7806cff96f
lib: save task's call arguments for manual retry
2020-10-16 13:35:40 +02:00
b6eb0bf53d
providers/oauth2: add missing property_mapping template
2020-10-11 19:29:13 +02:00
610b6c7f70
policies: add PolicyAccessView, which does complete access checking
2020-10-11 19:26:20 +02:00
da9aaf69df
admin: add metrics and charts
2020-10-05 22:10:03 +02:00
9fb1ac98ec
Backup/Restore ( #256 )
...
* lifecycle: move s3 backup settings to s3 name
* providers/oauth2: fix for alerting for missing certificatekeypair
* lifecycle: add backup commands
see #252
* lifecycle: install postgres-client for 11 and 12
* root: migrate to DBBACKUP_STORAGE_OPTIONS, add region setting
* lifecycle: auto-clean last backups
* helm: add s3 region parameter, add cronjob for backups
* docs: add backup docs
* root: remove backup scheduled task for now
2020-10-03 20:36:36 +02:00
195d8fe71f
core: move name field to base Provider
2020-10-03 20:05:16 +02:00
e9a1a18ba3
providers/oauth2: ensure that when rs256 is selected, a certificate key pair is selected
2020-10-01 20:01:45 +02:00
6cd9edd38a
providers/oauth2: add missing token_validity field to Forms and API
2020-10-01 20:01:28 +02:00
2e1849a732
providers/oauth2: lowercase all uris before checking redirect URI
...
see #249
2020-10-01 10:00:44 +02:00
525d271535
*: apply new black styling
2020-09-30 19:34:22 +02:00
9724ded194
policies: change .form() and .serializer() to properties, add tests
2020-09-29 10:32:58 +02:00
e54b98a80e
e2e: cleanup tests, remove XPATH selectors
2020-09-28 18:19:46 +02:00
8f4e954160
providers/oauth2: rewrite introspection endpoint to allow basic or bearer auth
2020-09-28 11:42:27 +02:00
b6d7847eae
providers/oauth2: fix token introspection view
2020-09-28 09:04:31 +02:00
cbcdaaf532
providers/oauth2: fix creation of new refresh token
2020-09-21 11:48:23 +02:00
50c75087b8
lifecycle: fix startup logs not being full json
2020-09-21 11:04:31 +02:00
87f44fada4
providers/oauth2: fix refreshtoken being initialised wrong
2020-09-19 22:23:11 +02:00
a02fcb0a7a
providers/oauth2: use # as separate for code#adfs, check if # exists in response_type and trim
2020-09-19 18:37:50 +02:00
5e6acee2a5
root: increase limit of max-attributes in pylint
2020-09-19 13:40:23 +02:00
83408b6ae0
stages/password: add failed_attempts_before_cancel to cancel a flow after x failed entries
2020-09-19 02:18:43 +02:00
4749c3fad0
proxy: improve reconnect logic, send version, properly version proxy
2020-09-19 01:37:08 +02:00
e75c9e9a79
providers/oauth2: make openid-configuration easily readable
2020-09-19 01:34:11 +02:00
5a3c1137ab
providers/oauth2: add more info to configuration modal
2020-09-19 01:34:11 +02:00
e0c104ee5c
providers/oauth2: remove post_logout_redirect_uris
2020-09-18 23:37:40 +02:00
20ffe833de
admin: fix create link for outposts
2020-09-18 21:28:48 +02:00
2c2226610e
providers/oauth2: fix end-session view not working, add tests
2020-09-17 21:55:01 +02:00
cba78b4de7
providers/*: fix launch_url not working
2020-09-17 21:53:57 +02:00
4b39c71de0
providers/oauth2: accept token as post param
2020-09-16 23:38:55 +02:00
818f417fd8
providers/oauth2: only send id_token as access_token if ADFS compat mode is enabled
2020-09-16 23:31:03 +02:00
1e97af772f
providers/oauth2: add workaround for vcenter
2020-09-15 20:54:54 +02:00
5c622cd4d2
providers/oauth2: make sub configurable based on hash, username, email and upn
2020-09-15 20:54:42 +02:00
3cf558d594
providers/*: pass policy result objects when access denied
2020-09-14 21:52:25 +02:00
e21ed92848
providers/oauth2: ensure flow is cleaned up on error
2020-09-14 18:40:44 +02:00
2c07859b68
core: add automatic launch_url detection based on provider
2020-09-14 18:12:42 +02:00
810f10edfe
providers/oauth2: fix several small implicit flow errors
2020-09-14 00:11:11 +02:00
1c57128f11
providers/oauth2: fix token to code_token
2020-09-13 23:42:45 +02:00
23cccebb96
pytest ( #209 )
2020-09-11 23:21:11 +02:00
b3468bc265
providers/oauth2: fix comparison to undefined ResponseTypes
2020-09-10 16:26:55 +02:00
268de20872
Proxy v2 ( #189 )
2020-09-03 00:04:12 +02:00
ff810c689f
Replace Elastic APM with Sentry APM ( #183 )
2020-08-20 20:39:21 +02:00
0eb94df1f7
providers/oauth2: fix redirect_uri not being checked correctly if multiple redirect_uris are configured
2020-08-20 16:41:00 +02:00
c7a2410b1d
OAuth Provider Rewrite ( #182 )
2020-08-19 10:32:44 +02:00
