Jens Langhammer
20ffe833de
admin: fix create link for outposts
2020-09-18 21:28:48 +02:00
Jens Langhammer
2c2226610e
providers/oauth2: fix end-session view not working, add tests
2020-09-17 21:55:01 +02:00
Jens Langhammer
cba78b4de7
providers/*: fix launch_url not working
2020-09-17 21:53:57 +02:00
Jens Langhammer
4b39c71de0
providers/oauth2: accept token as post param
2020-09-16 23:38:55 +02:00
Jens Langhammer
818f417fd8
providers/oauth2: only send id_token as access_token if ADFS compat mode is enabled
2020-09-16 23:31:03 +02:00
Jens Langhammer
1e97af772f
providers/oauth2: add workaround for vcenter
2020-09-15 20:54:54 +02:00
Jens Langhammer
5c622cd4d2
providers/oauth2: make sub configurable based on hash, username, email and upn
2020-09-15 20:54:42 +02:00
Jens Langhammer
3cf558d594
providers/*: pass policy result objects when access denied
2020-09-14 21:52:25 +02:00
Jens Langhammer
e21ed92848
providers/oauth2: ensure flow is cleaned up on error
2020-09-14 18:40:44 +02:00
Jens Langhammer
2c07859b68
core: add automatic launch_url detection based on provider
2020-09-14 18:12:42 +02:00
Jens Langhammer
ae6304c05e
providers/proxy: fix provider requiring a certificate to be selected
2020-09-14 17:37:06 +02:00
Jens Langhammer
810f10edfe
providers/oauth2: fix several small implicit flow errors
2020-09-14 00:11:11 +02:00
Jens Langhammer
1c57128f11
providers/oauth2: fix token to code_token
2020-09-13 23:42:45 +02:00
Jens Langhammer
7fe9b8f0b4
providers/proxy: add domainless URL Validator
2020-09-13 21:52:34 +02:00
Jens Langhammer
ca0ba85023
providers/saml: disallow idp-initiated SSO by default and validate Request ID
2020-09-12 00:53:44 +02:00
Jens L
23cccebb96
pytest ( #209 )
2020-09-11 23:21:11 +02:00
Jens Langhammer
b3468bc265
providers/oauth2: fix comparison to undefined ResponseTypes
2020-09-10 16:26:55 +02:00
Jens L
268de20872
Proxy v2 ( #189 )
2020-09-03 00:04:12 +02:00
Jens L
ff810c689f
Replace Elastic APM with Sentry APM ( #183 )
2020-08-20 20:39:21 +02:00
Jens Langhammer
0eb94df1f7
providers/oauth2: fix redirect_uri not being checked correctly if multiple redirect_uris are configured
2020-08-20 16:41:00 +02:00
Jens L
c7a2410b1d
OAuth Provider Rewrite ( #182 )
2020-08-19 10:32:44 +02:00
Jens Langhammer
de2b67b111
providers/app_gw: improve templates
2020-08-01 22:13:12 +02:00
Jens Langhammer
e1bbbe6671
providers/app_gw: disable client authz to use passbook
2020-08-01 20:53:55 +02:00
Jens Langhammer
8b3839343c
providers/oidc: remove static lookup for OIDCProvider, get related object for app_gw
2020-08-01 20:53:33 +02:00
Jens Langhammer
7897ca4744
providers/app_gw: fix Client scopes and URLs
2020-08-01 20:33:38 +02:00
Jens Langhammer
1a21012911
providers/app_gw: fix URL Validation not working for internal and external host
2020-08-01 20:02:43 +02:00
Jens Langhammer
d4a5269bf1
*: Adjust forms to only show respective types of Flows and PropertyMappings
2020-08-01 20:02:23 +02:00
Jens Langhammer
fcf70a3cd4
providers/app_gw: Fix K8s template labels, add missing ISSUER_URL
2020-08-01 19:47:40 +02:00
Jens Langhammer
1a6dd00681
providers/saml: fix X509Data container linebreaks
2020-08-01 19:38:59 +02:00
Jens Langhammer
330bd0932b
providers/saml: fix NotOnOrAfter using incorrect timestamp
2020-08-01 19:38:41 +02:00
Jens Langhammer
ddb0fdee98
providers/app_gw: generate docker-compose in code
2020-07-26 22:01:37 +02:00
Jens Langhammer
83205f1b49
providers/app_gw: use full URL with protocol for internal/external_host
2020-07-26 22:01:20 +02:00
Jens Langhammer
ae629d1159
providers/oauth: remove LoginRequired from AuthorizationFlowInitView as user is redirected within
2020-07-25 21:36:50 +02:00
Jens Langhammer
72a6f9cbe0
providers/saml: remove LoginRequired from SAMLSSOView as user is redirected within
2020-07-25 21:36:28 +02:00
Jens Langhammer
9793b7461b
providers/oidc: remove LoginRequired from AuthorizationFlowInitView as user is redirected within
2020-07-25 21:35:38 +02:00
Jens Langhammer
9c1a824dc4
providers/app_gw: fix Issuer URL being incorrect, fix incorrect length cookie secret
2020-07-25 21:34:14 +02:00
Jens Langhammer
37a432267d
Squashed commit of the following:
...
