wonderwall

github/wonderwall

Fork 0

mirror of https://github.com/nais/wonderwall.git synced 2026-05-09 09:56:48 +00:00

Commit Graph

Select branches

Hide Pull Requests

dependabot/go_modules/otel-3525194e36

master

#1

#10

#101

#102

#103

#104

#105

#106

#107

#108

#109

#11

#110

#111

#111

#112

#113

#114

#115

#117

#118

#119

#12

#120

#121

#122

#123

#124

#125

#126

#127

#128

#129

#13

#130

#131

#132

#133

#134

#135

#136

#138

#139

#14

#140

#141

#142

#143

#144

#145

#146

#147

#148

#149

#15

#150

#151

#152

#153

#154

#155

#157

#158

#159

#16

#160

#161

#162

#163

#164

#165

#166

#167

#168

#169

#170

#171

#172

#173

#174

#175

#176

#177

#178

#179

#18

#180

#181

#182

#183

#184

#185

#186

#187

#188

#189

#19

#190

#192

#193

#194

#195

#196

#197

#198

#199

#2

#20

#200

#201

#202

#203

#204

#205

#206

#207

#208

#209

#21

#210

#211

#212

#213

#214

#215

#216

#217

#218

#219

#22

#220

#221

#222

#223

#224

#225

#226

#227

#228

#229

#23

#230

#231

#232

#233

#234

#236

#237

#238

#239

#24

#240

#241

#242

#243

#244

#245

#246

#247

#248

#249

#25

#250

#251

#252

#253

#254

#255

#256

#257

#258

#259

#26

#260

#261

#263

#264

#265

#266

#267

#268

#269

#27

#270

#271

#272

#273

#274

#275

#276

#277

#278

#279

#28

#280

#281

#282

#283

#284

#285

#286

#287

#288

#289

#29

#290

#291

#292

#293

#294

#295

#296

#297

#298

#299

#3

#30

#300

#301

#302

#303

#304

#305

#308

#309

#31

#310

#311

#312

#313

#314

#316

#317

#318

#319

#32

#320

#321

#322

#323

#325

#326

#327

#328

#329

#33

#330

#331

#332

#333

#334

#335

#336

#337

#338

#339

#34

#340

#341

#342

#343

#344

#345

#346

#347

#348

#349

#35

#350

#351

#352

#353

#354

#355

#356

#357

#358

#359

#360

#361

#362

#363

#364

#365

#366

#367

#368

#369

#37

#370

#371

#372

#373

#374

#375

#376

#377

#378

#379

#38

#380

#381

#382

#383

#384

#385

#386

#387

#388

#389

#39

#390

#391

#392

#393

#394

#395

#396

#397

#398

#399

#4

#40

#400

#401

#402

#403

#404

#405

#406

#407

#408

#409

#41

#410

#411

#412

#413

#414

#415

#416

#417

#418

#419

#42

#420

#421

#422

#423

#424

#425

#426

#427

#428

#429

#43

#430

#431

#432

#433

#435

#436

#437

#438

#439

#44

#440

#441

#442

#443

#444

#445

#446

#447

#448

#449

#45

#450

#451

#452

#453

#454

#455

#456

#457

#458

#459

#46

#460

#461

#462

#463

#464

#465

#466

#467

#468

#469

#47

#470

#48

#5

#51

#53

#56

#57

#58

#59

#60

#61

#62

#63

#64

#65

#66

#68

#69

#70

#72

#73

#74

#75

#76

#77

#78

#79

#8

#80

#81

#82

#83

#84

#85

#86

#87

#88

#89

#9

#90

#91

#92

#93

#94

#95

#96

#97

#98

#99

7f6d323dde add: session management check to get session_state from OP response, generate a externalSessionID if none supported. ybelMekk 2022-01-22 16:23:16 +01:00
f5e5d842e6 wip: sid claim only required if frontchannel_logout_session_supported && frontchannel_logout_supported. ybelMekk 2022-01-22 15:03:54 +01:00
6411f168e2 refactor(handler/login): move user agent debug statement to field Trong Huu Nguyen 2022-01-07 17:04:06 +01:00
7432f86b64 refactor(cookie): set expires to epoch zero time on deletion Trong Huu Nguyen 2022-01-07 15:29:43 +01:00
