- 01 Mar, 2017 2 commits
-
-
rithu leena john authored
server: fix expiry detection for verification keys
-
Eric Chiang authored
-
- 27 Feb, 2017 2 commits
-
-
rithu leena john authored
storage/kubernetes: fix conflict error detection in TRP creation
-
Eric Chiang authored
PR #815 fixed the Kubernetes storage implementation by correctly returning storage.ErrAlreadyExists on POST conflicts. This caused a regression in TPR creation (#822) when some, but not all, of the resources already existed. E.g. for users upgrading from old versions of dex. Fixes #822
-
- 24 Feb, 2017 4 commits
-
-
Eric Chiang authored
storage/kubernetes: fix hash initialization bug
-
Eric Chiang authored
-
Eric Chiang authored
storage/kubernetes: fix kubernetes storage conformance test failures
-
Eric Chiang authored
-
- 22 Feb, 2017 3 commits
-
-
Eric Chiang authored
simplified clone: using go get
-
Carlos Alexandro Becker authored
-
rithu leena john authored
storage: Surface "already exists" errors.
-
- 21 Feb, 2017 2 commits
-
-
rithu john authored
-
rithu leena john authored
web/static/main.css: fix typo.
-
- 20 Feb, 2017 1 commit
-
-
rithu john authored
-
- 15 Feb, 2017 2 commits
-
-
rithu leena john authored
api: adding a gRPC call for revoking refresh tokens.
-
rithu john authored
-
- 14 Feb, 2017 2 commits
-
-
rithu leena john authored
api: adding a gRPC call for listing refresh tokens.
-
rithu john authored
-
- 10 Feb, 2017 2 commits
-
-
rithu leena john authored
storage: Add OfflineSession object to backend storage.
-
rithu john authored
-
- 07 Feb, 2017 2 commits
-
-
rithu leena john authored
server: clean up test comments and code flow
-
Eric Chiang authored
-
- 06 Feb, 2017 3 commits
-
-
Eric Chiang authored
Documentation: warn admins not to edit dex ThirdPartyResources manually
-
rithu leena john authored
Fixes #706
-
Eric Chiang authored
-
- 03 Feb, 2017 1 commit
-
-
Eric Chiang authored
{web,server}: use html/template and reduce use of auth request ID
-
- 02 Feb, 2017 2 commits
-
-
Eric Chiang authored
Switch from using "text/template" to "html/template", which provides basic XSS preventions. We haven't identified any particular place where unsanitized user data is rendered to the frontend. This is just a preventative step. At the same time, make more templates take pure URL instead of forming an URL themselves using an "authReqID" argument. This will help us stop using the auth req ID in certain places, preventing garbage collection from killing login flows that wait too long at the login screen. Also increase the login session window (time between initial redirect and the user logging in) from 30 minutes to 24 hours, and display a more helpful error message when the session expires. How to test: 1. Spin up dex and example with examples/config-dev.yaml. 2. Login through both the password prompt and the direct redirect. 3. Edit examples/config-dev.yaml removing the "connectors" section. 4. Ensure you can still login with a password. (email/password is "admin@example.com" and "password")
-
rithu leena john authored
Documentation: Minor changes to SAML connector doc.
-
- 01 Feb, 2017 3 commits
-
-
rithu john authored
-
rithu leena john authored
Improve SAML Signature and Response Validation
-
rithu leena john authored
connector: add GitLab connecor
-
- 27 Jan, 2017 6 commits
-
-
Ali Javadi authored
-
Eric Chiang authored
server: support POSTing to authorization endpoint
-
Eric Chiang authored
Fixes #791
-
rithu leena john authored
Documentation/proposals: Add a proposal for refresh token revocation.
-
rithu john authored
-
Ali Javadi authored
-
- 26 Jan, 2017 2 commits
-
-
Holger Koser authored
-
Holger Koser authored
* Improve Order of Namespace Declarations and Attributes in Canonical XML. This is related to an issue in goxmldsig for which I created an [pull request](https://github.com/russellhaering/goxmldsig/pull/17). * Do not compress the AuthnRequest if `HTTP-POST` binding is used. * SAML Response is valid if the Message and/or the Assertion is signed. * Add `AssertionConsumerServiceURL` to `AuthnRequest` * Validate Status on the Response * Validate Conditions on the Assertion * Validation SubjectConfirmation on the Subject
-
- 24 Jan, 2017 1 commit
-
-
rithu leena john authored
cmd/dex: make connector name field mandatory in dex configuration.
-