tinyauth

mirror of https://github.com/steveiliop56/tinyauth.git synced 2026-03-31 19:07:56 +00:00

Author	SHA1	Message	Date
Stavros	36c2004bf6	chore: more review comments	2026-03-29 20:20:53 +03:00
Stavros	b60e546ecd	chore: review comments	2026-03-29 19:38:59 +03:00
Stavros	15a3753622	test: add proxy controller tests	2026-03-29 19:18:53 +03:00
Stavros	c7bb6d61af	Merge branch 'main' into refactor/tests	2026-03-28 20:52:08 +02:00
Stavros	fa25740546	tests: add well known controller tests	2026-03-28 20:49:10 +02:00
Stavros	d3cda06a75	feat: add lockdown mode on multiple login attempts (#727 ) * feat: add lockdown mode on multiple login attempts * fix: review comments * fix: fix typo	2026-03-28 20:35:49 +02:00
Stavros	23e0da96a6	tests: add tests for resources controller	2026-03-28 20:34:38 +02:00
Stavros	39beed706b	tests: add tests for user controller	2026-03-28 20:26:47 +02:00
Stavros	b2ab3d0f37	tests: use testify assert in context and health controller	2026-03-26 16:54:54 +02:00
Stavros	5219d5c2be	tests: add tests for oidc controller	2026-03-26 16:50:34 +02:00
Stavros	8eeb0b9e87	tests: add tests for health controller	2026-03-23 19:02:01 +02:00
Stavros	a948e001cd	tests: rework tests for context controller	2026-03-23 18:56:00 +02:00
Stavros	f26c217161	refactor: oauth flow (#726 ) * wip * feat: add oauth session impl in auth service * feat: move oauth logic into auth service and handle multiple sessions * tests: fix tests * fix: review comments * fix: prevent ddos attacks in oauth rate limit	2026-03-22 21:03:32 +02:00
Stavros	dc3fa58d21	refactor: refactor proxy controller to handle proxy auth modules better (#714 ) * wip * fix: add extauthz to friendly error messages * refactor: better module handling per proxy * fix: get envoy host from the gin request * tests: rework tests for proxy controller * fix: review comments	2026-03-14 19:56:15 +02:00
Stavros	b3de69e5d6	chore: add comment explaining uri header	2026-03-12 16:36:13 +02:00
Stavros	016a954963	fix: make a x forwarded uri an non required header	2026-03-12 16:26:42 +02:00
Stavros	b2a1bfb1f5	fix: validate client id on oidc token endpoint	2026-03-11 16:48:04 +02:00
Stavros	f1e869a920	fix: ensure user context has is logged in set to true	2026-03-11 15:57:50 +02:00
Stavros	cc5a6d73cf	tests: ensure all forwarded headers are set on tests	2026-03-11 15:53:39 +02:00
Stavros	2e03eb9612	fix: do not continue auth on empty x-forwarded headers	2026-03-11 15:46:09 +02:00
Stavros	b6eb902d47	fix: fix typo in public key loading	2026-03-08 15:54:50 +02:00
Stavros	e3bd834b85	fix: support pkix public keys in oidc	2026-03-08 11:39:16 +02:00
Stavros	d7d540000f	fix: state should not be a required field in oidc	2026-03-08 11:17:44 +02:00
Stavros	766270f5d6	fix: add kid header to id token	2026-03-08 11:07:15 +02:00
Stavros	69c6c0ba1d	fix: add cache control header to token response	2026-03-04 19:38:52 +02:00
Stavros	a71f61df8d	feat: add email verified claim	2026-03-04 15:52:31 +02:00
Stavros	6bf444010b	feat: add nonce claim support to oidc server (#686 ) * feat: add nonce claim support to oidc server * fix: review feedback	2026-03-04 15:34:11 +02:00
Stavros	0e6bcf9713	fix: lookup config file options correctly in file loader	2026-03-03 22:48:44 +02:00
Stavros	de980815ce	fix: include kid in jwks response	2026-03-03 22:48:44 +02:00
Stavros	cd410b6cdf	refactor: categorize leftover config options (#682 ) * refactor: categorize leftover config options * chore: update config description	2026-03-02 19:49:59 +02:00
Stavros	24c5b35bdf	feat: add user info claims to id token (#681 ) * feat: add user info claims to id token * fix: omit empty user info values	2026-03-02 16:08:17 +02:00
Stavros	43e0f3e713	chore: add correct oidc service documetation url	2026-02-26 17:37:47 +02:00
Stavros	4a1889c20b	feat: oidc client create command (#672 ) * feat: add oidc client create command * refactor: use own utility for creating random strings (more flexible than stdlib) * feat: validate client name to avoid config errors * refactor: limit to only alphanumeric characters and hyphens * refactor: remove the need of the logger in the create oidc client cmd	2026-02-26 17:28:58 +02:00
