Jens Langhammer
|
b0bd68232d
|
Merge branch 'master' into version-0.14
|
2020-12-28 16:02:46 +01:00 |
Jens Langhammer
|
2bab4ebfe8
|
core: fix library url pattern not matching SPA
|
2020-12-28 15:06:25 +01:00 |
Jens Langhammer
|
65355372ce
|
Merge branch 'master' into version-0.14
|
2020-12-28 14:33:28 +01:00 |
dependabot[bot]
|
a8647caca9
|
build(deps): bump @types/codemirror from 0.0.102 to 0.0.103 in /web (#433)
Bumps [@types/codemirror](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/codemirror) from 0.0.102 to 0.0.103.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/codemirror)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2020-12-28 14:32:57 +01:00 |
Jens Langhammer
|
590597caf6
|
events: replace list view with SPA Page
|
2020-12-28 14:32:34 +01:00 |
Jens Langhammer
|
7b43777b22
|
web: reset expanded rows on fetch
|
2020-12-28 14:04:07 +01:00 |
Jens Langhammer
|
77861b52e3
|
web: fix search loading old results when using enter
|
2020-12-28 13:56:33 +01:00 |
Jens Langhammer
|
5f9c1e229c
|
root: return API dates as timestamp
|
2020-12-28 13:07:49 +01:00 |
Jens Langhammer
|
119adb3e7b
|
web: fix old default URL
|
2020-12-28 13:07:35 +01:00 |
Jens Langhammer
|
5db38bd0b7
|
web: lazy-render expanded table
|
2020-12-28 13:07:20 +01:00 |
Jens Langhammer
|
0e1587bc1a
|
providers/oauth2: don't write authorization code to event log
|
2020-12-28 01:07:18 +01:00 |
Jens Langhammer
|
dc16a8a4c9
|
providers/proxy: set proxy-size for nginx for larger response
|
2020-12-28 00:45:58 +01:00 |
Jens Langhammer
|
53d9092022
|
release: 0.14.0-rc1
|
2020-12-27 22:39:05 +01:00 |
Jens L
|
a6d0c8c26c
|
providers/saml: Metadata Import (#432)
* providers/saml: add basic metadata parser
* providers/saml: add importer for Singing certificate, validate signature, add tests
* providers/saml: add provider name to form,
* web: don't use trailing slash for spa URLs
* providers/saml: formatting fixes
* sources/*: add verbose_name to source serializers
* admin: add button launch import modal
|
2020-12-27 22:38:04 +01:00 |
Jens Langhammer
|
5797a3743a
|
docs: prepare 0.14 release
|
2020-12-27 22:16:31 +01:00 |
Jens Langhammer
|
b7e43efb34
|
docs: use version-0.13 branch for 0.13 instructions
|
2020-12-27 22:11:53 +01:00 |
Jens Langhammer
|
48df12d045
|
proxy: update to latest stable oauth2_proxy version
|
2020-12-27 20:14:08 +01:00 |
Jens Langhammer
|
4fea0f5939
|
web: fix error when applications have no provider assigned
|
2020-12-27 19:40:50 +01:00 |
Jens Langhammer
|
a7bdd63e4d
|
web: make siteshell's loading be relative to parent
|
2020-12-27 19:36:30 +01:00 |
Jens Langhammer
|
e216efb6ec
|
providers/oauth2: create access tokens as JWT
|
2020-12-27 19:36:17 +01:00 |
Jens Langhammer
|
378fe38b12
|
providers/oauth2: ensure response is URL fragment only when implicit or hybrid
|
2020-12-27 19:07:42 +01:00 |
Jens Langhammer
|
ce9fb8801c
|
providers/oauth2: ensure nonce is validated on all OIDC flows
|
2020-12-27 18:13:41 +01:00 |
Jens Langhammer
|
67ca83c228
|
providers/oauth2: add c_hash field
|
2020-12-27 18:13:13 +01:00 |
Jens Langhammer
|
ee2e737782
|
providers/oauth2: remove response_type field as spec doesn't require validation
|
2020-12-27 18:12:47 +01:00 |
