- 28 Jun, 2016 7 commits
-
-
Eric Chiang authored
Fix docker-build script
-
Eric Chiang authored
-
Eric Chiang authored
*: update go-oidc to shorten length of key IDs
-
Eric Chiang authored
-
Eric Chiang authored
*: update mailgun-go to remove dependency on deleted simplehttp pkg
-
Eric Chiang authored
-
Eric Chiang authored
-
- 27 Jun, 2016 2 commits
-
-
Eric Chiang authored
build with go 1.6 and actually push to quay
-
Eric Chiang authored
-
- 24 Jun, 2016 2 commits
-
-
Eric Chiang authored
scope: don't validate empty scopes
-
Bobby Rullo authored
If an empty scope is somehow passed along, it shouldn't be validated when checking refresh token scope.
-
- 21 Jun, 2016 14 commits
-
-
bobbyrullo authored
Allow specification of client_{id, secret} in admin api
-
Bobby Rullo authored
-
Bobby Rullo authored
You can specify your own client ID and secret!
-
bobbyrullo authored
Implement Public Clients
-
Bobby Rullo authored
-
Bobby Rullo authored
-
Bobby Rullo authored
When "urn:ietf:wg:oauth:2.0:oob" is used as a redirect URI, redirect to an internal dex page where the user is shown the code and instructed to paste it into their app.
-
Bobby Rullo authored
When calling manager.Authenticate, logs now show different error messages.
-
Bobby Rullo authored
* disallow ClientCreds for public clients * clients can only redirect to localhost or OOB
-
Bobby Rullo authored
Metadata is not enough these days - we're going to need access to the Public field as well.
-
Bobby Rullo authored
-
Bobby Rullo authored
and update docs
-
Bobby Rullo authored
* Start Documentation
-
Bobby Rullo authored
* validation of client moved into its own method and tested * public clients have different validation - must have no redirect URIs and must have a clientName set
-
- 20 Jun, 2016 3 commits
-
-
Bobby Rullo authored
-
Eric Chiang authored
Revert "Use Github templates for issues/proposals"
-
Eric Chiang authored
The proposal templates was not intended to be show for every issue, only for proposal. Revert that issue template and add more general one in a follow up commit. This reverts commit 09cb3857.
-
- 17 Jun, 2016 2 commits
-
-
Eric Chiang authored
*: add --enable-automatic-registration flag to worker
-
Eric Chiang authored
For remote connectors, allow users to skip registration.
-
- 15 Jun, 2016 8 commits
-
-
bobbyrullo authored
Remove old client_resource api
-
Bobby Rullo authored
go 1.5.4 accepts just about anything as a URL, so instead just trigger with blank URL
-
Bobby Rullo authored
-
Bobby Rullo authored
-
Bobby Rullo authored
API Driver is dead: This API turns out to not be super useful, requiring an existing client to create other clients is weird. Long live API Driver? Let's use Dynamic Client API and the bootstrap API to create a better API Driver! LONG LIVE API DRIVER.
-
Bobby Rullo authored
...and dependent code.
-
Bobby Rullo authored
-
Bobby Rullo authored
The only thing using this AFAIK is dexctl in api_driver mode, which no-one uses - it's a sort of weird API which requires a client to create other clients, and gives all clients the ability to list all other clients. So we are removing it.
-
- 14 Jun, 2016 2 commits
-
-
bobbyrullo authored
Cross client refresh tokens
-
Bobby Rullo authored
Before, this logic was only in the OIDCServer.CodeToken() method; now it has been pulled out so that other paths, like OIDCServer.RefreshToken() can use it. The net affect, is that now refresh tokens can be used to get cross-client authenticated ID Tokens.
-