Stavros	6112f977ea	feat: auto generate example env file (#647 ) * feat: auto generate example env file * refactor: simplify build paths func and better slice handling * chore: forgot to stage everything * chore: review comments * refactor: remove square brackets because they mess up the syntax highlighting * refactor: use lowercase name to mark dynamic values	2026-02-16 23:39:05 +02:00
Stavros	e078e8a3f0	refactor: move disable ui warnings to ui cfg and trusted proxies to auth cfg	2026-02-16 19:18:40 +02:00
Stavros	22c4c262ea	feat: add support for client secret post auth to oidc token endpoint	2026-02-07 21:04:58 +02:00
Stavros	baf4798665	fix: fix typo in oidc trusted redirect uris config	2026-02-07 12:59:25 +02:00
Stavros	ce25f9561f	fix: ensure service configured check is set to true when service is configured	2026-02-02 16:32:08 +02:00
Stavros	285edba88c	refactor: better is configured check for ldap and oidc service	2026-02-02 16:25:49 +02:00
Stavros	51d95fa455	fix: do not append domains to users that have an email as the username	2026-02-02 16:25:49 +02:00
Stavros	fd16f91011	fix: ensure oidc service is configured before performing any actions	2026-02-02 16:25:49 +02:00
Stavros	fb671139cd	feat: auto generate redirect url if empty	2026-02-02 16:25:49 +02:00
Stavros	eff5fc8b71	refactor: use is configured check in ldap service	2026-02-01 19:05:42 +02:00
Stavros	671343f677	feat: oidc (#605 ) * chore: add oidc base config * wip: authorize page * feat: implement basic oidc functionality * refactor: implement oidc following tinyauth patterns * feat: adapt frontend to oidc flow * fix: review comments * fix: oidc review comments * feat: refresh token grant type support * feat: cleanup expired oidc sessions * feat: frontend i18n * fix: fix typo in error screen * tests: add basic testing * fix: more review comments * refactor: rework oidc error messages * feat: openid discovery endpoint * feat: jwk endpoint * i18n: fix typo * fix: more rabbit nitpicks * fix: final review comments * i18n: authorize page error messages	2026-02-01 19:00:59 +02:00
Stavros	d67c3ab8a4	fix: ensure safe redirect check only accepts actual domains	2026-01-17 20:36:42 +02:00
Stavros	87e2b52a04	fix: set gin mode correctly	2026-01-17 20:26:48 +02:00
Stavros	4926e53409	feat: ldap group acls (#590 ) * wip * refactor: remove useless session struct abstraction * feat: retrieve and store groups from ldap provider * chore: fix merge issue * refactor: rework ldap group fetching logic * feat: store ldap group results in cache * fix: review nitpicks * fix: review feedback	2026-01-17 20:03:29 +02:00
Pushpinder Singh	53bd413046	feat: configurable component-level logging (#575 ) * Refactor logging to use centralized logger utility - Removed direct usage of zerolog in multiple files and replaced it with a centralized logging utility in the `utils` package. - Introduced `Loggers` struct to manage different loggers (Audit, HTTP, App) with configurable levels and outputs. - Updated all relevant files to utilize the new logging structure, ensuring consistent logging practices across the application. - Enhanced error handling and logging messages for better traceability and debugging. * refactor: update logging implementation to use new logger structure * Refactor logging to use tlog package - Replaced instances of utils logging with tlog in various controllers, services, and middleware. - Introduced audit logging for login success, login failure, and logout events. - Created tlog package with structured logging capabilities using zerolog. - Added tests for the new tlog logger functionality. * refactor: update logging configuration in environment files * fix: adding coderabbit suggestions * fix: ensure correct audit caller * fix: include reason in audit login failure logs	2026-01-15 15:57:19 +02:00
Stavros	e3f92ce4fc	refactor: simplify user parsing (#571 )	2026-01-08 16:03:37 +02:00
Stavros	454612226b	chore: move sql files to sql directory	2026-01-08 15:35:58 +02:00

1 2 3 4 5 ...

275 Commits