fe1ea4a2d0
Check multiple audience values ( #781 )
...
Some IDP use different audience for different clients.
This update checks HTTP and Device authorization flow audience values.
---------
Co-authored-by: Givi Khojanashvili <gigovich@gmail.com >
2023-04-04 16:40:56 +02:00
769388cd21
Merge pull request #776 from netbirdio/feature/activity_events_for_pat
...
feature/activity_events_for_pat
2023-04-03 12:27:51 +02:00
c54fb9643c
Merge pull request #774 from netbirdio/feature/add_pat_middleware
...
Feature/add pat middleware
2023-04-03 12:09:11 +02:00
5dc0ff42a5
Fix broken auto-generated Rego rule ( #769 )
...
Default Rego policy generated from the rules in some cases is broken.
This change fixes the Rego template for rules to generate policies.
Also, file store load constantly regenerates policy objects from rules.
It allows updating/fixing of the default Rego template during releases.
2023-04-01 12:02:08 +02:00
45badd2c39
add event store to user tests
2023-04-01 11:11:30 +02:00
d3de035961
error responses always lower case + duplicate error response fix
2023-04-01 11:04:21 +02:00
b2da0ae70f
add activity events on PAT creation and deletion
2023-03-31 17:41:22 +02:00
931c20c8fe
fix test name
2023-03-31 12:45:10 +02:00
2eaf4aa8d7
add test for auth middleware
2023-03-31 12:44:22 +02:00
110067c00f
change order for access control checks and aquire account lock after global lock
2023-03-31 12:03:53 +02:00
32c96c15b8
disable linter errors by comment
2023-03-31 10:30:05 +02:00
ca1dc5ac88
disable access control for token endpoint
2023-03-30 19:03:44 +02:00
ce775d59ae
revert codacy
2023-03-30 18:59:35 +02:00
f273fe9f51
revert codacy
2023-03-30 18:54:55 +02:00
e08af7fcdf
codacy
2023-03-30 17:46:21 +02:00
454240ca05
comments for codacy
2023-03-30 17:32:44 +02:00
1343a3f00e
add test + codacy
2023-03-30 16:43:39 +02:00
2a79995706
fix linter
2023-03-30 16:22:15 +02:00
e869882da1
fix merge
2023-03-30 16:14:51 +02:00
6c8bb60632
fix merge
2023-03-30 16:06:46 +02:00
4d7029d80c
Merge branch 'main' into feature/add_pat_middleware
...
# Conflicts:
# management/server/grpcserver.go
# management/server/http/middleware/jwt.go
2023-03-30 16:06:21 +02:00
909f305728
Merge pull request #766 from netbirdio/feature/add_rest_endpoints_for_pat
...
Feature/add rest endpoints for pat
2023-03-30 15:55:48 +02:00
5e2f66d591
fix codacy
2023-03-30 15:23:24 +02:00
a7519859bc
fix test
2023-03-30 14:15:44 +02:00
9b000b89d5
Merge branch 'feature/add_rest_endpoints_for_pat' into feature/add_pat_middleware
...
# Conflicts:
# management/server/mock_server/account_mock.go
2023-03-30 14:02:58 +02:00
5c1acdbf2f
move validation into account manager + func for get requests
2023-03-30 13:58:44 +02:00
db3a9f0aa2
refactor jwt token validation and add PAT to middleware auth
2023-03-30 10:54:09 +02:00
ecc4f8a10d
fix Pat handler test
2023-03-29 19:13:01 +02:00
03abdfa112
return empty object on all handlers instead of empty string
2023-03-29 18:46:40 +02:00
9746a7f61a
remove debug logs
2023-03-29 18:27:01 +02:00
4ec6d5d20b
remove debug logs
2023-03-29 18:23:10 +02:00
3bab745142
last_used can be nil
2023-03-29 17:46:09 +02:00
0ca3d27a80
update account mock
2023-03-29 15:25:44 +02:00
c5942e6b33
store hashed token base64 encoded
2023-03-29 15:21:53 +02:00
726ffb5740
add comments for exported functions
2023-03-29 15:06:54 +02:00
42ba0765c8
fix linter
2023-03-28 14:54:06 +02:00
514403db37
use object instead of plain token for create response + handler test
2023-03-28 14:47:15 +02:00
6a75ec4ab7
fix http error codes
2023-03-27 17:42:05 +02:00
b66e984ddd
set limits for expiration
2023-03-27 17:28:24 +02:00
c65a934107
refactor to use name instead of description
2023-03-27 16:28:49 +02:00
9e74f30d2f
fix delete token parameter lookup
2023-03-27 15:19:19 +02:00
a27fe4326c
Add JWT middleware validation failure log ( #760 )
...
We will log the middleware log now, but in the next
releases we should provide a generic error that can be
parsed by the dashboard.
2023-03-23 18:26:41 +01:00
e6292e3124
Disable peer expiration of peers added with setup keys ( #758 )
2023-03-23 17:47:53 +01:00
628b497e81
Adjustments for the change server flow ( #756 )
...
Check SSO support by calling the internal.GetDeviceAuthorizationFlowInfo
Rename LoginSaveConfigIfSSOSupported to SaveConfigIfSSOSupported
Receive device name as input for setup-key login
have a default android name when no context value is provided
log non parsed errors from management registration calls
2023-03-23 16:35:06 +01:00
8f66dea11c
Add Keycloak Idp Manager ( #746 )
...
Added intergration with keycloak user API.
2023-03-23 14:54:31 +01:00
de8608f99f
add rest endpoints and update openapi doc
2023-03-21 16:02:19 +01:00
8e4710763e
use single line return for SaveAccount
2023-03-21 14:02:34 +01:00
82af60838e
use "ok" convention for check variables throughout files_store
2023-03-21 14:00:59 +01:00
311b67fe5a
change error messages
2023-03-21 13:56:31 +01:00
94d39ab48c
improve style for tests
2023-03-21 13:34:48 +01:00
