barbercollie/tinyauth
1
0
Fork 1
mirror of https://github.com/steveiliop56/tinyauth.git synced 2026-04-15 18:26:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 71fe73cca0 chore: fix typo in makefile develop recipe Stavros 2026-02-11 19:13:09 +02:00
  • 0fe89ae4e4 chore: use sslip in development compose Stavros 2026-02-11 19:08:43 +02:00
  • 22c4c262ea feat: add support for client secret post auth to oidc token endpoint v5.0.0-alpha.3 Stavros 2026-02-07 21:04:58 +02:00
  • baf4798665 fix: fix typo in oidc trusted redirect uris config Stavros 2026-02-07 12:59:25 +02:00
  • bea680edec fix: healthcheck should not use public app url Stavros 2026-02-07 12:57:02 +02:00
  • 3eea68ae0c New Crowdin updates (#631) v5.0.0-alpha.2 Stavros 2026-02-07 12:35:08 +02:00
  • f08d8593ea refactor: rework frontend use effect calls (#630) Stavros 2026-02-07 12:01:19 +02:00
  • fa1c5292f9 chore(deps): bump the minor-patch group across 1 directory with 7 updates (#628) dependabot[bot] 2026-02-06 18:07:27 +02:00
  • ce25f9561f fix: ensure service configured check is set to true when service is configured Stavros 2026-02-02 16:32:08 +02:00
  • f24595b24e fix: add more config loaders in the healthcheck command Stavros 2026-02-02 16:25:04 +02:00
  • 285edba88c refactor: better is configured check for ldap and oidc service Stavros 2026-02-02 16:18:29 +02:00
  • 51d95fa455 fix: do not append domains to users that have an email as the username Stavros 2026-02-02 16:08:05 +02:00
  • fd16f91011 fix: ensure oidc service is configured before performing any actions Stavros 2026-02-02 15:55:59 +02:00
  • fb671139cd feat: auto generate redirect url if empty Stavros 2026-02-02 15:46:02 +02:00
  • 7ca79d4532 chore(deps): bump oven/bun from 1.3.6-alpine to 1.3.8-alpine (#617) v5.0.0-alpha.1 dependabot[bot] 2026-02-01 19:06:48 +02:00
  • 9d2d08a537 chore(deps): bump the minor-patch group across 1 directory with 13 updates (#613) dependabot[bot] 2026-02-01 19:06:31 +02:00
  • 15ee55ca61 chore(deps): bump modernc.org/sqlite in the minor-patch group (#602) dependabot[bot] 2026-02-01 19:06:13 +02:00
  • eff5fc8b71 refactor: use is configured check in ldap service Stavros 2026-02-01 19:05:42 +02:00
  • 671343f677 feat: oidc (#605) Stavros 2026-02-01 19:00:59 +02:00
  • 0cd3ba8236 wip feat/tsnet Stavros 2026-01-31 10:33:55 +02:00
  • 252ba10f48 feat: auto submit totp code when it is filled Stavros 2026-01-30 20:26:47 +02:00
  • 6431afb7d1 refactor: handle subcommands properly Stavros 2026-01-29 15:54:29 +02:00
  • f9b221778f chore(deps): bump the minor-patch group across 1 directory with 5 updates (#601) dependabot[bot] 2026-01-21 18:40:46 +02:00
  • 7ed6174140 chore(deps): bump modernc.org/sqlite in the minor-patch group (#595) dependabot[bot] 2026-01-21 18:40:20 +02:00
  • bbf31be5ae Very very easy (#599) André Ribeiro 2026-01-21 16:36:33 +00:00
  • 402dfa727b chore: update traefik and add use infisical as an options for secrets in dev Stavros 2026-01-21 12:50:03 +02:00
  • d67c3ab8a4 fix: ensure safe redirect check only accepts actual domains Stavros 2026-01-17 20:36:42 +02:00
  • 87e2b52a04 fix: set gin mode correctly Stavros 2026-01-17 20:26:48 +02:00
  • f36b62561a chore(deps): bump modernc.org/sqlite in the minor-patch group (#588) dependabot[bot] 2026-01-17 20:04:08 +02:00
  • d2a146ead0 chore(deps-dev): bump @types/node in /frontend in the minor-patch group (#589) dependabot[bot] 2026-01-17 20:03:51 +02:00
  • 4926e53409 feat: ldap group acls (#590) Stavros 2026-01-17 20:03:29 +02:00
  • c0dd432029 chore(deps): bump the minor-patch group across 1 directory with 5 updates (#587) dependabot[bot] 2026-01-15 15:58:07 +02:00
  • a0ef7b80d8 chore(deps): bump modernc.org/sqlite in the minor-patch group (#585) dependabot[bot] 2026-01-15 15:57:45 +02:00
