|
|
2ddf122d27
|
Revert "outposts/proxy: don't save raw jwt in cookie to prevent securecookie: the value is too long"
This reverts commit b3e40c6aed.
|
2021-12-12 17:58:19 +01:00 |
|
|
|
deebdf2bcc
|
outposts: fix unlabeled transaction
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-12 13:46:31 +01:00 |
|
|
|
4982c4abcb
|
outpost: add additional checks for websocket connection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-12 00:11:17 +01:00 |
|
|
|
f4988bc45e
|
outpost: rewrite re-connect logic without recws
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-11 22:53:59 +01:00 |
|
|
|
8abc9cc031
|
outposts: cleanup logs for failed binds
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-11 22:09:18 +01:00 |
|
|
|
63a19a1381
|
outposts/ldap: fix searches with mixed casing
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-09 20:55:51 +01:00 |
|
|
|
bd2e453218
|
outposts/ldap: Fix search case sensitivity. (#1897)
|
2021-12-08 20:11:56 +01:00 |
|
|
|
b3e40c6aed
|
outposts/proxy: don't save raw jwt in cookie to prevent securecookie: the value is too long
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-06 13:54:59 +01:00 |
|
|
|
ea097afeae
|
outposts/proxy: fix path prefix in static handler
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-02 19:21:40 +01:00 |
|
|
|
f8dc7f48f2
|
outposts/proxy: fix path for media
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-02 18:47:36 +01:00 |
|
|
|
40404ff41d
|
outposts/ldap: Rework/improve LDAP search logic. (#1687)
* outposts/ldap: Refactor searching so we key primarily off base dn
* docs: Updating guides on sssd and the ldap outpost.
|
2021-12-02 15:28:58 +01:00 |
|
|
|
85a417d22e
|
outposts/proxy: re-add rs256 support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-02 15:17:32 +01:00 |
|
|
|
347c3793fc
|
outposts/proxy: add additional headers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-02 14:19:57 +01:00 |
|
|
|
e42ad8db93
|
outposts/proxy: copy user-agent header from upstream request
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-02 10:01:54 +01:00 |
|
|
|
e917e756cc
|
outposts/proxy: make logging fields more consistent
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-02 09:58:50 +01:00 |
|
|
|
d0ceafe79e
|
outposts/proxy: add X-authentik-meta-version
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-01 20:59:45 +01:00 |
|
|
|
f2023a7af2
|
*: don't use go embed to make using custom files easier
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-01 20:35:28 +01:00 |
|
|
|
60b95271eb
|
outposts/proxy: add additional headers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-01 20:19:09 +01:00 |
|
|
|
3b068610b9
|
outposts/proxy: clean up header setting (don't copy all headers)
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-01 20:05:56 +01:00 |
|
|
|
9a393848b2
|
outpost: configure error reporting based off of main instance config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-29 14:42:19 +01:00 |
|
|
|
8b7f698c7b
|
outposts/proxy: continue compiling additional regexes even when one fails
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-28 15:06:26 +01:00 |
|
|
|
c7681dde32
|
outposts: reload on signal USR1, fix display of reload offset
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-24 22:45:27 +01:00 |
|
|
|
d1bd8f333b
|
outposts/proxy: use disableIndex for static files
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-19 10:50:56 +01:00 |
|
|
|
2ac9f5426d
|
outposts: don't panic when listening for metrics fails
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-19 10:37:13 +01:00 |
|
|
|
ae9f1c1063
|
outpost/ldap: fix panic when attempting to update without locked users mutex
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-18 19:36:27 +01:00 |
|
|
|
97b814ab33
|
outpost/proxy: show better error when hostname isn't configured
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-13 22:45:37 +01:00 |
|
|
|
f069cfb643
|
outposts/ldap: copy boundUsers map when running refresh instead of using blank map
closes #1651
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-13 00:26:01 +01:00 |
|
|
|
e7b4363d21
|
outposts/ldap: fix logic error in cached ldap searcher
closes #1779
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-11 23:18:32 +01:00 |
|
|
|
00324f922d
|
outposts: send SelectedChallenge when using MFA with Go FlowExecutor
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-11 21:27:06 +01:00 |
|
|
|
c98bdbacc5
|
providers/proxy: return list of configured scope names so outpost requests custom scopes
closes #1762
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-10 23:06:21 +01:00 |
|
|
|
202b057ce9
|
outposts/proxy: fix static files not being served in proxy mode
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-10 17:16:13 +01:00 |
|
|
|
e6963c543d
|
outpost: remove analytics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-08 19:35:53 +01:00 |
|
|
|
ed6659a46d
|
outpost/ldap: don't cleanup user info as it is overwritten on bind
closes #1651
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-08 14:41:38 +01:00 |
|
|
|
4d36699b78
|
outpost/ldap: cleanup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-06 19:32:11 +01:00 |
|
|
|
5a8c66d325
|
providers/ldap: memory Query (#1681)
* outposts/ldap: modularise ldap outpost, to allow different searchers and binders
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts/ldap: add basic in-memory searcher
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/ldap: add search mode field
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost: add search mode field
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-05 10:37:30 +01:00 |
|
|
|
dd82d55725
|
outposts: also send outpost type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-04 15:08:31 +01:00 |
|
|
|
8d766efecb
|
root: don't set signal on start when running in ci or dev
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-04 14:32:21 +01:00 |
|
|
|
9ac3b29418
|
outpost: add lightweight, anonymous metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-04 14:10:43 +01:00 |
|
|
|
8d5460a132
|
outposts: separate websocket re-connection logic to decrease requests on reconnect
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-30 21:33:50 +02:00 |
|
|
|
2e06786869
|
outpost/ldap: fix logging for mismatched provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-20 19:49:17 +02:00 |
|
|
|
02b4173d30
|
root: add utm_source
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-20 16:34:39 +02:00 |
|
|
|
4d51ec906d
|
internal/proxyv2: improve error handling when configuring app
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-13 21:48:11 +02:00 |
|
|
|
22a7c25526
|
internal: call GetStore on application to improve logging
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-12 13:33:20 +02:00 |
|
|
|
9ed236f7ab
|
outposts/ldap: Support hard coded uidNumber and gidNumber. (#1582)
|
2021-10-10 23:43:36 +02:00 |
|
|
|
f6e8dbfb5e
|
outposts/proxy: show full error message when user is authenticated
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-02 22:00:37 +02:00 |
|
|
|
3c1ac4c7ec
|
outposts/proxy: add new headers with unified naming
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-02 22:00:23 +02:00 |
|
|
|
52bbf454e3
|
outpost/proxy: fix missing negation for internal host ssl verification
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-02 21:17:15 +02:00 |
|
|
|
2462d58135
|
outposts/proxy: fix duplicate protocol in domain auth mode
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-27 20:49:00 +02:00 |
|
|
|
75ef4ce596
|
tests/e2e: add new ldap object classes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-26 14:57:42 +02:00 |
|
|
|
c2f3ce11b0
|
outposts/ldap: fix potential panic when converting attributes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-26 14:52:25 +02:00 |
|
