Commit Graph

39 Commits

Author SHA1 Message Date
Cam Otts
53940d51ab
Tls supprt (#540)
* added tls support to controller and access proxies

* few pr comments
2024-01-17 15:37:46 -06:00
Kenneth Bingham
5e0cc3ce53
correct logical operator 2024-01-09 16:46:22 -05:00
Kenneth Bingham
8674edc23e
correctly filter the pkce cookie by name 2024-01-09 16:34:41 -05:00
Kenneth Bingham
df829bf225
optimize cookie handling loops 2024-01-09 16:30:47 -05:00
Kenneth Bingham
ee3bcbbbdb
delete cookie from request instead of setting max age because cookie is never seen by client at this stage before it's passed to backend 2024-01-09 15:34:37 -05:00
Kenneth Bingham
b5f6fd3f55
normalize function names 2024-01-09 13:08:37 -05:00
Kenneth Bingham
25ac8a76f4
delete the zrok-access cookie if not oauth 2024-01-09 13:05:37 -05:00
Kenneth Bingham
7be46bfd40
normalize some existing log messages 2023-12-15 12:15:40 -05:00
Kenneth Bingham
ece79f28d9
set and check zrok-access JWT audience matches share host 2023-12-15 12:13:30 -05:00
Cam
30558a454b
move the go sdk into subdir 2023-11-21 13:27:17 -06:00
Michael Quigley
509bea7fc2
improved oauth frontend configuration; better separation of concerns (#411) 2023-10-18 11:47:26 -04:00
Michael Quigley
62719c13ad
fix redirect issue for oauth frontend 2023-10-17 16:08:18 -04:00
Michael Quigley
2f8b711fb9
public frontend configuration structure now versioned; starts with 'v: 2' (#406) 2023-10-16 21:18:28 -04:00
Michael Quigley
72b80bac94
docs; tweaks (#404) 2023-10-05 13:34:27 -04:00
Michael Quigley
c4f9cecd99
redundant oauth configuration cleanup (#404) 2023-10-03 17:11:52 -04:00
Michael Quigley
483c599c93
use MD5 hash to get reliable 16-byte key (#404) 2023-09-28 14:39:31 -04:00
Michael Quigley
957e50412e
separate out the OAuth host config from HostMatch (#404) 2023-09-28 13:01:36 -04:00
Michael Quigley
7f6f2de5e8
elide client_secret in cf.Dump (#404) 2023-09-26 13:43:42 -04:00
Michael Quigley
adbe4e78c0
lint and cleanup; oauthLoginRequired (#404) 2023-09-26 13:42:41 -04:00
Michael Quigley
b63b1fc145
present basic auth realm as share token 2023-09-26 11:36:11 -04:00
Cam
b951ea152d
Remove old hardcoded domain 2023-09-13 12:41:10 -05:00
Cam
ec73d03078
small verification log 2023-09-13 11:07:15 -05:00
Cam
4be9089cfe
fixed redirect to respect intended route, added additional logging around token swapping 2023-09-13 10:37:38 -05:00
Cam
67a981980b
set the cookie jar domain handler to the root domain 2023-09-12 16:16:49 -05:00
Cam
42e67ce079
can't bleieve I missed these ports. Updated. 2023-09-12 14:19:52 -05:00
Cam
1345990ede
actually plumbed the oauth port through to the server 2023-09-12 14:04:55 -05:00
Ziti-Ci
a07552f0c4
fixed up auth check interval 2023-09-05 11:50:41 -05:00
Ziti-Ci
8e63548552
Merge branch 'main' into oauth-testing 2023-09-05 10:10:25 -05:00
Ziti-Ci
2b0dc71f93
updates to the oauth work 2023-09-05 09:55:55 -05:00
Michael Quigley
c26d325f61
generalized implementation of public/private share (#34) 2023-07-17 16:45:20 -04:00
Michael Quigley
141c9ae685
even better names for the common identities in the 'environment' (#34, #369) 2023-07-17 13:51:51 -04:00
Cam Otts
a8c76b2877
initial testing for oauth protecting shares 2023-07-17 09:44:05 -05:00
Michael Quigley
4713243e2c
further ziti identity naming cleanup (#369) 2023-07-14 10:14:32 -04:00
Michael Quigley
04b0b64ebf
migrated all usages to the new package (#369) 2023-07-13 14:26:35 -04:00
Michael Quigley
c468c7ace9
environment -> env_v0_3 (#369) 2023-07-11 14:59:02 -04:00
Michael Quigley
ea71493f2f
zrokdir -> environment (#34) 2023-07-10 16:41:16 -04:00
Cam Otts
fec0fd9e73
Format changes 2023-05-25 13:59:39 -05:00
Cam Otts
d6d5ac65a3
update deps 2023-05-25 10:50:38 -05:00
Michael Quigley
56bb9c6d31
publicProxyFrontend -> publicProxy (#170) 2023-04-18 13:38:32 -04:00