  • 53bd413046 feat: configurable component-level logging (#575) Pushpinder Singh 2026-01-15 08:57:19 -05:00
  • ba2d732415 chore(deps): bump the minor-patch group across 1 directory with 5 updates (#583) dependabot[bot] 2026-01-13 22:34:35 +02:00
  • 0025485e38 chore(deps): bump the minor-patch group across 1 directory with 2 updates (#582) dependabot[bot] 2026-01-13 22:34:13 +02:00
  • 3cba90f99c chore(deps): bump oven/bun from 1.3.5-alpine to 1.3.6-alpine (#581) dependabot[bot] 2026-01-13 22:33:31 +02:00
  • a842e40903 docs: regenerate readme sponsors list (#580) github-actions[bot] 2026-01-12 23:38:33 +02:00
  • e3f92ce4fc refactor: simplify user parsing (#571) Stavros 2026-01-08 16:03:37 +02:00
  • 454612226b chore: move sql files to sql directory Stavros 2026-01-08 15:35:58 +02:00
  • 0aa8037edc chore(deps-dev): bump globals from 16.5.0 to 17.0.0 in /frontend (#570) dependabot[bot] 2026-01-08 15:30:01 +02:00
  • 8872e68589 chore(deps): bump the minor-patch group in /frontend with 2 updates (#569) dependabot[bot] 2026-01-08 15:28:50 +02:00
  • 1ffb838c0f feat: add support for global ip filters (#567) Stavros 2026-01-08 15:26:53 +02:00
  • e3c98faf36 fix: username provider appearing when no auth is configured (#568) Pushpinder Singh 2026-01-08 03:28:54 -05:00
  • 1dc83c835c feat: add makefile to simplify development Stavros 2026-01-07 16:30:15 +02:00
  • 23987aade8 chore(deps): bump the minor-patch group across 1 directory with 5 updates (#566) dependabot[bot] 2026-01-07 13:38:08 +02:00
  • 9f52d13028 chore(deps): bump the minor-patch group across 1 directory with 2 updates (#560) dependabot[bot] 2026-01-07 13:37:45 +02:00
  • e7bd64d7a3 feat: add session max lifetime and fix refresh logic (#559) Pushpinder Singh 2026-01-07 06:37:23 -05:00
  • 721f302c0b chore: fix typo in example env Stavros 2026-01-07 13:25:39 +02:00
  • f1e2b55cd1 fix: add rate limiting in the forward auth endpoint (#555) Stavros 2025-12-31 21:04:08 +02:00
  • f564032a11 LDAP: Add mTLS / client certificate authentication support (#509) Priit Laes 2025-12-31 18:01:21 +02:00
  • 1ec1f82dbd chore(deps): bump the minor-patch group in /frontend with 2 updates (#552) dependabot[bot] 2025-12-31 18:00:12 +02:00
  • 7e17a4ad86 refactor: replace gorm with vanilla sql and sqlc (#541) Stavros 2025-12-31 17:59:21 +02:00
  • 2dc047d9b7 docs: regenerate readme sponsors list (#554) github-actions[bot] 2025-12-31 11:36:33 +02:00
  • 974f2a67f0 fix: allow any HTTP method for /api/auth/envoy (#551) Pushpinder Singh 2025-12-31 04:34:25 -05:00
  • 3c6bd44906 chore(deps): bump the minor-patch group across 1 directory with 3 updates (#545) dependabot[bot] 2025-12-30 18:28:04 +02:00
  • afddb2c353 chore(deps): bump github.com/google/go-querystring (#547) dependabot[bot] 2025-12-30 18:27:34 +02:00
  • 9a3fecd565 feat: non-docker acls (#549) Stavros 2025-12-30 18:26:57 +02:00
  • 3f2f813902 Trigger automated review shreknel-feature/oidc-provider-pr Olivier Dumont 2025-12-30 14:22:53 +01:00
  • 014550f80e CRITICAL: Add audience validation for access tokens Olivier Dumont 2025-12-30 14:10:50 +01:00
  • 5ec9989189 Remove redundant 'openid' scope special case logic Olivier Dumont 2025-12-30 13:52:01 +01:00
  • ad12110fbf Replace SHA256 with HKDF for key derivation and fix scope validation Olivier Dumont 2025-12-30 13:37:43 +01:00
  • ca74534048 Add bcrypt hashing for client secrets and RSA key encryption Olivier Dumont 2025-12-30 13:26:06 +01:00
  • 1b37096b58 CRITICAL: Add replay protection for authorization codes Olivier Dumont 2025-12-30 13:00:19 +01:00
  • cd068d16c2 Fix Python scoping issue: rename html variable to avoid conflict Olivier Dumont 2025-12-30 12:52:53 +01:00
  • 5b5799ab62 Fix XSS vulnerability: Escape user claims in HTML output Olivier Dumont 2025-12-30 12:46:03 +01:00
