jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
17,514 Commits 33 Branches 583 Tags
2b52e21ccf384943ff8d1659079e477908b3728f
Commit Graph

135 Commits

Author SHA1 Message Date
Johannes Zellner cf210c5a5a Return the payload of the session in oidc and not the session object 2025-05-19 11:45:29 +02:00
Johannes Zellner b7cc592fb1 Verify if oidc session is from an existing and active user 2025-05-14 14:19:11 +02:00
Johannes Zellner 1d2c3a748b Set all oidc_error template keys 2025-05-14 12:39:51 +02:00
Johannes Zellner f0f04ce3ff Migrate openid error page to vuejs 2025-03-29 15:37:47 +01:00
Girish Ramakrishnan 5342dae5b3 tokens: add ip restriction 2025-03-07 17:50:50 +01:00
Johannes Zellner b7b738c92b Add cron job to cleanup exired oidc objects 2025-03-05 11:48:33 +01:00
Girish Ramakrishnan 74f4849144 req.connection.remoteAddress is deprecated 2025-01-29 10:35:21 +01:00
Johannes Zellner a071cef46a vuefy login page 2025-01-06 14:35:50 +01:00
Johannes Zellner 571d510423 Move all oidc views into vite / dashboard 2025-01-06 14:35:50 +01:00
Johannes Zellner 8dd4b58227 Move oidc error page into vite 2025-01-06 14:35:50 +01:00
Johannes Zellner d9402bc24d Move login.ejs into a vite handled view 2025-01-06 14:35:50 +01:00
Girish Ramakrishnan dc3d23c27b oidc: flatten the export list 2024-12-02 08:31:35 +01:00
Johannes Zellner e35b36643c Add more oidc debugs 2024-11-18 18:09:01 +01:00
Johannes Zellner 16fa339025 Add refresh_token grant type 2024-11-18 18:07:32 +01:00
Girish Ramakrishnan 051b0e0fd3 oidc: set a refresh token ttl to avoid warning 
oidc-provider NOTICE: default ttl.RefreshToken function called, you SHOULD change it in order to define the expiration for RefreshToken artifacts.
 2024-11-18 15:29:14 +05:30
Johannes Zellner 8621fbda79 Enable refresh tokens for oidc provider 2024-10-29 16:20:53 +01:00
Girish Ramakrishnan 1b22ea661c avatar: deliver .png images 
this is required for mastodon atleast. if the oidc avatar url, returns
an svg, it crashes!

the profile pic png was created using inkspace:
inkscape -w 96 -h 96 avatar-default-symbolic.svg -o avatar-default-symbolic.png
 2024-10-18 22:39:18 +02:00
Vladimir D 227fdf10dd OIDC: id_token added to client response types 2024-09-20 14:16:40 +02:00
Vladimir D 3ce74d04d0 OIDC: groups claim added to make groups provisioned 2024-09-19 13:08:20 +02:00
Girish Ramakrishnan 525e48ae59 json middleware is part of Express v4.16.0 2024-07-19 22:26:24 +02:00
Girish Ramakrishnan bcf497b460 translation.js -> translations.js 
kept confusing my why i can't find this file! this is in line
with the rest of our code
 2024-07-05 12:45:27 +02:00
Girish Ramakrishnan bf51a60986 change args of translation.translate 2024-07-05 12:42:33 +02:00
Johannes Zellner f715e21306 oidc: raise login event on consent not login form itself 2024-06-25 13:24:46 +02:00
Girish Ramakrishnan 649c06b641 notification: do not send login notification for external users 2024-06-13 16:55:35 +02:00
Girish Ramakrishnan 6b4df0bd65 lint 2024-06-13 16:55:35 +02:00
Girish Ramakrishnan 6eda037544 lint: const fixes 2024-05-13 17:02:20 +02:00
Johannes Zellner 7eda1136ea oidc: starting with new .json model files is not worth a log line 2024-04-29 09:19:37 +02:00
Girish Ramakrishnan 366f247910 oidc: only start in set callback 2024-04-27 11:51:10 +02:00
Johannes Zellner ec7dabc1c7 oidc: also allow login on aliased app domains 2024-04-19 19:03:23 +02:00
Johannes Zellner 21d7438bbe proxyauth: user OpenID instead of basic auth 2024-04-15 15:59:16 +02:00
Johannes Zellner 76c4002a04 oidc: Add profile picture claim 2024-04-14 12:05:45 +02:00
Johannes Zellner 36ab5800a3 oidc: enable CORS for internal apps 2024-04-11 19:10:29 +02:00
Johannes Zellner 028b820d48 oidc: Reload the login view if session is gone 2024-04-04 17:32:58 +02:00
Johannes Zellner 68724bcb4f Revert "oidc: enable rpInitiated logout" 
This reverts commit a6f4b2896a.
 2024-04-04 10:41:00 +02:00
Johannes Zellner 6186bb54e4 Revert "oidc: allow post logout redirect back to the app" 
This reverts commit 3ddf72a24d.
 2024-04-04 10:40:53 +02:00
Johannes Zellner a4e822dec2 Make autologin token only one-time use 2024-04-04 10:29:36 +02:00
Johannes Zellner 5744cb7318 auto login from activation 2024-04-04 10:26:48 +02:00
Johannes Zellner 2f6a66dbd7 oidc: enable auto login when a token is provided 2024-04-03 18:11:21 +02:00
Johannes Zellner 3ddf72a24d oidc: allow post logout redirect back to the app 2024-04-03 15:49:03 +02:00
Johannes Zellner a6f4b2896a oidc: enable rpInitiated logout 2024-04-02 20:38:12 +02:00
Girish Ramakrishnan 8a63f0368e Fix parsing of displayName 
Currently, we only have one field for the name. The first part is
first name. The rest is last name. Obviously, this won't work in all
cases but is the best we can do for the moment.
 2024-02-06 16:53:03 +01:00
Johannes Zellner 9efe399399 oidc: add picture claim 2024-01-29 13:55:31 +01:00
Girish Ramakrishnan cf707ba657 move the require 2024-01-23 12:44:23 +01:00
Girish Ramakrishnan 5b7667fa4d external ldap: ensure dashboard login does totp check 2024-01-08 11:55:35 +01:00
Girish Ramakrishnan 344578006c make oidc test stable 2023-12-03 20:04:17 +01:00
Johannes Zellner 5e7bc78d35 Set custom oidc client id and secret in the backend 2023-10-06 15:16:57 +02:00
Girish Ramakrishnan 0e195679bf Make tests pass 2023-10-01 13:42:02 +05:30
Johannes Zellner 31ef53c530 Revert "Set custom csp rule for OpenID consent form submit based on schema" 
This reverts commit b0115acf42.
 2023-09-26 23:37:13 +02:00
Johannes Zellner b0115acf42 Set custom csp rule for OpenID consent form submit based on schema 2023-09-26 22:32:37 +02:00
Girish Ramakrishnan d2c702f890 eventlog: always use AuditSource objects as source field 2023-08-28 08:13:56 +05:30