Commits · 08db0eb5ce71aa33fd32f8132ae18a0414f48bff · go / dex

03 Mar, 2017 1 commit
- examples/grpc-client: minor corrections in the dex client example. · 08db0eb5
  rithu john authored Mar 03, 2017
  
  08db0eb5
01 Mar, 2017 3 commits
- Merge pull request #829 from ericchiang/fix-keys-expiry · 3e5480a8
  Eric Chiang authored Mar 01, 2017
```
server: fix expiry detection for verification keys
```
  3e5480a8
- Merge pull request #825 from ericchiang/http2 · 920f6fb5
  Eric Chiang authored Mar 01, 2017
```
storage/kubernetes: enable HTTP/2 support
```
  920f6fb5
- server: fix expiry detection for verification keys · 2c4752d5
  Eric Chiang authored Mar 01, 2017
  
  2c4752d5
28 Feb, 2017 3 commits
- Merge pull request #812 from rithujohn191/example-client · 3797a71e
  rithu leena john authored Feb 28, 2017
```
examples: adding a gRPC client example.
```
  3797a71e
- storage/kubernetes: enable HTTP/2 support · 38c77e0f
  Eric Chiang authored Jan 14, 2017
  
  38c77e0f
- examples: adding a gRPC client example. · fa2f76bc
  rithu john authored Feb 20, 2017
  
  fa2f76bc
27 Feb, 2017 2 commits

Merge pull request #823 from ericchiang/tpr-already-exists · bb896a82
rithu leena john authored Feb 27, 2017
```
storage/kubernetes: fix conflict error detection in TRP creation
```
bb896a82

storage/kubernetes: fix conflict error detection in TRP creation · a7b8e52b

Eric Chiang authored Feb 27, 2017

PR #815 fixed the Kubernetes storage implementation by correctly
returning storage.ErrAlreadyExists on POST conflicts. This caused a
regression in TPR creation (#822) when some, but not all, of the
resources already existed. E.g. for users upgrading from old
versions of dex.

Fixes #822

a7b8e52b

24 Feb, 2017 6 commits
- Merge pull request #819 from SEJeff/patch-1 · 8e562dac
  rithu leena john authored Feb 24, 2017
```
[storage.md] Fix the ThirdPartyResource syntax
```
  8e562dac
- [storage.md] Fix the ThirdPartyResource syntax · 58d80547
  Jeff Schroeder authored Feb 24, 2017
```
This makes manually creating the `o-auth2-client.oidc.coreos.com` actually work.
```
  58d80547
- Merge pull request #817 from ericchiang/fix-hash-bug · cd939309
  Eric Chiang authored Feb 24, 2017
```
storage/kubernetes: fix hash initialization bug
```
  cd939309
- storage/kubernetes: fix hash initialization bug · 1da2ae27
  Eric Chiang authored Feb 24, 2017
  
  1da2ae27
- Merge pull request #815 from ericchiang/fix-k8s-storage · 25b902b0
  Eric Chiang authored Feb 24, 2017
```
storage/kubernetes: fix kubernetes storage conformance test failures
```
  25b902b0
- storage/kubernetes: fix kubernetes storage conformance test failures · 4be029c6
  Eric Chiang authored Feb 24, 2017
  
  4be029c6
23 Feb, 2017 2 commits
- Merge pull request #813 from SEJeff/patch-1 · 58eb25aa
  Eric Chiang authored Feb 23, 2017
```
[Makefile] Allow specifying VERSION as an env var
```
  58eb25aa
- [Makefile] Allow specifying VERSION as an env var · 4630f69f
  Jeff Schroeder authored Feb 23, 2017
```
This makes specifying the VERSION when building native operating system packages require less hacks.

Refs: #811
```
  4630f69f
22 Feb, 2017 3 commits
- Merge pull request #810 from caarlos0/patch-1 · af0d9ceb
  Eric Chiang authored Feb 22, 2017
```
simplified clone: using go get
```
  af0d9ceb
- simplified clone: using go get · f57e19e6
  Carlos Alexandro Becker authored Feb 22, 2017
  
  f57e19e6
- Merge pull request #809 from rithujohn191/set-error-flag · c76832ea
  rithu leena john authored Feb 22, 2017
```
storage: Surface "already exists" errors.
```
  c76832ea
21 Feb, 2017 2 commits
- storage: Surface "already exists" errors. · 3df1db18
  rithu john authored Feb 21, 2017
  