  • 672914ceb7 Remove insecure query parameter fallback for client credentials Olivier Dumont 2025-12-30 12:40:55 +01:00
  • f006ebe5e4 Fix open redirect vulnerability in authorize endpoint Olivier Dumont 2025-12-30 12:40:01 +01:00
  • dabb4398ad Implement PKCE (Proof Key for Code Exchange) support Olivier Dumont 2025-12-30 12:39:00 +01:00
  • ef157ae9ba Fix critical security issue: verify JWT signature in access token validation Olivier Dumont 2025-12-30 12:36:30 +01:00
  • 020fcb9878 Add OIDC provider functionality with validation setup Olivier Dumont 2025-12-30 12:17:40 +01:00
  • 986ac88e14 Merge branch 'main' of https://github.com/steveiliop56/tinyauth Stavros 2025-12-29 19:46:38 +02:00
  • b159f44729 fix: add missing ldap search filter Stavros 2025-12-29 19:46:33 +02:00
  • 43487d44f7 feat: forward sub from oidc providers (#543) Stavros 2025-12-26 19:02:51 +02:00
  • 2d8af0510e feat: refresh session cookie when session is active (#540) Stavros 2025-12-26 17:55:54 +02:00
  • a1c3e416b6 refactor: use proper module name (#542) Stavros 2025-12-26 17:53:24 +02:00
  • 7269fa1b95 chore: disable issue enrichment in coderabbit Stavros 2025-12-23 23:10:09 +02:00
  • ef25872fc3 feat: add support for Envoy proxy (#538) Stavros 2025-12-22 22:28:34 +02:00
  • 03ed18343e feat: unified config (#533) Stavros 2025-12-22 22:13:40 +02:00
  • f3d2e14535 chore(deps): bump the minor-patch group across 1 directory with 15 updates (#531) dependabot[bot] 2025-12-18 20:51:31 +02:00
  • 0968f7317b chore(deps): bump oven/bun from 1.3.4-alpine to 1.3.5-alpine (#528) dependabot[bot] 2025-12-18 20:47:22 +02:00
  • 07638a27d0 chore(deps): bump github.com/go-playground/validator/v10 (#520) dependabot[bot] 2025-12-18 20:46:56 +02:00
  • 9aee6d8890 chore(deps): bump github.com/quic-go/quic-go from 0.54.1 to 0.57.0 (#513) dependabot[bot] 2025-12-18 20:46:37 +02:00
  • ba59ac687b chore(deps-dev): bump @types/node from 24.10.2 to 25.0.0 in /frontend (#512) dependabot[bot] 2025-12-18 20:46:15 +02:00
  • 36fbfa37a3 chore: add docs repo to readme (#525) exenza 2025-12-18 14:12:22 +00:00
  • 78f97c8550 refactor: split bootstrap to smaller files for better readability (#518) Stavros 2025-12-17 15:04:09 +02:00
  • 3961589f1e feat: auto-create database directory if missing (#510) Modestas Rinkevičius 2025-12-11 14:43:57 +02:00
  • 5f2ec02c3d chore(deps): bump the minor-patch group across 1 directory with 10 updates (#508) dependabot[bot] 2025-12-10 17:47:16 +02:00
  • fa531cfd84 chore(deps): bump the minor-patch group across 1 directory with 3 updates (#504) dependabot[bot] 2025-12-10 17:46:41 +02:00
  • aa208267a7 chore(deps): bump oven/bun from 1.3.3-alpine to 1.3.4-alpine (#502) dependabot[bot] 2025-12-10 17:46:09 +02:00
  • d79901a962 chore(deps): bump alpine from 3.22 to 3.23 (#493) dependabot[bot] 2025-12-10 17:45:43 +02:00
  • 2c1554ab90 fix: CVE-2025-55182 in React (#507) Jaime 2025-12-09 22:44:52 +01:00
  • 2f4f2505d7 fix: fix language selector and language detection Stavros 2025-12-08 19:03:35 +02:00
  • 7bac1ac915 chore(deps): bump the minor-patch group across 1 directory with 10 updates (#492) dependabot[bot] 2025-12-03 18:58:22 +02:00
  • 8e22f98bfb chore(deps): bump github.com/golang-migrate/migrate/v4 (#488) dependabot[bot] 2025-12-03 18:57:30 +02:00
  • f46394bf8b chore(deps): bump oven/bun from 1.3.2-alpine to 1.3.3-alpine (#478) dependabot[bot] 2025-12-03 18:57:05 +02:00
  • 8a3f2080c6 New translations en.json (Portuguese, Brazilian) (#474) v4.1.0 Stavros 2025-11-23 14:10:12 +02:00
  • 641b9aa531 feat: log unsafe redirect uri in oauth controller Stavros 2025-11-23 14:06:35 +02:00
  • 6c90046343 feat: add option to disable ui warnings v4.1.0-rc.2 Stavros 2025-11-21 17:37:01 +02:00
  • 22a2ab3322 chore(deps): bump github.com/weppos/publicsuffix-go (#473) v4.1.0-rc.1 dependabot[bot] 2025-11-21 16:32:59 +02:00