Commit Graph

2497 Commits (14ad07ffa2719e74178826da3072287ee8015a50)

Author SHA1 Message Date
James Elliott 14ad07ffa2
fix(oidc): userinfo jti claim potential panic (#3017)
This fixes a usage of uuid.New() which can potentially panic. Instead we use a uuid.NewRandom() which also generates a UUID V4 instead of a UUID V1. In addition all uuid.NewUUID() calls have been replaced by uuid.NewRandom().
2022-03-16 11:29:46 +11:00
renovate[bot] cc69d254a9
build(deps): update module github.com/stretchr/testify to v1.7.1 (#3016)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-16 10:51:59 +11:00
renovate[bot] e6a3a52fb7
build(deps): update dependency @fortawesome/fontawesome-svg-core to v6 (#3015)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-16 10:13:30 +11:00
James Elliott 9b779569f4
fix(oidc): add detailed trace/debug logs (#3012)
This adds significantly more detailed logging for most OpenID Connect handlers.
2022-03-16 09:55:38 +11:00
renovate[bot] 2c3b507096
build(deps): update font awesome to v6.1.0 (#3014)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-16 08:28:24 +11:00
renovate[bot] bd5783cb49
build(deps): update typescript-eslint monorepo to v5.15.0 (#3011)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-15 12:06:34 +11:00
renovate[bot] 98b686021d
build(deps): update dependency eslint-plugin-react to v7.29.4 (#3004)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-15 10:20:32 +11:00
renovate[bot] 4901124f46
build(deps): update dependency react-i18next to v11.15.7 (#3001)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-15 09:03:14 +11:00
renovate[bot] 5e6a2c5e8d
build(deps): update dependency i18next-http-backend to v1.4.0 (#3003)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-15 08:30:23 +11:00
allcontributors[bot] b7eae3a4cb
docs: add Alestrix as a contributor for doc (#3010)
Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-14 23:38:57 +11:00
allcontributors[bot] e0b3252fb0
docs: add DennisGaida as a contributor for doc (#3009)
Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-14 23:32:41 +11:00
Alestrix d393d80aee
docs: adjust acl policy example to be possible (#3008)
An access control policy with a policy of bypass and subjects is not configurable, this addresses an example in the docs which shows this misconfiguration erroneously.

Fixes #3006
2022-03-14 23:30:47 +11:00
Dennis Gaida 1e549caf15
Small description fix for OIDC groups (#3007)
OIDC groups claim actually contains the user's groups, not the user's display name.
2022-03-14 23:26:10 +11:00
James Elliott b43ee50368
fix(configuration): remember me duration disabled impossible (#2997)
This fixes an issue not properly resolved by db6dd32151.
2022-03-13 13:51:23 +11:00
renovate[bot] a7d3f8f16b
build(deps): update module github.com/ory/herodot to v0.9.13 (#2995)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-12 11:46:32 +11:00
renovate[bot] 0cbf041ff5
build(deps): update module github.com/spf13/cobra to v1.4.0 (#2993)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-12 11:12:59 +11:00
renovate[bot] f41a4628f2
build(deps): update dependency @types/react to v17.0.40 (#2992)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-10 22:11:25 +11:00
James Elliott ed49cc0a74
release: v4.34.4 (#2991) 2022-03-10 13:17:56 +11:00
James Elliott 9a62bff1e5
build(deps): update dependency qrcode.react to v2 (#2990) 2022-03-10 12:48:29 +11:00
renovate[bot] 18c3d8ffb5
build(deps): update dependency axios to v0.26.1 (#2989)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-10 12:04:45 +11:00
renovate[bot] 51a1b2cb58
build(deps): update dependency i18next to v21.6.14 (#2982)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-10 11:04:04 +11:00
renovate[bot] 26cab9f203
build(deps): update dependency @testing-library/react to v12.1.4 (#2983)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-10 10:12:56 +11:00
James Elliott 5af58c7df1
docs(oidc): add subject storage to storage beta (#2987) 2022-03-10 09:19:15 +11:00
James Elliott db6dd32151
fix(configuration): cannot disable remember me (#2985)
This allows users to disable remember me again.
2022-03-10 09:01:04 +11:00
renovate[bot] f439b85141
build(deps): update module github.com/valyala/fasthttp to v1.34.0 (#2974)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-09 19:04:13 +11:00
renovate[bot] 743d8c5a8d
build(deps): update dependency react-i18next to v11.15.6 (#2976)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-09 17:01:19 +11:00
renovate[bot] 6443f5cbe5
build(deps): update typescript-eslint monorepo to v5.14.0 (#2977)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-09 14:46:41 +11:00
James Elliott 337dd61468
docs: add docs about remember me duration (#2979)
This documents disabling remember me.
2022-03-09 13:25:11 +11:00
James Elliott 5d0b68ebea
build: utilize new makedeb spec (#2980)
This adds the adjustments needed for the new makedeb version to package conffiles.