  3df1db18
- Merge pull request #807 from rithujohn191/fix-typo · 90c80e70
  rithu leena john authored Feb 21, 2017
```
web/static/main.css: fix typo.
```
  90c80e70
20 Feb, 2017 1 commit
- web/static/main.css: fix typo. · 0ee40865
  rithu john authored Feb 20, 2017
  
  0ee40865
15 Feb, 2017 2 commits
- Merge pull request #802 from rithujohn191/token-revocation · 7e9dc836
  rithu leena john authored Feb 15, 2017
```
api: adding a gRPC call for revoking refresh tokens.
```
  7e9dc836
- api: adding a gRPC call for revoking refresh tokens. · 1ec19d4f
  rithu john authored Feb 14, 2017
  
  1ec19d4f
14 Feb, 2017 2 commits
- Merge pull request #801 from rithujohn191/token-revocation · b119ffdd
  rithu leena john authored Feb 14, 2017
```
api: adding a gRPC call for listing refresh tokens.
```
  b119ffdd
- api: adding a gRPC call for listing refresh tokens. · d201e492
  rithu john authored Feb 10, 2017
  
  d201e492
10 Feb, 2017 2 commits
- Merge pull request #793 from rithujohn191/token-revocation · 53e38367
  rithu leena john authored Feb 10, 2017
```
storage: Add OfflineSession object to backend storage.
```
  53e38367
- storage: Add OfflineSession object to backend storage. · d928ac06
  rithu john authored Feb 01, 2017
  
  d928ac06
07 Feb, 2017 2 commits
- Merge pull request #800 from ericchiang/server-test-comments · 49f446c1
  rithu leena john authored Feb 07, 2017
```
server: clean up test comments and code flow
```
  49f446c1
- server: clean up test comments and code flow · 80038847
  Eric Chiang authored Feb 07, 2017
  
  80038847
06 Feb, 2017 3 commits
- Merge pull request #799 from ericchiang/thirdpartyresources · dd415f5e
  Eric Chiang authored Feb 06, 2017
```
Documentation: warn admins not to edit dex ThirdPartyResources manually
```
  dd415f5e
- Merge pull request #790 from givia/github-teams-pagination · 167d7be2
  rithu leena john authored Feb 06, 2017
```
Fixes #706
```
  167d7be2
- Documentation: warn admins not to edit dex ThirdPartyResources manually · adf37039
  Eric Chiang authored Feb 06, 2017
  
  adf37039
03 Feb, 2017 1 commit
- Merge pull request #796 from ericchiang/html-template · 7f860e09
  Eric Chiang authored Feb 03, 2017
```
{web,server}: use html/template and reduce use of auth request ID
```
  7f860e09
02 Feb, 2017 2 commits

{web,server}: use html/template and reduce use of auth request ID · 72a431dd

Eric Chiang authored Feb 02, 2017

Switch from using "text/template" to "html/template", which provides
basic XSS preventions. We haven't identified any particular place
where unsanitized user data is rendered to the frontend. This is
just a preventative step.

At the same time, make more templates take pure URL instead of
forming an URL themselves using an "authReqID" argument. This will
help us stop using the auth req ID in certain places, preventing
garbage collection from killing login flows that wait too long at
the login screen.

Also increase the login session window (time between initial
redirect and the user logging in) from 30 minutes to 24 hours,
and display a more helpful error message when the session expires.

How to test:

1. Spin up dex and example with examples/config-dev.yaml.
2. Login through both the password prompt and the direct redirect.
3. Edit examples/config-dev.yaml removing the "connectors" section.
4. Ensure you can still login with a password.

(email/password is "admin@example.com" and "password")

72a431dd

Merge pull request #794 from rithujohn191/saml-doc · 12f96936
rithu leena john authored Feb 02, 2017
```
Documentation: Minor changes to SAML connector doc.
```
12f96936

01 Feb, 2017 3 commits
- Documentation: Minor changes to SAML connector doc. · fecd596a
  rithu john authored Feb 01, 2017
  
  fecd596a
- Merge pull request #785 from holgerkoser/master · 42d07280
  rithu leena john authored Feb 01, 2017
```
Improve SAML Signature and Response Validation
```
  42d07280
- Merge pull request #788 from givia/gitlab-connector · 27224cdc
  rithu leena john authored Feb 01, 2017
```
connector: add GitLab connecor
```
  27224cdc