstream-crd Matt Moyer 2020-11-13 13:01:13 -06:00
  • d68a4b85f4 Add integration tests for UpstreamOIDCProvider status. Matt Moyer 2020-11-11 18:28:42 -06:00
  • cbd71df574 Add "upstream-watcher" controller to supervisor. Matt Moyer 2020-11-11 17:10:06 -06:00
  • c05cbca0b0 Reduce client cert TTL back to 5 mins Monis Khan 2020-11-13 11:43:23 -05:00
  • 2e7d869ccc Add generated API/client code for new UpstreamOIDCProvider CRD. Matt Moyer 2020-11-03 14:55:25 -06:00
  • bac3c19bec Add UpstreamOIDCProvider API type definition. Matt Moyer 2020-10-22 21:03:46 -05:00
  • 81b9a48437 callback_handler.go: initial API/test shape with 1 test Andrew Keesler 2020-11-13 12:31:39 -05:00
  • 271640b66d docs/architecture.md: Fix broken link Alexander Brand 2020-11-13 09:17:47 -05:00
  • 6b0d4184d5 docs/architecture.md: Fix broken link Alexander Brand 2020-11-13 09:15:46 -05:00
  • d351ef430c Merge pull request #206 from vmware-tanzu/authorize_endpoint_reuse_cookie Ryan Richard 2020-11-12 16:26:01 -08:00
  • e6f128e2a7 Merge pull request #205 from mattmoyer/more-careful-categories Matt Moyer 2020-11-12 17:37:20 -06:00
  • 080bb594b2 Supervisor authorize endpoint reuses existing CSRF cookies and signs new ones Andrew Keesler 2020-11-12 15:36:59 -08:00
  • f1696411d9 Test that Pinniped APis do not have short names, either. Matt Moyer 2020-11-12 16:49:21 -06:00
  • 5580ca82ac Merge pull request #204 from mattmoyer/cleanup-update-script Matt Moyer 2020-11-12 16:28:24 -06:00
  • 7f2c43cd62 Put all of our APIs into a "pinniped" category, and never use "all". Matt Moyer 2020-11-12 16:24:25 -06:00
  • 372cfe1601 Remove CRD count check, since we can now use wildcards. Matt Moyer 2020-11-12 15:48:03 -06:00
  • d73fdb1d33 Merge pull request #202 from mattmoyer/remove-internal-crd-packages Mo Khan 2020-11-12 15:29:29 -05:00
  • 821190004c Remove extraneous internal packages for CRD APIs. Matt Moyer 2020-11-12 13:44:51 -06:00
  • 8321773a22 auth_handler.go: fix lint error Andrew Keesler 2020-11-12 12:24:40 -05:00
  • 3a943a3b9a auth_handler.go: ignore encoding timestamp for deterministic tests Andrew Keesler 2020-11-12 12:13:58 -05:00
  • 6d380c629a auth_handler.go: use encryption in tests Ryan Richard 2020-11-12 12:13:21 -05:00
  • 5fd105496f Merge pull request #201 from amymanion/am-dev Matt Moyer 2020-11-12 09:12:24 -06:00
  • b3e622c914 Merge pull request #200 from jonasrosland/website-fixes Matt Moyer 2020-11-12 09:10:28 -06:00
  • c4ed768c9e Adjust hero font size Amy Manion 2020-11-12 09:46:44 -05:00
  • ef11f97a75 Style updates -adjust font sizes -fix ordered lists Amy Manion 2020-11-11 22:03:27 -05:00
  • 0b41469527 Website fixes for broken links, formatting, and more Jonas Rosland 2020-11-11 21:40:49 -05:00
  • 8859172025 Merge pull request #198 from enj/enj/i/multi_api_service Mo Khan 2020-11-11 20:44:42 -05:00
  • 9c8b081906 Prevent multiple pinnipeds from thrashing on the API service Monis Khan 2020-11-11 17:49:13 -05:00
  • 300d522eb0 Merge pull request #185 from vmware-tanzu/authorize_endpoint Ryan Richard 2020-11-11 16:03:15 -08:00
  • 203e040be1 Remove an unfinished integration test Ryan Richard 2020-11-11 15:40:40 -08:00
  • fdcea0de05 Merge pull request #197 from jonasrosland/a-seal-of-approval Matt Moyer 2020-11-11 17:33:40 -06:00
  • db6fc234b7 Add NullStorage for the authorize endpoint to use Monis Khan 2020-11-11 14:49:24 -08:00
  • e6838ace6b Add first blog post jonasrosland 2020-11-11 17:06:36 -05:00
  • 4b8c1de647 Add unit test to auth_handler_test.go for non-openid authorize requests Ryan Richard 2020-11-11 13:13:57 -08:00
  • c2262773e6 Finish the WIP from the previous commit for saving authorize endpoint state Andrew Keesler 2020-11-11 12:29:14 -08:00
  • f806768039 Merge pull request #196 from ankeesler/ytt-logging Andrew Keesler 2020-11-11 09:29:24 -05:00
  • 83a156d72b Enable debug logging in all testing scenarios Andrew Keesler 2020-11-11 07:51:51 -05:00
  • 724c0d3eb0 Add YTT template value for setting log level Andrew Keesler 2020-11-11 07:49:46 -05:00
  • dd190dede6 WIP for saving authorize endpoint state into upstream state param Monis Khan 2020-11-10 17:58:00 -08:00
  • 5b8e0c4d99 Merge pull request #195 from mattmoyer/fix-links Matt Moyer 2020-11-10 17:22:37 -06:00
  • b2b8d5457d Fix some links on the community page. Matt Moyer 2020-11-10 17:19:30 -06:00
  • 16ef0b2d41 Merge pull request #194 from jonasrosland/website-fixes Matt Moyer 2020-11-10 16:24:51 -06:00
  • d097de7fdf Minor website fixes and adding netlify configs jonasrosland 2020-11-10 16:03:07 -05:00
  • 101394c714 Merge pull request #188 from smalltalk-ai/main Matt Moyer 2020-11-10 14:51:45 -06:00
  • 06df825dab Merge pull request #193 from mattmoyer/add-extra-sites Matt Moyer 2020-11-10 14:03:37 -06:00
  • f7efc360a0 Add Netlify configs for extra redirect domains. Matt Moyer 2020-11-10 13:58:31 -06:00
  • ad74f259de Content updates -remove extra blog posts -remove extra images -replace Andrew’s picture Amy Manion 2020-11-10 13:39:13 -05:00
  • 005225d5f9 Use the new plog pkg in auth_handler.go Andrew Keesler 2020-11-10 10:33:52 -08:00
  • b9726615dd Merge branch 'main' into authorize_endpoint Ryan Richard 2020-11-10 09:29:21 -08:00