879319cd2a fix(router/login): alleviate SameSite issues for login cookie Trong Huu Nguyen 2022-01-07 11:37:17 +01:00
a4461ad294 fix(router/frontchannellogout): do not write response headers before clearing cookies Trong Huu Nguyen 2022-01-07 11:12:34 +01:00
05e2509fac refactor: separate cookie operations to own package Trong Huu Nguyen 2022-01-07 11:03:22 +01:00
2d4ced719f feat: remove custom header for id_token Trong Huu Nguyen 2022-01-06 09:58:17 +01:00
c311f46219 revert: "fix: ensure deletion of cookies have SameSite set to None" Trong Huu Nguyen 2021-12-14 15:10:45 +01:00
826f16f4df fix: ensure deletion of cookies have SameSite set to None Trong Huu Nguyen 2021-12-14 12:46:12 +01:00
4446d4c5b8 fix: ensure that frontchannel logout unconditionally returns OK Trong Huu Nguyen 2021-12-14 12:45:28 +01:00
4eee30abde chore: bump dependencies Trong Huu Nguyen 2021-12-06 10:19:42 +01:00
8b7e76d6c4 refactor(router/handler): reduce log severity for certain error handler responses Trong Huu Nguyen 2021-12-06 09:46:10 +01:00
8127d944f3 feat(middleware/logentry): log user agent and cookie names on errors Trong Huu Nguyen 2021-12-06 09:43:49 +01:00
a87fd1834e fix: increase lifetime for login cookie Trong Huu Nguyen 2021-11-19 07:55:29 +01:00
eb08d5645d ci: remove verbose flag for tests Trong Huu Nguyen 2021-11-01 13:11:48 +01:00
a6a11656f9 refactor: rename openid base config for clarity Trong Huu Nguyen 2021-11-01 08:43:57 +01:00
c70037bd4c refactor: clean up main Trong Huu Nguyen 2021-10-22 09:05:06 +02:00
40f8177a5f refactor: add provider label to http metrics Trong Huu Nguyen 2021-10-21 14:56:45 +02:00
e3439e27ab test: use miniredis for testing redis session store Trong Huu Nguyen 2021-10-21 10:18:33 +02:00
b85ea7136e refactor: only delete fallback session cookies if set Trong Huu Nguyen 2021-10-21 09:56:20 +02:00
325caeac34 nit: drop import alias Trong Huu Nguyen 2021-10-20 09:18:50 +02:00
693b1b3bbe test: add missing test for client assertion Trong Huu Nguyen 2021-10-19 21:10:19 +02:00
3a35584a21 refactor: restructure and group related packages into subpackages Trong Huu Nguyen 2021-10-19 21:09:52 +02:00
008e486e72 feat: print openid provider and client configuration on startup Trong Huu Nguyen 2021-10-18 20:29:43 +02:00
204f77581d refactor: move redirect URI creation to openid pkg Trong Huu Nguyen 2021-10-18 19:33:21 +02:00
62e9e91c73 fix: correct join of paths for redirect URI Trong Huu Nguyen 2021-10-18 14:22:41 +02:00
1b4ce5cab7 Revert "Revert "refactor: infer redirect URI from configured ingress"" Trong Huu Nguyen 2021-10-18 14:12:41 +02:00
8cf9d22324 Revert "refactor: infer redirect URI from configured ingress" Trong Huu Nguyen 2021-10-18 14:06:10 +02:00
6f2520078e feat: add id_token to downstream header Trong Huu Nguyen 2021-10-18 12:41:53 +02:00
b7a4f891c5 Merge pull request #5 from nais/wip Trong Huu Nguyen 2021-10-18 12:32:16 +02:00
5f0b0df7cf refactor: infer redirect URI from configured ingress Trong Huu Nguyen 2021-10-18 09:23:29 +02:00
be585f9902 refactor: simplify config for acr_values and ui_locales; validate on startup Trong Huu Nguyen 2021-10-17 20:02:57 +02:00
5d2f8c3e84 refactor: cleanups for error template; embed and load on startup Trong Huu Nguyen 2021-10-17 19:29:13 +02:00
