Commits · 4630f69f177bfd480a5d1f69b21c4d546ba6d3e6 · go / dex

23 Feb, 2017 1 commit

[Makefile] Allow specifying VERSION as an env var · 4630f69f

Jeff Schroeder authored Feb 23, 2017

This makes specifying the VERSION when building native operating system packages require less hacks.

Refs: #811

4630f69f

22 Feb, 2017 3 commits
- Merge pull request #810 from caarlos0/patch-1 · af0d9ceb
  Eric Chiang authored Feb 22, 2017
```
simplified clone: using go get
```
  af0d9ceb
- simplified clone: using go get · f57e19e6
  Carlos Alexandro Becker authored Feb 22, 2017
  
  f57e19e6
- Merge pull request #809 from rithujohn191/set-error-flag · c76832ea
  rithu leena john authored Feb 22, 2017
```
storage: Surface "already exists" errors.
```
  c76832ea
21 Feb, 2017 2 commits
- storage: Surface "already exists" errors. · 3df1db18
  rithu john authored Feb 21, 2017
  
  3df1db18
- Merge pull request #807 from rithujohn191/fix-typo · 90c80e70
  rithu leena john authored Feb 21, 2017
```
web/static/main.css: fix typo.
```
  90c80e70
20 Feb, 2017 1 commit
- web/static/main.css: fix typo. · 0ee40865
  rithu john authored Feb 20, 2017
  
  0ee40865
15 Feb, 2017 2 commits
- Merge pull request #802 from rithujohn191/token-revocation · 7e9dc836
  rithu leena john authored Feb 15, 2017
```
api: adding a gRPC call for revoking refresh tokens.
```
  7e9dc836
- api: adding a gRPC call for revoking refresh tokens. · 1ec19d4f
  rithu john authored Feb 14, 2017
  
  1ec19d4f
14 Feb, 2017 2 commits
- Merge pull request #801 from rithujohn191/token-revocation · b119ffdd
  rithu leena john authored Feb 14, 2017
```
api: adding a gRPC call for listing refresh tokens.
```
  b119ffdd
- api: adding a gRPC call for listing refresh tokens. · d201e492
  rithu john authored Feb 10, 2017
  
  d201e492
10 Feb, 2017 2 commits
- Merge pull request #793 from rithujohn191/token-revocation · 53e38367
  rithu leena john authored Feb 10, 2017
```
storage: Add OfflineSession object to backend storage.
```
  53e38367
- storage: Add OfflineSession object to backend storage. · d928ac06
  rithu john authored Feb 01, 2017
  
  d928ac06
07 Feb, 2017 2 commits
- Merge pull request #800 from ericchiang/server-test-comments · 49f446c1
  rithu leena john authored Feb 07, 2017
```
server: clean up test comments and code flow
```
  49f446c1
- server: clean up test comments and code flow · 80038847
  Eric Chiang authored Feb 07, 2017
  
  80038847
06 Feb, 2017 3 commits
- Merge pull request #799 from ericchiang/thirdpartyresources · dd415f5e
  Eric Chiang authored Feb 06, 2017
```
Documentation: warn admins not to edit dex ThirdPartyResources manually
```
  dd415f5e
- Merge pull request #790 from givia/github-teams-pagination · 167d7be2
  rithu leena john authored Feb 06, 2017
```
Fixes #706
```
  167d7be2
- Documentation: warn admins not to edit dex ThirdPartyResources manually · adf37039
  Eric Chiang authored Feb 06, 2017
  
  adf37039
03 Feb, 2017 1 commit
- Merge pull request #796 from ericchiang/html-template · 7f860e09
  Eric Chiang authored Feb 03, 2017
```
{web,server}: use html/template and reduce use of auth request ID
```
  7f860e09
02 Feb, 2017 2 commits

{web,server}: use html/template and reduce use of auth request ID · 72a431dd

Eric Chiang authored Feb 02, 2017

Switch from using "text/template" to "html/template", which provides
basic XSS preventions. We haven't identified any particular place
where unsanitized user data is rendered to the frontend. This is
just a preventative step.

At the same time, make more templates take pure URL instead of
forming an URL themselves using an "authReqID" argument. This will
help us stop using the auth req ID in certain places, preventing
garbage collection from killing login flows that wait too long at
the login screen.

Also increase the login session window (time between initial
redirect and the user logging in) from 30 minutes to 24 hours,
and display a more helpful error message when the session expires.