commit 88029a4335
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 16:55:55 2020 +0200
admin: update to work with new form
commit 4040eb9619
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 16:43:30 2020 +0200
*: remove path-based import from all PropertyMappings
commit c9663a08da
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 16:33:34 2020 +0200
flows: update work with new stages
commit a3d92ebc0a
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 16:23:30 2020 +0200
stages/*: remove path-based import from all stages
commit 6fa825e372
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 16:03:55 2020 +0200
providers/*: remove path-based import from all providers
commit 6aefd072c8
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 15:58:48 2020 +0200
policies/*: remove path-based import from all policies
commit ac2dd3611f
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 15:11:27 2020 +0200
sources/*: remove path-based import from all sources
commit 74e628ce9c
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 14:43:38 2020 +0200
ui: allow overriding of verbose_name
commit d4ee18ee32
Author: Jens Langhammer <jens.langhammer@beryju.org>
Date: Mon Jul 20 14:08:27 2020 +0200
sources/oauth: migrate from discordapp.com to discord.com
2020-07-20 18:17:14 +02:00
Jens Langhammer
37b2400cdb
lib: move SAML timestring utils into lib
2020-07-20 11:35:16 +02:00
Jens Langhammer
b452e751ea
flows: add SESSION_KEY_APPLICATION_PRE
...
whenever a user tries to access an application without being authenticated to passbook, we now show notice which application they are going to continue to.
2020-07-12 22:47:46 +02:00
Jens Langhammer
f7b9de1261
*/saml: fix MetadataProcessor having generic namespace prefixes
2020-07-12 18:40:43 +02:00
Jens Langhammer
1675dab314
providers/saml: fix encoding for POST bindings
2020-07-12 17:58:38 +02:00
Jens Langhammer
be6f342e58
providers/saml: fix RelayState being included when None given
2020-07-12 17:22:14 +02:00
Jens Langhammer
464b558a02
*/saml: fix typo
2020-07-12 17:20:41 +02:00
Jens Langhammer
d1151091cd
providers/saml: Generate NameID Value based on NameID Policy received
2020-07-12 17:06:35 +02:00
Jens Langhammer
f8e5383ba2
providers/saml: parse NameID Policy from AuthnRequest
2020-07-12 17:05:48 +02:00
Jens Langhammer
0ff4545bab
providers/saml: fix AuthnRequest Signature validation, add unittests
2020-07-12 16:17:53 +02:00
Jens Langhammer
a393097504
*/saml: start implementing unittests, fix signing
2020-07-12 01:44:34 +02:00
Jens Langhammer
2056b86ce7
providers/saml: rewrite SAML AuthNRequest Parser and Response Processor
2020-07-11 14:06:42 +02:00
Jens Langhammer
1b0c013d8e
providers/saml: remove processor_path field
2020-07-11 13:28:10 +02:00
Jens Langhammer
92a09be8c0
sources/saml: rewrite Processors and Views to directly build XML without templates
2020-07-11 01:02:55 +02:00