- 02 Sep, 2015 1 commit
-
-
Yifan Gu authored
This enables us to control the length of the bytes that will be bcrypted, by default it's 64. Also changed the token's stored form from string('text') to []byte('bytea') and added some test cases for different types of invalid tokens.
-
- 31 Aug, 2015 9 commits
-
-
Yifan Gu authored
return refresh token only when scope contains 'offline_access'
-
Yifan Gu authored
-
Yifan Gu authored
Require 'openid' in scope for all requests. Require 'offline_access' for returning refresh token.
-
Yifan Gu authored
-
bobbyrullo authored
cmd/dex-overlord: bind admin API on 127.0.0.1
-
Bobby Rullo authored
Instead of 0.0.0.0; this is safer, since the admin API is very powerful. fixes #97
-
bobbyrullo authored
Documentation: mv security_guide.md tls-setup.md
-
Bobby Rullo authored
-
Yifan Gu authored
dex-worker: add TLS support.
-
- 29 Aug, 2015 3 commits
-
-
Yifan Gu authored
Also add example tls-setup configs that can be used to generate TLS CA, server certs, key files using 'cfssl'.
-
Yifan Gu authored
-
Yifan Gu authored
Add two new flags '--cert-file' and '--key-file'. If scheme == 'https', then we will use the two new flags to get the cert/key pair for TLS connection. Also add '--ca-file' to the example app to allow TLS connection to the dex-worker using a specified ca file.
-
- 28 Aug, 2015 5 commits
-
-
bobbyrullo authored
-
bobbyrullo authored
examples/static: various changes to fix examples
-
Bobby Rullo authored
-
bobbyrullo authored
OIDC Compliance Notes
-
Bobby Rullo authored
-
- 26 Aug, 2015 10 commits
-
-
bobbyrullo authored
server: make reset password pass tests
-
Bobby Rullo authored
Handler wants a password value even when its blank
-
bobbyrullo authored
README.md/Documentation: Get Docs up-to-date.
-
Bobby Rullo authored
-
Bobby Rullo authored
* key_secret -> key_secrets * make sure overlord starts up before other operations since it creates the db * remove race conditions by blocking on /health being up for worker and overlord
-
Bobby Rullo authored
-
Bobby Rullo authored
* Fix up README * Create getting started guide. * Start dev guide * Start deploy guide
-
bobbyrullo authored
Base64 Encode secrets, and allow >1 of them
-
Bobby Rullo authored
Two things here: * key secrets are now base64 encoded strings, so we get the full key space * we can pass >1 of them in so we can rotate them -
Bobby Rullo authored
mmmkay?
-
- 25 Aug, 2015 5 commits
-
-
Bobby Rullo authored
Allows setting of []byte's with base64 encoded strings and [][]bytes with comma-separated base64 encoded strings.
-
Bobby Rullo authored
The first secret is used to encrypt, the rest are for decryption; if the first doesn't work, the rest are tried in order. The makes it possible to rotate keys.
-
Ed Rooth authored
static: update all static templates to be generic & prettier
-
Ed Rooth authored
-
bobbyrullo authored
Move gorp to its new location.
-
- 24 Aug, 2015 6 commits
-
-
Bobby Rullo authored
-
Bobby Rullo authored
-
bobbyrullo authored
README: explain the name dex
-
Brandon Philips authored
People are going to ask, might as well get it out there.
-
bobbyrullo authored
bug: remote whitespace so eval works
-
Alex Polvi authored
-
- 21 Aug, 2015 1 commit
-
-
bobbyrullo authored
Update Quay link, remove semaphore link
-