How to test:

1. Spin up dex and example with examples/config-dev.yaml.
2. Login through both the password prompt and the direct redirect.
3. Edit examples/config-dev.yaml removing the "connectors" section.
4. Ensure you can still login with a password.

(email/password is "admin@example.com" and "password")

72a431dd

Merge pull request #794 from rithujohn191/saml-doc · 12f96936
rithu leena john authored Feb 02, 2017
```
Documentation: Minor changes to SAML connector doc.
```
12f96936

01 Feb, 2017 3 commits
- Documentation: Minor changes to SAML connector doc. · fecd596a
  rithu john authored Feb 01, 2017
  
  fecd596a
- Merge pull request #785 from holgerkoser/master · 42d07280
  rithu leena john authored Feb 01, 2017
```
Improve SAML Signature and Response Validation
```
  42d07280
- Merge pull request #788 from givia/gitlab-connector · 27224cdc
  rithu leena john authored Feb 01, 2017
```
connector: add GitLab connecor
```
  27224cdc
27 Jan, 2017 6 commits
- connector: add GitLab connector · e623ad4d
  Ali Javadi authored Jan 24, 2017
  
  e623ad4d
- Merge pull request #792 from ericchiang/auth-endpoint-post · 0dcf1bcf
  Eric Chiang authored Jan 27, 2017
```
server: support POSTing to authorization endpoint
```
  0dcf1bcf
- server: support POSTing to authorization endpoint · 8541184a
  Eric Chiang authored Jan 27, 2017
```
Fixes #791
```
  8541184a
- Merge pull request #789 from rithujohn191/token-revocation-proposal · 36883d0b
  rithu leena john authored Jan 27, 2017
```
Documentation/proposals: Add a proposal for refresh token revocation.
```
  36883d0b
- Documentation/proposals: Add a proposal for refresh token revocation. · d114b8ff
  rithu john authored Jan 26, 2017
  
  d114b8ff
- Fixes #706 · 98bfa4fb
  Ali Javadi authored Jan 26, 2017
  
  98bfa4fb
26 Jan, 2017 2 commits

vendor: revendor · 27a1e9f1
Holger Koser authored Jan 26, 2017

27a1e9f1

Improve SAML Signature and Response Validation · e46f2ebe

Holger Koser authored Jan 26, 2017

* Improve Order of Namespace Declarations and Attributes in Canonical XML. This is related to an issue in goxmldsig for which I created an [pull request](https://github.com/russellhaering/goxmldsig/pull/17).
* Do not compress the AuthnRequest if `HTTP-POST` binding is used.
* SAML Response is valid if the Message and/or the Assertion is signed.
* Add `AssertionConsumerServiceURL` to `AuthnRequest`
* Validate Status on the Response
* Validate Conditions on the Assertion
* Validation SubjectConfirmation on the Subject

e46f2ebe

24 Jan, 2017 1 commit
- Merge pull request #783 from rithujohn191/config-validation · 48fcf66a
  rithu leena john authored Jan 24, 2017
```
cmd/dex: make connector name field mandatory in dex configuration.
```
  48fcf66a
23 Jan, 2017 5 commits
- cmd/dex: make connector name field mandatory in dex configuration. · 31e80094
  rithu john authored Jan 23, 2017
  
  31e80094
- Merge pull request #782 from marians/patch-1 · 613d160a
  Eric Chiang authored Jan 23, 2017
```
Docs: Added a name to the LDAP connector
```
  613d160a
- Merge pull request #781 from ajohnstone/patch-1 · d3f4ae2a
  Eric Chiang authored Jan 23, 2017
```
Update kubernetes.md - correct typo
```
  d3f4ae2a
- Added a name to the connector · 38a2e41e
  Marian Steinbach authored Jan 23, 2017
```
Without a name, the example app's login form will only show `Log in with` as a button label.
```
  38a2e41e
- Update kubernetes.md · b10c0a1c
  Andrew Johnstone authored Jan 23, 2017
  
  b10c0a1c
17 Jan, 2017 2 commits
- Merge pull request #777 from rithujohn191/update-release-doc · a3ef8d26
  rithu leena john authored Jan 17, 2017
```
Documentation: add docs on patch release process.
```
  a3ef8d26
- Documentation: add docs on patch release process. · 265cfacd
  rithu john authored Jan 17, 2017
  
  265cfacd