1d92df8284 docs: clean up, describe new configs and azure support Trong Huu Nguyen 2021-10-16 12:46:26 +02:00
c1482d09e1 refactor: generalize config to allow more providers; add azure Trong Huu Nguyen 2021-10-16 10:50:57 +02:00
e8e1fc7632 refactor: clean up tests and mock setup Trong Huu Nguyen 2021-10-16 10:50:05 +02:00
c702f8ff6c refactor: introduce generic provider for openid configs Trong Huu Nguyen 2021-10-16 10:42:49 +02:00
2f0243b69a refactor: move openid related structs to own pkg Trong Huu Nguyen 2021-10-16 10:38:32 +02:00
e7d5a6073c refactor: add jwks pkg for generating jwk sets Trong Huu Nguyen 2021-10-16 10:28:49 +02:00
9b15da6251 refactor: move scopes to own pkg Trong Huu Nguyen 2021-10-16 10:27:17 +02:00
8711f6e0d3 style: clean up imports Trong Huu Nguyen 2021-10-16 10:25:47 +02:00
5ce7d979c7 refactor: use httputil.ReverseProxy for default route Trong Huu Nguyen 2021-10-14 13:07:57 +02:00
8724e37e0d refactor: minor cleanups for callback handler Trong Huu Nguyen 2021-10-14 10:48:24 +02:00
d766e247a9 refactor: safer implementation for getting sid claim from id_token Trong Huu Nguyen 2021-10-14 10:48:08 +02:00
4d437063b9 Merge pull request #4 from nais/use-nais-team-app Kent D 2021-10-13 11:01:36 +02:00
071a8c0436 use nais-team-app instead of srvnais pat Kent D 2021-10-13 10:54:10 +02:00
5db2a01f63 fix: explicitly set status response header for front-channel logout Trong Huu Nguyen 2021-10-13 10:43:57 +02:00
d0482b3490 refactor: log session store unavailability, ensure fallback cookies are deleted when no longer needed Trong Huu Nguyen 2021-10-13 08:49:53 +02:00
f7f476db87 refactor: add toggle for redis tls negotiation Trong Huu Nguyen 2021-10-13 08:47:58 +02:00
6152b94aba Configure HA redis Morten Lied Johansen 2021-10-12 15:56:30 +02:00
d58e3339a9 refactor: only log route requests for owned routes Trong Huu Nguyen 2021-10-12 10:24:22 +02:00
657d7df988 refactor: remove startup redis ping Trong Huu Nguyen 2021-10-12 09:23:01 +02:00
e209516d32 feat: add toggle for auto redirect to login handler for default route Trong Huu Nguyen 2021-10-11 12:50:05 +02:00
2e10801d0e refactor: move client assertion generation, replace go-jose with jwx Trong Huu Nguyen 2021-10-11 11:46:11 +02:00
399a8175c8 refactor: user-friendly retry URI for default error page Trong Huu Nguyen 2021-10-07 10:02:18 +02:00
3bdbfd0030 refactor: only handle single ingress Trong Huu Nguyen 2021-10-07 08:02:16 +02:00
8b3075f6d0 fix: do not remove login cookies until end of callback Trong Huu Nguyen 2021-10-07 07:59:48 +02:00
9d48d444af chore: remove unused nais manifest Trong Huu Nguyen 2021-10-07 07:59:21 +02:00
b8a62826ad fix: remove debug error Trong Huu Nguyen 2021-10-06 14:54:30 +02:00
1f939d603d feat: add configurable redirect to custom error page sindrerh2 2021-10-06 14:49:04 +02:00
7979bb09fb refactor: move request related utilities to own pkg Trong Huu Nguyen 2021-10-06 12:39:08 +02:00
fb4adc9cc5 feat: add templated error page sindrerh2 2021-10-05 14:09:09 +02:00
9616587854 chore: go mod tidy Trong Huu Nguyen 2021-10-05 12:10:47 +02:00
77d0438411 feat: use latest go-chi v5, add middlewares for panic recovery and logging Trong Huu Nguyen 2021-10-05 10:55:08 +02:00
70516c3efb refactor: more cleanups; split up route handlers Trong Huu Nguyen 2021-10-04 19:10:19 +02:00
