Commit Graph

100 Commits (7c69152a86d8ab8cb2d232dcb953b60eaa1f1985)

Author SHA1 Message Date
James Elliott 9917e3290a
docs: misc fixes (#5258)
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-16 07:48:03 +10:00
James Elliott 9e8db3c3f3
docs(oidc): faq refresh (#5254)
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 22:25:21 +10:00
James Elliott 3d2da0b070
feat(oidc): client authentication modes (#5150)
This adds a feature to OpenID Connect 1.0 where clients can be restricted to a specific client authentication mode, as well as implements some backend requirements for the private_key_jwt client authentication mode (and potentially the tls_client_auth / self_signed_tls_client_auth client authentication modes). It also adds some improvements to configuration defaults and validations which will for now be warnings but likely be made into errors.

Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-13 20:58:18 +10:00
James Elliott db130dad48
docs: github links (#5230)
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-13 20:10:12 +10:00
James Elliott 157675f1f3
docs: adjust references of webauthn (#5203)
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-10 17:01:23 +10:00
James Elliott 2dcfc0b04c
feat(handlers): authz authrequest authelia url (#5181)
This adjusts the AuthRequest Authz implementation behave similarly to the other implementations in as much as Authelia can return the relevant redirection to the proxy and the proxy just utilizes it if possible. In addition it swaps the HAProxy examples over to the ForwardAuth implementation as that's now supported.

Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-08 14:48:55 +10:00
James Elliott 3b52ddb137
docs: add adaptation blurbs (#5163)
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-08 10:00:36 +10:00
James Elliott 19d1b1bbcb
docs: fix gitea example (#5156)
Fixes the gitea example and a few other minor issues.

Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-02 13:12:01 +10:00
Joakim Pettersen 9fe2ed9a46
docs(oidc): firezone integration (#5125)
This adds a Firezone VPN integration with OpenID Connect 1.0.
2023-03-28 20:29:13 +11:00
Trung Le 154110d4d9
docs: correct the link to the docs (#5112) 2023-03-22 13:55:31 +10:00
boomam 0bf40f63ea
docs(oidc): minio integration (#5100)
Add MinIO OpenID Connect 1.0 documentation.

Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-03-21 11:21:23 +11:00
tetricky a048c48da7
docs: misago oidc (#5024)
This adds Misago integration docs for OpenID Connect.

Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-03-14 08:51:13 +11:00
James Elliott ff6be40f5e
feat(oidc): pushed authorization requests (#4546)
This implements RFC9126 OAuth 2.0 Pushed Authorization Requests. See https://datatracker.ietf.org/doc/html/rfc9126 for the specification details.
2023-03-06 14:58:50 +11:00
James Elliott 0565be3db1
docs: faq (#5032) 2023-03-06 11:32:06 +11:00
James Elliott fca8e2130a
docs: update integration docs (#4986) 2023-03-04 15:53:48 +11:00
James Elliott f62b4d4cd3
docs: update ngnix docs (#4980) 2023-02-22 15:26:10 +11:00
James Elliott 8253b44e5d
docs: update swag docs (#4979) 2023-02-22 15:11:11 +11:00
James Hillyerd ad689275d3
docs: improve gitea oidc guidance (#4808)
Make the non-obvious relationship between the Gitea `Authentication Name` and the path of the redirect URI explicit.

Signed-off-by: James Hillyerd <james@hillyerd.com>
2023-02-13 07:49:43 +11:00
James Elliott 8e4b660f15
refactor: certs (#4912)
This refactors the suites to use a Enterprise Root CA PKI signed certificate so the CA public certificate can be trusted. This is particularly useful for webauthn in Chrome.
2023-02-11 14:11:40 +11:00
James Elliott d1147f9ac4
docs: refactor oidc config docs (#4892) 2023-02-08 01:29:43 +11:00
James Elliott a7ccf3652f
docs: fix rfc references and fix misc issues (#4879) 2023-02-05 18:11:30 +11:00
James Elliott e408cb19b1
test: adjust tests and docs to be similar (#4856) 2023-02-02 18:13:18 +11:00
James Elliott 7e285f461f
docs: add common oidc shortcode and update (#4862) 2023-02-02 12:30:06 +11:00
Krasimir Nedelchev b3b24f4479
docs: fix ip addresses (#4843)
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-01-29 09:25:32 +11:00
James Elliott 1ac4321013
docs: fix misc issues (#4831) 2023-01-26 16:38:08 +11:00
James Elliott a33b37a9cd
docs: make several openid connect areas uniform (#4824) 2023-01-26 10:59:18 +11:00
James Elliott 65705a646d
feat(server): customizable authz endpoints (#4296)
This allows users to customize the authz endpoints.

