Jens Langhammer
|
a5420fe019
|
providers/saml: lowercase acs URLs before checking
closes #249
|
2020-10-01 10:04:20 +02:00 |
Jens Langhammer
|
2e1849a732
|
providers/oauth2: lowercase all uris before checking redirect URI
see #249
|
2020-10-01 10:00:44 +02:00 |
Jens Langhammer
|
525d271535
|
*: apply new black styling
|
2020-09-30 19:34:22 +02:00 |
Jens Langhammer
|
9d5dd896f3
|
providers/proxy: start implementing basic_auth_enabled
see #244
|
2020-09-30 11:15:22 +02:00 |
Jens Langhammer
|
02f5f12089
|
providers/proxy: use external_url for launch URL, hide setup URLs
|
2020-09-30 11:14:50 +02:00 |
Jens Langhammer
|
90ea6dba90
|
providers/proxy: add pb_proxy scope for proxy that sends user_attributes
|
2020-09-30 11:13:59 +02:00 |
Jens Langhammer
|
760352202e
|
admin: fix get_form_class
|
2020-09-29 11:42:34 +02:00 |
Jens Langhammer
|
9724ded194
|
policies: change .form() and .serializer() to properties, add tests
|
2020-09-29 10:32:58 +02:00 |
Jens Langhammer
|
e54b98a80e
|
e2e: cleanup tests, remove XPATH selectors
|
2020-09-28 18:19:46 +02:00 |
Jens Langhammer
|
bd78087582
|
root: fix RemovedInDjango40Warning being triggered
|
2020-09-28 11:47:50 +02:00 |
Jens Langhammer
|
8f4e954160
|
providers/oauth2: rewrite introspection endpoint to allow basic or bearer auth
|
2020-09-28 11:42:27 +02:00 |
Jens Langhammer
|
b6d7847eae
|
providers/oauth2: fix token introspection view
|
2020-09-28 09:04:31 +02:00 |
Jens Langhammer
|
9d93da3d45
|
providers/proxy: fix formatting
|
2020-09-23 12:33:33 +02:00 |
Jens Langhammer
|
6458b1dbf8
|
providers/proxy: make upstream SSL Validation configurable
|
2020-09-23 12:20:14 +02:00 |
Jens Langhammer
|
cbcdaaf532
|
providers/oauth2: fix creation of new refresh token
|
2020-09-21 11:48:23 +02:00 |
Jens Langhammer
|
50c75087b8
|
lifecycle: fix startup logs not being full json
|
2020-09-21 11:04:31 +02:00 |
Jens Langhammer
|
87f44fada4
|
providers/oauth2: fix refreshtoken being initialised wrong
|
2020-09-19 22:23:11 +02:00 |
Jens Langhammer
|
a02fcb0a7a
|
providers/oauth2: use # as separate for code#adfs, check if # exists in response_type and trim
|
2020-09-19 18:37:50 +02:00 |
Jens Langhammer
|
5e6acee2a5
|
root: increase limit of max-attributes in pylint
|
2020-09-19 13:40:23 +02:00 |
Jens Langhammer
|
8b4222e7bb
|
providers/proxy: fix formatting
|
2020-09-19 12:21:31 +02:00 |
Jens Langhammer
|
5689f25c39
|
providers/proxy: add option to skip authentication for paths matching regular expressions
|
2020-09-19 11:32:04 +02:00 |
Jens Langhammer
|
83408b6ae0
|
stages/password: add failed_attempts_before_cancel to cancel a flow after x failed entries
|
2020-09-19 02:18:43 +02:00 |
Jens Langhammer
|
4749c3fad0
|
proxy: improve reconnect logic, send version, properly version proxy
|
2020-09-19 01:37:08 +02:00 |
Jens Langhammer
|
e75c9e9a79
|
providers/oauth2: make openid-configuration easily readable
|
2020-09-19 01:34:11 +02:00 |
Jens Langhammer