569855cef2 refactor: minor cleanups for middleware Trong Huu Nguyen 2021-10-04 18:45:40 +02:00
788ef1278a refactor: add correlation ID for error response logs Trong Huu Nguyen 2021-10-04 14:36:41 +02:00
ce8d8c6460 refactor: clean up error handling Trong Huu Nguyen 2021-10-04 14:07:08 +02:00
5e113f4284 refactor: use common cookie name across all instances Trong Huu Nguyen 2021-10-04 10:52:41 +02:00
f73b4605a1 refactor: use encrypted cookie as session fallback Trong Huu Nguyen 2021-10-04 10:45:01 +02:00
80c7abd70a refactor: update jwx; now infers alg from keys where missing Trong Huu Nguyen 2021-10-01 12:22:43 +02:00
43dd8d7926 More, correct, metrics Morten Lied Johansen 2021-10-01 10:28:44 +02:00
c70c7d7267 Increase login cookie lifetime Morten Lied Johansen 2021-10-01 09:46:54 +02:00
03eec9d2b8 refactor: robustify logout routes Trong Huu Nguyen 2021-10-01 09:35:21 +02:00
cc8ba980ca refactor: deduplicate crypto operations for sessions Trong Huu Nguyen 2021-09-30 18:27:53 +02:00
8f9cb671c6 fix: set jwt ID for client assertion to prevent token replay Trong Huu Nguyen 2021-09-30 15:38:23 +02:00
2ec1b7ace9 feat: encrypt session data Trong Huu Nguyen 2021-09-30 13:47:22 +02:00
cf7ca9c5b8 refactor: separate login param generation Trong Huu Nguyen 2021-09-30 12:13:38 +02:00
dbc0a47a46 refactor: ensure session lifetime does not exceed access token lifetime Trong Huu Nguyen 2021-09-30 11:44:15 +02:00
b2e89f32fa refactor: ensure cookies are properly disposed of Trong Huu Nguyen 2021-09-30 10:05:45 +02:00
ae2ca7ae9a Add versions in use panel to dashboard Morten Lied Johansen 2021-09-29 22:02:28 +02:00
aad2a49591 Register the metrics we collect Morten Lied Johansen 2021-09-29 22:00:10 +02:00
bf7d877183 Merge pull request #3 from nais/metrics Morten Lied Johansen 2021-09-29 15:06:54 +02:00
fb6dc12a9a Only in gcp Morten Lied Johansen 2021-09-29 13:56:59 +02:00
535f90a099 Merge pull request #2 from nais/cookies Morten Lied Johansen 2021-09-29 13:51:07 +02:00
25221added rename callbackparams to logincookie for clarity, ensure logincookie is deleted when no longer needed Trong Huu Nguyen 2021-09-29 13:27:30 +02:00
345691eb08 Starting on a dashboard Morten Lied Johansen 2021-09-29 11:24:31 +02:00
f551386113 Add Redis latency metrics Morten Lied Johansen 2021-09-29 10:50:27 +02:00
b60db493ac Add ClientID to cookie names Morten Lied Johansen 2021-09-29 10:20:11 +02:00
28b750517b wip: cookies Trong Huu Nguyen 2021-09-29 10:00:42 +02:00
11f860d5dd docs: write an actual readme Trong Huu Nguyen 2021-09-29 09:38:47 +02:00
bf8441bb1c build: bump go to 1.17 Trong Huu Nguyen 2021-09-29 09:22:25 +02:00
7869c3368b Merge pull request #1 from nais/graceful Morten Lied Johansen 2021-09-29 09:00:48 +02:00
214b14323c Do graceful shutdown on signals Morten Lied Johansen 2021-09-28 21:29:33 +02:00
5160987978 feat: allow user-defined post_logout_redirect_uri Trong Huu Nguyen 2021-09-10 14:45:41 +02:00
9dc5b08d65 ci: byttet til SRVNAIS_REPO_PUSH_PAT Kyrre Havik 2021-09-08 14:18:54 +02:00
acc32fe893 fix: log actual errors for callback route Trong Huu Nguyen 2021-09-08 09:26:26 +02:00
c7040b0284 feat: add feature toggle for authorization locale; allow user-supplied parameter Trong Huu Nguyen 2021-09-08 09:17:08 +02:00
55002e3cfe refactor: separate parsing and validation of id_token Trong Huu Nguyen 2021-09-07 21:30:38 +02:00

... 10 11 12 13 14 ...