Fixes #2817
2022-03-09 11:18:21 +11:00
renovate[bot] b48b2ddde6
build(deps): update dependency vite-plugin-istanbul to v2.5.1 (#2973)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-07 12:09:32 +11:00
James Elliott 6a1c5ed533
fix(configuration): invalid password algorithm tag (#2972)
This fixes a configuration parsing issue that could potentially occur if we were to change the internal name of the struct field.
2022-03-07 00:01:46 +11:00
James Elliott 6d937cf6cc
refactor(model): rename from models (#2968) 2022-03-06 16:47:40 +11:00
thehedgefrog 7e59df6f7f
docs: updated year (#2963)
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-06 11:06:09 +11:00
James Elliott 03cf92ff48
docs: fix misleading config (#2966) 2022-03-06 10:15:55 +11:00
James Elliott ebce62b1fc
release: v4.34.3 (#2964) 2022-03-05 18:32:14 +11:00
James Elliott 1c1030c742
fix(configuration): time duration decode hook panic (#2960)
This fixes a potential panic in the time duration decode hook when the YAML value is a zero integer.
2022-03-05 16:51:41 +11:00
James Elliott 67846faacb
release: v4.34.2 (#2958) 2022-03-04 22:09:33 +11:00
James Elliott 204cef4d03
fix(storage): webauthn kid too short for some devices (#2957)
This fixes an issue that may cause the kid length of a webauthn device to exceed that length allowed by the database column.
2022-03-04 21:21:08 +11:00
James Elliott 82d28155d0
release: v4.34.1 (#2955) 2022-03-04 17:26:42 +11:00
James Elliott fd3a2bb1c5
fix(configuration): pkce config keys not allowed (#2954)
This fixes a bug that prevents the PKCE configuration keys from being configurable.
2022-03-04 16:46:05 +11:00
James Elliott 62e670e4fe
release: v4.34.0 (#2951) 2022-03-04 16:05:26 +11:00
James Elliott a8f5a70b03
feat(oidc): add automatic allow all cors to discovery (#2953)
This adds a Cross Origin Resource Sharing policy that automatically allows any cross-origin request to the OpenID Connect discovery documents.
2022-03-04 15:46:12 +11:00
James Elliott a5c400cb1d
fix(commands): use consistent config file name (#2952)
Adjusts the default filename for all configuration files to configuration.yml.
2022-03-04 14:39:22 +11:00
James Elliott c9d86a9240
feat(oidc): oauth2 discovery support (#2925)
* feat(oidc): oauth2 discovery and endpoint rename

This implements the oauth2 authorization server discovery document, adds tests to the discovery documents, implements an efficiency upgrade to these docs, and renames some endpoints to be uniform.
2022-03-04 14:09:27 +11:00
renovate[bot] b6072e7fd8
build(deps): update dependency golang to v1.17.8 (#2948)
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-04 13:41:44 +11:00
renovate[bot] 4acb42aa39
build(deps): update font awesome to v6 (#2913)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-04 12:45:39 +11:00
renovate[bot] cd2a5b2354
build(deps): update dependency eslint-plugin-react to v7.29.3 (#2949)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-04 12:20:22 +11:00
James Elliott 042cd21800
build(deps): utilize github.com/go-webauthn/webauthn (#2947) 2022-03-04 10:56:30 +11:00
allcontributors[bot] 8b95f88144
docs: add FineWolf as a contributor for code, doc, test (#2946)
Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-03 23:13:10 +11:00
renovate[bot] ffd0af64f8
build(deps): update module github.com/go-rod/rod to v0.103.0 (#2943)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-03-03 23:08:32 +11:00