barbercollie/tinyauth
1
0
Fork 1
mirror of https://github.com/steveiliop56/tinyauth.git synced 2025-10-28 04:35:40 +00:00
Code Issues Packages Projects Releases Wiki Activity
336 Commits 35 Branches 89 Tags
59d2bce189854b55f27102e893b6f56ba51a0dc1
Commit Graph

39 Commits

Author SHA1 Message Date
Stavros
59d2bce189 refactor: remove init functions from methods 2025-07-04 02:29:02 +03:00
Stavros
c10bff55de fix: encrypt the cookie in sessions (#225) 
* fix: encrypt the cookie in sessions

* tests: use new auth config in tests

* fix: coderabbit suggestions
 2025-07-04 01:43:36 +03:00
Stavros
84d4c84ed2 feat: allow or block an ip/range of ips using labels (#211) 
* feat: allow or block an ip/range of ips using labels

* refactor: redirect to root page when no username or ip is provided in the unauthorized page
 2025-06-25 20:35:48 +03:00
Stavros
3397e2aa8e refactor: move to traefik paerser for label parsing (#197) 
* refactor: move to traefik paerser for label parsing

* fix: sanitize headers before adding to map

* refactor: use splitn in header parser

* refactor: ignore containers that failed to get inspected in docker
 2025-06-15 19:58:23 +03:00
Stavros
3a7b71ae3e feat: generate a unique id for the cookie names based on the domain (#161) 
* feat: generate a unique id for the cookie names based on the domain

* tests: fix tests
 2025-05-25 12:38:21 +03:00
Stavros
a9e8bf89a9 feat: map info from OIDC claims to headers (#122) 
* refactor: return all values from body in the providers

* refactor: only accept claims following the OIDC spec

* feat: map info from OIDC claims to headers

* feat: add support for required oauth groups

* fix: bot suggestions

* feat: get claims from github and google

* fix: close body correctly
 2025-04-30 19:57:49 +03:00
Stavros
85ad0d19c7 feat: add regex support to oauth whitelist 2025-04-18 19:36:50 +03:00
Stavros
dc731cff10 feat: add regex support in user and oauth whitelist 2025-04-18 19:15:59 +03:00
Stavros
02faabf688 feat: add CSRF cookie protection 2025-04-14 20:00:58 +03:00
Stavros
0761c2f5c1 refactor: remove redirect URL from session cookie 2025-04-14 19:42:52 +03:00
Stavros
a579cf37ce fix: allow user if users label is empty 2025-04-09 17:44:59 +03:00
Stavros
38c5cd7b32 fix: tinyauth should allow the user to access a resource if a whitelist is not setup 2025-04-08 16:24:25 +03:00
Stavros
8e84e59c2f refactor: simplify the get cookie data handling 2025-04-06 20:53:24 +03:00
Stavros
bd7e160e10 refactor: store redirect URI in tinyauth session cookie 2025-04-06 20:37:02 +03:00
Stavros
df849d5a5c refactor: remove dependency on gin sessions 2025-04-06 19:13:09 +03:00
Stavros
5cf4e208c6 refactor: use centralized config in auth service 2025-04-06 18:55:24 +03:00
Alexander
07ddd4f917 feat: add brute force protection (#59) 
* feat: add brute force protection

* fix: bind flags to env

---------

Co-authored-by: Stavros <steveiliop56@gmail.com>
 2025-04-06 18:28:20 +03:00
Stavros
14ce8ecf98 feat: add ability to set custom headers 2025-03-26 18:05:43 +02:00
Stavros
3ccc831a1f refactor: make error handling simpler (#55) 2025-03-19 16:41:19 +02:00
Stavros
3649d0d84e fix: allow oauth resource when oauth whitelist is empty 2025-03-10 16:22:32 +02:00
Stavros
5188089673 Feat/totp (#45) 
* wip

* feat: finalize totp gen code

* refactor: split login screen and forms

* feat: add totp logic and ui

* refactor: make totp pending expiry time fixed

* refactor: skip all checks when disable continue is enabled

* fix: fix cli not exiting on invalid input
 2025-03-09 18:39:25 +02:00
Stavros
e4379cf3ed feat: allowed paths label 2025-02-26 19:25:54 +02:00
Stavros
cfe2a1967a refactor: use go's builtin basic auth parser 2025-02-10 21:42:27 +02:00
Stavros
7a3a463489 chore: add comments to code 2025-02-08 12:33:58 +02:00
Stavros
daad2abc33 feat: add basic header authorization 2025-02-07 17:08:39 +02:00
Stavros
87393d3c64 feat: add session expiry inside cookie (breaking) 2025-02-05 19:08:23 +02:00
Stavros
fe594d2755 fix: do not crash when docker is not connected 2025-02-02 19:34:02 +02:00
Stavros
29f0a94faf feat: finalize logic 2025-01-30 17:11:31 +02:00
Stavros
3efcb26db1 refactor: remove sensitive info logging even in debug mode 2025-01-28 17:36:06 +02:00
Stavros
a243f22ac8 refactor: users are not a requirement when using oauth 2025-01-26 20:45:34 +02:00
Stavros
08d382c981 feat: add debug log level 2025-01-26 20:23:09 +02:00
Stavros
94f7debb10 feat: secrets file 2025-01-26 19:51:58 +02:00
Stavros
3b50d9303b refactor: use cookie store correctly 2025-01-26 19:51:58 +02:00
Stavros
989ea8f229 refactor: rename email back to username 2025-01-26 19:51:58 +02:00
Stavros
9d2aef163b chore: rename whitelist to oauth whitelist 2025-01-25 15:32:46 +02:00
Stavros
c5a8639822 feat: oauth email whitelist 2025-01-24 20:17:08 +02:00
Stavros
80d25551e0 wip 2025-01-23 19:16:35 +02:00
Stavros
5e73d06fcc refactor: use dependency injection 2025-01-21 18:41:06 +02:00
Stavros
6eccb6d835 feat: make app configurable 2025-01-19 15:04:46 +02:00