Closes #2753, Fixes #3716

Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2023-01-25 20:36:40 +11:00
Chris D 8a4c65b548
docs: fix mistakes in swag docs (#4665)
Co-authored-by: Chris <=>
2022-12-31 10:45:55 +11:00
James Elliott 859b403146
docs: update docs (#4597) 2022-12-19 15:04:02 +11:00
James Elliott b4d9e21387
docs: fix misc url issues (#4503) 2022-12-07 20:43:02 +11:00
James Elliott 442cb272d9
docs: update proxy docs (#4449) 2022-11-30 09:12:50 +11:00
Jacob Gee-Clarke ef28345f05
docs: fix grammar (#4334)
A fixed grammatical issue with the docker deployment page.
2022-11-21 06:27:43 +11:00
James Elliott 9aec643bc1
docs: clarify cloudflare docs (#4373) 2022-11-14 14:37:34 +11:00
James Elliott e97a848600
refactor: ldap filter (#4329) 2022-11-04 13:42:28 +11:00
James Elliott 95709b7069
docs: update proxy versions (#4310) 2022-11-01 10:09:46 +11:00
James Elliott 12e3cd56b1
docs: refactor generator guides (#4244) 2022-10-23 18:09:19 +11:00
Paul Ohl a6268e3c11
docs: grammar fixes for forwarded headers (#4237)
There were minor typos, and a phrase with no ending.
2022-10-23 07:19:11 +11:00
James Elliott 3113ec2b80
feat(commands): random character generator (#4213)
This improves all random character generator command usages to be nearly identical and reuse a large block of code. It also improves several functions to give more options when randomly generating outputs.
2022-10-21 07:41:46 +11:00
James Elliott 3f8958d1b1
docs(oidc): fix missing link (#4212) 2022-10-20 15:42:22 +11:00
James Elliott 9e29295bdf
docs(oidc): adjust client secret information (#4211) 2022-10-20 15:27:09 +11:00
James Elliott 248f1d49d4
feat(oidc): hashed client secrets (#4026)
Allow use of hashed OpenID Connect client secrets.
2022-10-20 14:21:45 +11:00
James Elliott 52102eea8c
feat(authorization): query parameter filtering (#3990)
This allows for advanced filtering of the query parameters in ACL's.

Closes #2708
2022-10-19 14:09:22 +11:00
James Elliott d0c1b32125
docs: fix proxmox and misc links (#4145)
* docs: fix proxmox and misc links

* docs: adjust
2022-10-18 21:29:48 +11:00
Philipp a471c31d74
docs: update seafile docs (#4151)
This fixes an issue with the Seafile OIDC integration docs.
2022-10-18 21:27:38 +11:00
James Elliott a894e272cb
docs: add synology dsm docs (#4167) 2022-10-18 21:22:13 +11:00
James Elliott 3a70f6739b
feat(authentication): file password algorithms (#3848)
This adds significant enhancements to the file auth provider including multiple additional algorithms.
2022-10-17 21:51:59 +11:00
James Elliott 75a3d8a3bc
docs: update misc notes (#4184) 2022-10-16 08:37:31 +11:00
James Elliott b27fd4b7fc
docs: update client secret encoding notes (#4183) 2022-10-16 08:30:02 +11:00
James Elliott ef61acb3a9
docs: misc nginx fixes (#4153) 2022-10-09 12:48:42 +11:00
James Elliott 644616d8b1
docs: npm custom locations (#4152) 2022-10-09 12:09:45 +11:00