Jens Langhammer
|
b04c9a2098
|
providers/oauth2: check redirect_uri before request object
|
2020-12-27 17:15:36 +01:00 |
Jens Langhammer
|
7f7b7e37c1
|
docs: rename upgrading to release notes
|
2020-12-27 15:35:58 +01:00 |
Jens Langhammer
|
e7c96eb70d
|
providers/oauth2: Make AuthorizeError's state parameter requireed
|
2020-12-27 15:33:29 +01:00 |
Jens Langhammer
|
e8debce9c8
|
providers/oauth2: fix infinite loops when prompt=login
|
2020-12-27 15:23:26 +01:00 |
Jens Langhammer
|
bcd0686a33
|
providers/oauth2: redirect back correctly with state on AuthorizationError
|
2020-12-27 15:22:53 +01:00 |
Jens Langhammer
|
55322995a1
|
providers/oauth2: make iss field configurable
|
2020-12-27 15:02:12 +01:00 |
Jens Langhammer
|
dff5eb69c8
|
providers/oauth2: fix token endpoint creating invalid token when no scopes are passed
|
2020-12-27 14:48:44 +01:00 |
Jens Langhammer
|
b747022bc1
|
providers/oauth2: fix old id_token being sent when using token endpoint with grant_type=refresh_token
|
2020-12-27 14:33:51 +01:00 |
Jens Langhammer
|
885fcff495
|
providers/oauth2: add grant_types_supported to discovery endpoint
|
2020-12-27 14:17:40 +01:00 |
Jens Langhammer
|
5b18e28753
|
providers/oauth2: fix include_claims_in_id_token not being shown in form/API
|
2020-12-27 14:05:10 +01:00 |
Jens Langhammer
|
9848c5f3eb
|
providers/oauth2: implement discovery's scopes_supported better
|
2020-12-27 13:36:14 +01:00 |
Jens Langhammer
|
fc98c3934a
|
providers/*: implement configuration_error
|
2020-12-27 13:15:31 +01:00 |
Jens Langhammer
|
7964061466
|
events: add configuration_error action
|
2020-12-27 13:11:38 +01:00 |
Jens Langhammer
|
5f90f54195
|
stages/invitation: ensure created_by is set when creating from API
|
2020-12-27 13:11:28 +01:00 |
Jens Langhammer
|
49eb568d3c
|
stages/invitation: remove invitation_created signal as model_created functions the same
|
2020-12-27 13:00:52 +01:00 |
Jens Langhammer
|
d47d9103c7
|
tests: fix e2e tests for redirect_uri errors
|
2020-12-27 13:00:05 +01:00 |
Jens Langhammer
|
12cbe464fc
|
web: fix table styling on mobile
|
2020-12-27 12:50:12 +01:00 |
Jens Langhammer
|
d17b2b0d1b
|
providers/oauth2: add request_parameter_supported
|
2020-12-27 12:18:23 +01:00 |
Jens Langhammer
|
f17d809219
|
providers/oauth2: add scopes_supported to discovery endpoint
|
2020-12-26 21:18:16 +01:00 |
Jens Langhammer
|
6c8e9fb553
|
providers/oauth2: add ACR support
|
2020-12-26 20:16:50 +01:00 |
Jens Langhammer
|
43bb29e16a
|
providers/oauth2: implement max_age param
|
2020-12-26 20:05:31 +01:00 |
Jens Langhammer
|
29edbb0357
|
providers/oauth2: use auth_time from LOGIN event
|
2020-12-26 19:05:02 +01:00 |
Jens Langhammer
|
12ae867759
|
providers/oauth2: redirect back on prompt=none error instead of showing message
|
2020-12-26 18:58:18 +01:00 |
Jens Langhammer
|
a20ca9136b
|
providers/oauth2: use in for prompt check
|
2020-12-26 18:53:47 +01:00 |
Jens Langhammer
|
3759e96e7d
|
providers/oauth2: ensure interaction_required is raised when prompt=none and user not logged in
|
2020-12-26 18:45:23 +01:00 |
Jens Langhammer
|
480d882a82
|
policies: add pre_permission_check to PolicyAccessView for request validity checks
|
2020-12-26 18:43:45 +01:00 |