16 Commits

Author	SHA1	Message	Date
Jens Langhammer	f8aab40e3e	internal: cleanup duplicate and redundant code, properly set sentry SDK scope settings ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-16 11:00:19 +01:00
Jens Langhammer	deebdf2bcc	outposts: fix unlabeled transaction ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-12 13:46:31 +01:00
Jens Langhammer	00324f922d	outposts: send SelectedChallenge when using MFA with Go FlowExecutor ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-11 21:27:06 +01:00
Jens L	5a8c66d325	providers/ldap: memory Query (#1681) ... * outposts/ldap: modularise ldap outpost, to allow different searchers and binders Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/ldap: add basic in-memory searcher Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/ldap: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 10:37:30 +01:00
Jens L	7158c9d2ea	core: metrics v2 (#1370) ... * outposts: add ldap metrics, move ping to 9100 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: add flow_executor metrics Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * use port 9300 for metrics, add core metrics port Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/controllers/k8s: add service monitor creation support Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-09 15:52:24 +02:00
Jens L	3c1b70c355	outposts/proxyv2 (#1365) ... * outposts/proxyv2: initial commit Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add rs256 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> more stuff Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add forward auth an sign_out Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> match cookie name Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> re-add support for rs256 for backwards compat Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add error handler Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> ensure unique user-agent is used Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> set cookie duration based on id_token expiry Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> build proxy v2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add ssl Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add basic auth and custom header support Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add application cert loading Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> implement whitelist Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add redis Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> migrate embedded outpost to v2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> remove old proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> providers/proxy: make token expiration configurable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add metrics Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> fix tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: only allow one redirect URI Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix docker build for proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * remove default port offset Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add AUTHENTIK_HOST_BROWSER Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests: fix e2e/integration tests not using proper tags Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * remove references of old port Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix user_attributes not being loaded correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup dependencies Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-08 18:04:56 +00:00
Jens Langhammer	9ad4cf1db9	outposts/ldap: improve logging of client IPs ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-05 19:47:30 +02:00
Jens Langhammer	70d1e3a0cb	outpost: fix spans being sent without parent context ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-03 18:17:08 +02:00
Jens Langhammer	8acb15a7fd	outpost: fix flow executor not sending password for identification stage ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-27 09:43:07 +02:00
Jens Langhammer	ff24bc8cb8	outpost/ldap: regularly pre-heat flow executor cache to increase bind performance ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-21 16:17:30 +02:00
Jens Langhammer	aca3a5c458	outpost: add tracing for http client ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-23 17:37:06 +02:00
Jens Langhammer	0d0dcf8de0	outposts/ldap: optimise backend Search API requests ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-22 20:38:30 +02:00
Jens Langhammer	1b4654bb1d	outposts/ldap: add tracing for LDAP bind and search ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-22 19:23:56 +02:00
Jens Langhammer	d87871f806	outposts/ldap: improve logging, add request ID ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-19 13:41:29 +02:00
Jens Langhammer	a2c587be43	outposts: don't authenticate as service user for flows to set remote-ip ... set outpost token as additional header and check that token (user) if they can override remote-ip Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-19 13:17:13 +02:00
Jens Langhammer	36de302250	outposts: separate CLI flow executor from ldap ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-18 15:51:48 +02:00