|
5a3c1137ab
|
providers/oauth2: add more info to configuration modal
|
2020-09-19 01:34:11 +02:00 |
Jens Langhammer
|
ddca46e24a
|
outposts: add modal to show setup information
|
2020-09-19 01:34:11 +02:00 |
Jens Langhammer
|
404c9ef753
|
providers/saml: improve __str__ of SAMLPropertyMapping
|
2020-09-18 23:50:31 +02:00 |
Jens Langhammer
|
e0c104ee5c
|
providers/oauth2: remove post_logout_redirect_uris
|
2020-09-18 23:37:40 +02:00 |
Jens Langhammer
|
20ffe833de
|
admin: fix create link for outposts
|
2020-09-18 21:28:48 +02:00 |
Jens Langhammer
|
2c2226610e
|
providers/oauth2: fix end-session view not working, add tests
|
2020-09-17 21:55:01 +02:00 |
Jens Langhammer
|
cba78b4de7
|
providers/*: fix launch_url not working
|
2020-09-17 21:53:57 +02:00 |
Jens Langhammer
|
4b39c71de0
|
providers/oauth2: accept token as post param
|
2020-09-16 23:38:55 +02:00 |
Jens Langhammer
|
818f417fd8
|
providers/oauth2: only send id_token as access_token if ADFS compat mode is enabled
|
2020-09-16 23:31:03 +02:00 |
Jens Langhammer
|
1e97af772f
|
providers/oauth2: add workaround for vcenter
|
2020-09-15 20:54:54 +02:00 |
Jens Langhammer
|
5c622cd4d2
|
providers/oauth2: make sub configurable based on hash, username, email and upn
|
2020-09-15 20:54:42 +02:00 |
Jens Langhammer
|
3cf558d594
|
providers/*: pass policy result objects when access denied
|
2020-09-14 21:52:25 +02:00 |
Jens Langhammer
|
e21ed92848
|
providers/oauth2: ensure flow is cleaned up on error
|
2020-09-14 18:40:44 +02:00 |
Jens Langhammer
|
2c07859b68
|
core: add automatic launch_url detection based on provider
|
2020-09-14 18:12:42 +02:00 |
Jens Langhammer
|
ae6304c05e
|
providers/proxy: fix provider requiring a certificate to be selected
|
2020-09-14 17:37:06 +02:00 |
Jens Langhammer
|
810f10edfe
|
providers/oauth2: fix several small implicit flow errors
|
2020-09-14 00:11:11 +02:00 |
Jens Langhammer
|
1c57128f11
|
providers/oauth2: fix token to code_token
|
2020-09-13 23:42:45 +02:00 |
Jens Langhammer
|
7fe9b8f0b4
|
providers/proxy: add domainless URL Validator
|
2020-09-13 21:52:34 +02:00 |
Jens Langhammer
|
ca0ba85023
|
providers/saml: disallow idp-initiated SSO by default and validate Request ID
|
2020-09-12 00:53:44 +02:00 |
Jens L
|
23cccebb96
|
pytest (#209)
|
2020-09-11 23:21:11 +02:00 |
Jens Langhammer
|
b3468bc265
|
providers/oauth2: fix comparison to undefined ResponseTypes
|
2020-09-10 16:26:55 +02:00 |
Jens L
|
268de20872
|
Proxy v2 (#189)
|
2020-09-03 00:04:12 +02:00 |
Jens L
|
ff810c689f
|
Replace Elastic APM with Sentry APM (#183)
|
2020-08-20 20:39:21 +02:00 |
Jens Langhammer
|
0eb94df1f7
|
providers/oauth2: fix redirect_uri not being checked correctly if multiple redirect_uris are configured
|
2020-08-20 16:41:00 +02:00 |
Jens L
|
c7a2410b1d
|
OAuth Provider Rewrite (#182)
|
2020-08-19 10:32:44 +02:00 |
Jens Langhammer
|
de2b67b111
|
providers/app_gw: improve templates
|
2020-08-01 22:13:12 +02:00 |