Commits · redirect-307 · id / go-sso

22 Jun, 2019 1 commit

Add CORS tests · 02045d97

ale authored Jun 22, 2019

And move the CORS handler only on the homepage endpoint.

02045d97

21 Jun, 2019 3 commits
- Fix also the httpsso and proxy tests · c5ae3ebb
  ale authored Jun 21, 2019
  
  c5ae3ebb
- Use 307 redirects · 41319c74
  ale authored Jun 21, 2019
```
This is to see if we can send non-GET requests through SSO.
```
  41319c74
- Always use query args for the / endpoint parameters · 466c1d30
  ale authored Jun 21, 2019
```
This allows eventual future usage of 307 redirects and us accepting
POST requests without having to decode the request body.
```
  466c1d30
20 Jun, 2019 2 commits

Add CORS support · ad0ad8f9

ale authored Jun 20, 2019

The sso service endpoint should send the proper CORS headers and
respond to OPTIONS (for CORS prefetches) so that XmlHttpRequests on
authenticated sites can (partially) work.

ad0ad8f9

Fix CORS headers on the /sso_logout endpoint · 29862d1b
ale authored Jun 20, 2019
```
Compute the origin properly.
```
29862d1b

24 May, 2019 2 commits
- Update vendor.json · 55d6fd60
  ale authored May 24, 2019
  
  55d6fd60
- Update id/auth · 3618bb21
  ale authored May 24, 2019
  
  3618bb21
04 May, 2019 3 commits
- Merge branch 'switch-2fa' into 'master' · 4192fb32
  ale authored May 04, 2019
```
Let the user pick 2FA method

See merge request !2
```
  4192fb32
- Allow user to switch 2FA mechanism if more than one is supported · 230ae972
  ale authored May 04, 2019
```
Add links 'use a numeric / hardware token instead' to the 2FA login
pages, using the list of available 2FA mechanisms found in the
auth Response.
```
  230ae972
- Update to new id/auth API that returns all supported 2FA methods · d0fa32ce
  ale authored May 04, 2019
```
First step towards letting users pick the method they prefer.
```
  d0fa32ce
17 Apr, 2019 2 commits
- Add allowed_groups to sso-proxy docs · 8ed88638
  ale authored Apr 17, 2019
  
  8ed88638
- Add sso-proxy documentation to the README · fe763606
  ale authored Apr 17, 2019
  
  fe763606
18 Mar, 2019 2 commits
- Upgrade Go deb dependency · 347348a9
  ale authored Mar 18, 2019
  
  347348a9
- Switch to standard CI · 55ebe969
  ale authored Mar 18, 2019
  
  55ebe969
24 Feb, 2019 1 commit
- Use full jquery.js, not the slim version (we need AJAX) · 6bc5f795
  ale authored Feb 24, 2019
  
  6bc5f795
23 Feb, 2019 1 commit

Add missing TrimRight in URLPrefix template variable · fc85e988

ale authored Feb 23, 2019

This caused the SSO server to generate bad form links, which caused a
302, preventing POST requests to succeed.

fc85e988

16 Feb, 2019 5 commits
- Merge branch 'site-customization' into 'master' · ca613c0b
  ale authored Feb 16, 2019
```
Add some template customization options in the config

See merge request !1
```
  ca613c0b
- Add some template customization options in the config · c59e1aaa
  ale authored Feb 16, 2019
```
Support serving site-specific logo, favicon, and setting a site title.
```
  c59e1aaa
- Fix static content test · 8c093e64
  ale authored Feb 16, 2019
  
  8c093e64
- Set autocomplete=off on input fields · 937bcd65
  ale authored Feb 16, 2019
  
  937bcd65
- Use a non-beta version of Bootstrap · 95b32321
  ale authored Feb 16, 2019
```
Upgrade it to 4.1.3, including dependencies.
```
  95b32321
05 Feb, 2019 1 commit

Do not ask user to log in in order to log out · a756b78a

ale authored Feb 05, 2019

Just serve an error on the logout page if there is no valid session,
instead of redirecting to the login workflow.

a756b78a

29 Jan, 2019 1 commit
- Update go-common · 2f921a80
  ale authored Jan 29, 2019
  
  2f921a80
27 Jan, 2019 3 commits
- Do not ask for explicit confirmation on logout · 198f7394
  ale authored Jan 27, 2019
```
Fixes issue #8.
```
  198f7394
- Redirect the user to a configurable URL when accessing homepage by mistake · 07c9a990
  ale authored Jan 27, 2019
```
Fixes issue #6.
```
  07c9a990
- Simplify login handler by isolating session init logic · b1c0a012
  ale authored Jan 27, 2019
```
And standardize on a single structure for the gorilla session
map, using the 'data' key for our gob-encoded objects.
```
  b1c0a012
22 Nov, 2018 2 commits
- Update id/auth client · 10365b59
  ale authored Nov 22, 2018
  
  10365b59
- Make account recovery URL configurable · f0bc2231
  ale authored Nov 22, 2018
  
  f0bc2231
20 Nov, 2018 1 commit
- Add tracing support to auth-server requests · f144f4dc
  ale authored Nov 20, 2018
  
  f144f4dc
18 Nov, 2018 2 commits
- Update id/auth (fix typo) · ad4e6235
  ale authored Nov 18, 2018
  
  ad4e6235
- Upgrade go-common (add tracing) · a4b690e8
  ale authored Nov 18, 2018
  
  a4b690e8
16 Nov, 2018 4 commits
- Add documentation for keystore_enable_groups · 1724c178
  ale authored Nov 16, 2018
  
  1724c178
- Allow enabling keystore on a group basis · 7fec26e6
  ale authored Nov 16, 2018
```
Using the new configuration variable 'keystore_enable_groups'.
```
  7fec26e6
- Upgrade go-common · bad3b6bd
  ale authored Nov 16, 2018
  
  bad3b6bd
- Log keystore.Open on successful login · 7c359bdb
  ale authored Nov 16, 2018
  
  7c359bdb
14 Nov, 2018 1 commit
- Set the URL prefix on the logout page · a7e8bbce
  ale authored Nov 14, 2018
  
  a7e8bbce
03 Nov, 2018 3 commits
- Add documentation on the new configuration parameters · b103900c
  ale authored Nov 03, 2018
  
  b103900c
- Support deploying the SSO server below a URL path prefix · 86a88695
  ale authored Nov 03, 2018
```
Likely fixes issue #7 (untested).
```
  86a88695
- Actually set the u2f AppID from config · e502d9e2
  ale authored Nov 03, 2018
  
  e502d9e2