Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | /auth/oidc endpoint has 31 day limit | Bryan Newbold | 2019-01-08 | 1 | -2/+2 |
| | |||||
* | iterate on macaroon time caveat names | Bryan Newbold | 2019-01-08 | 2 | -22/+20 |
| | |||||
* | add auth/check endpoint | Bryan Newbold | 2019-01-07 | 12 | -47/+454 |
| | |||||
* | commit missing bits from username length change | Bryan Newbold | 2019-01-07 | 1 | -1/+3 |
| | |||||
* | bump allowed username length to 25 chars | Bryan Newbold | 2019-01-07 | 1 | -1/+1 |
| | |||||
* | only superusers get auto-magic-privs | Bryan Newbold | 2019-01-07 | 3 | -3/+3 |
| | |||||
* | fix base64 bogus auth keys | Bryan Newbold | 2019-01-04 | 1 | -2/+2 |
| | |||||
* | add superuser role/flag | Bryan Newbold | 2019-01-04 | 6 | -31/+44 |
| | |||||
* | rust: TODO updates | Bryan Newbold | 2019-01-04 | 1 | -4/+7 |
| | |||||
* | update rust README | Bryan Newbold | 2019-01-04 | 1 | -1/+16 |
| | |||||
* | document rust fatcatd config | Bryan Newbold | 2019-01-04 | 3 | -9/+36 |
| | |||||
* | fix rust side of login | Bryan Newbold | 2019-01-03 | 2 | -8/+18 |
| | |||||
* | allow passing prefered_username in oidc signup/login | Bryan Newbold | 2019-01-03 | 4 | -2/+12 |
| | |||||
* | editor update | Bryan Newbold | 2019-01-03 | 2 | -4/+127 |
| | |||||
* | rust codegen | Bryan Newbold | 2019-01-03 | 9 | -5/+433 |
| | |||||
* | better username constraints in SQL | Bryan Newbold | 2019-01-03 | 1 | -1/+3 |
| | |||||
* | start to impl oidc auth | Bryan Newbold | 2019-01-03 | 4 | -8/+146 |
| | |||||
* | OIDC auth table, and is_active editor flag | Bryan Newbold | 2019-01-03 | 2 | -0/+13 |
| | |||||
* | crude /auth/oidc endpoint (and codegen) | Bryan Newbold | 2019-01-03 | 10 | -39/+605 |
| | |||||
* | rust fmt | Bryan Newbold | 2018-12-31 | 3 | -11/+4 |
| | |||||
* | add missing security/auth declarations | Bryan Newbold | 2018-12-31 | 4 | -1/+151 |
| | |||||
* | make editor_id optional when createding editgroup | Bryan Newbold | 2018-12-31 | 11 | -17/+67 |
| | | | | The editor_id can be infered from auth metadata. | ||||
* | make admin auth_epoch old so test tokens don't expire | Bryan Newbold | 2018-12-31 | 1 | -4/+4 |
| | |||||
* | allow multiple 'alt' keys to be specified in env | Bryan Newbold | 2018-12-31 | 3 | -1/+32 |
| | |||||
* | bit of auth docs | Bryan Newbold | 2018-12-31 | 2 | -0/+7 |
| | |||||
* | crude admin auth in tests | Bryan Newbold | 2018-12-31 | 4 | -21/+69 |
| | |||||
* | add auth middleware back in | Bryan Newbold | 2018-12-31 | 2 | -3/+95 |
| | | | | | | | | | I was hoping I didn't need this middleware, but I actually do, or the swagger generated code returns unauthenticated. The middleware doesn't actually do much validation, just extracts the (string) token and does nothing with it. Acutal verification happens in user code using AuthData struct. | ||||
* | tests: disable client tests | Bryan Newbold | 2018-12-31 | 2 | -23/+25 |
| | | | | | | | | | | | | But un-comments a bunch of code (and fixes type bugs with that). Something about calling iron::http() has broken, such that the call blocks. I thought it might be a port thing, but doesn't seem like it. Presumably this is what was causing problems with the "old_python_tests" second test previously. For now, just disabling; these integration-level tests best done from python anyways. | ||||
* | rustfmt; implement role-based auth checks | Bryan Newbold | 2018-12-31 | 8 | -107/+304 |
| | |||||
* | codegen | Bryan Newbold | 2018-12-31 | 7 | -2035/+1380 |
| | |||||
* | wire-up auth config via ENV | Bryan Newbold | 2018-12-31 | 6 | -49/+56 |
| | |||||
* | include unwrap() in tests | Bryan Newbold | 2018-12-29 | 1 | -1/+1 |
| | |||||
* | basic auth unittests | Bryan Newbold | 2018-12-28 | 4 | -6/+55 |
| | |||||
* | more auth refactoring | Bryan Newbold | 2018-12-28 | 4 | -59/+76 |
| | |||||
* | start refactor of auth code | Bryan Newbold | 2018-12-28 | 7 | -188/+121 |
| | | | | | | | Pulls auth code (which requires the persistent state of a signing keyring) into a struct. Doesn't try verify macaroon in middleware, do it in individual wrappers. | ||||
* | more basic work on auth | Bryan Newbold | 2018-12-27 | 4 | -47/+200 |
| | |||||
* | bump busted libmacaroons-rs dependency | Bryan Newbold | 2018-12-27 | 2 | -4/+4 |
| | |||||
* | sql codegen and WIP on auth command | Bryan Newbold | 2018-12-27 | 4 | -25/+70 |
| | |||||
* | sql: add index on editor username | Bryan Newbold | 2018-12-27 | 1 | -0/+1 |
| | |||||
* | add libsodium-dev as a dep | Bryan Newbold | 2018-12-26 | 1 | -0/+1 |
| | |||||
* | start skeleton of auth internal bits | Bryan Newbold | 2018-12-26 | 4 | -9/+222 |
| | |||||
* | add macaroon dep | Bryan Newbold | 2018-12-26 | 2 | -0/+96 |
| | | | | Unfortunately, a patched copy for now. :( | ||||
* | first attempt at auth in DB schema | Bryan Newbold | 2018-12-26 | 1 | -1/+4 |
| | |||||
* | first attempt at auth in API spec | Bryan Newbold | 2018-12-26 | 7 | -1/+3782 |
| | |||||
* | impl edit_id change | Bryan Newbold | 2018-12-26 | 4 | -15/+17 |
| | |||||
* | codegen | Bryan Newbold | 2018-12-26 | 8 | -407/+553 |
| | |||||
* | schemas: editor_id as UUID (not int) | Bryan Newbold | 2018-12-26 | 1 | -7/+7 |
| | |||||
* | rust impl last webcapture schema tweaks | Bryan Newbold | 2018-12-26 | 9 | -34/+31 |
| | |||||
* | webcapture: status_code nullable; cdx timestamp string | Bryan Newbold | 2018-12-26 | 1 | -2/+2 |
| | |||||
* | fileset/web support for exports | Bryan Newbold | 2018-12-26 | 1 | -0/+10 |
| |