08bb8e3df9
Make token API id based
...
we don't return the accessToken anymore
2019-02-15 14:31:43 -08:00
422abc205b
do not return accessToken when listing tokens
2019-02-15 13:26:33 -08:00
e49b57294d
Give optional name for tokens
2018-08-27 14:59:52 -07:00
badb6e4672
add note on clients.appId
2018-08-27 14:30:39 -07:00
47c8700d42
make scopesForUser async
2018-08-03 09:34:19 -07:00
b4d5def56d
Revert role support
2018-07-26 13:23:06 -07:00
b15029de11
Send tokenScopes as an array
2018-06-29 09:53:12 -07:00
9aa74c99fc
Make setup route return tokenScopes
...
This is used by the dashboard logic during initial activation
2018-06-29 08:27:34 -07:00
38977858aa
When issuing token intersect with the existing user roles
...
Also:
* Move token validation to accesscontrol.js
* Use clients.addTokenByUserId everywhere
2018-06-28 00:07:43 -07:00
b6b7d08af3
Rename to accesscontrol.canonicalScopeString
2018-06-17 22:43:42 -07:00
1015b0ad9c
validateScope -> validateScopeString
2018-06-17 22:29:17 -07:00
6534297a5d
Remove hat module
...
It's not been updated for 6 years!
2018-06-11 12:38:29 -07:00
f09e8664d1
Return canonical scope in REST responses
...
The '*' scope is purely an implementation detail. It cannot
be requested as such.
2018-05-02 12:36:41 -07:00
a545bdd574
merge developer.js into clients.js
2018-05-01 14:02:59 -07:00
17bcd95961
typo: return the scope as the scope
2018-05-01 10:59:46 -07:00
23bc0e8db7
Remove SDK Role
...
Just compare with the token's clientId instead
2018-04-30 23:03:30 -07:00
3b7bcc1f61
refactor scopes into accesscontrol.js
...
this will be our authorization layer for oauth and non-oauth tokens.
2018-04-29 17:50:07 -07:00
cc113d0bb5
Add SCOPE_CLIENTS for oauth clients API
2018-04-29 17:03:10 -07:00
3e22d513eb
Add SCOPE_MAIL for mail APIs
2018-04-29 17:01:12 -07:00
6c8c206e89
Move input validation logic to routes
2018-04-28 21:58:56 -07:00
82207c3ccd
Keep naming consistent with delToken
2018-04-28 21:55:57 -07:00
b6384d5025
Remove intrinsicFqdn
2018-02-08 15:07:49 +01:00
b1939e73f4
Remove all occurances of altDomain in the code
...
Tests are pending
2018-02-08 09:00:31 +01:00
64f90abac7
Remove onDomainConfigured
2018-01-26 22:56:15 -08:00
70a15d01c9
Remove use of isCustomDomain in tokens.html
2018-01-10 14:13:43 -08:00
725cf297ab
Developer scope is obsolete
2017-12-07 04:33:49 +05:30
0bd0857189
Update many modules
...
npm WARN deprecated ejs-cli@1.2.0: This has breaking change. (in ejs package) use <= 2.0.0.
npm WARN deprecated node-uuid@1.4.8: Use uuid module instead
npm WARN deprecated minimatch@0.3.0: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue
npm WARN deprecated minimatch@2.0.10: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue
npm WARN deprecated minimatch@0.2.14: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue
npm WARN deprecated graceful-fs@1.2.3: graceful-fs v3.0.0 and before will fail on node releases >= v7.0. Please update to graceful-fs@^4.0.0 as soon as possible. Use 'npm ls graceful-fs' to find it in the tree.
2017-08-13 17:57:48 -07:00
b421866bf5
Remove simpleauth
...
Simple Auth used to provide auth over HTTP. The original motivation
behind this was this was a simple way to add Cloudron Auth integration.
Back in the day, Cloudron Auth was a requirement for apps but this is
not the case anymore.
This is currently not used by any app and having this might encourage
people to make Cloudron specific un-upstreamable changes.
2017-03-19 01:31:38 -07:00
26ed331f8e
Add default clients in clients.js
2017-01-09 15:41:29 -08:00
d802b88998
delete tokens when deleting a client
...
fixes #36
2016-09-07 11:10:19 -07:00
1bf869963b
Only allow alphanumerics and dash in auth client names
2016-06-23 10:16:02 +02:00
2017d668a9
use 128 byte passwords
2016-06-17 09:49:25 -05:00
f284b4cd83
Use clients.get() instead of clientdb.get()
2016-06-13 13:51:14 +02:00
0eff8911ee
Do not use DatabaseError in routes clients.js
2016-06-13 13:29:39 +02:00
9b9db6acf1
Only the rest api shall not allow to remove those
2016-06-09 15:35:46 +02:00
001bf94773
Remove unused require
2016-06-09 15:35:20 +02:00
0160c12965
Allow to distinguish between built-in auth clients and external ones
2016-06-09 15:35:00 +02:00
4776a005a5
Remove redundant client TYPE_*s
2016-06-08 14:09:06 +02:00
e431bd6040
Fix typo
2016-06-08 11:36:01 +02:00
a69cd204d6
Handle sdk and cli clients just like the webadmin
2016-06-08 11:33:08 +02:00
16444f775d
Prevent deletion of the built-in clients
2016-06-08 11:24:02 +02:00
2676658b5d
Add auth client cid-sdk and cid-cli
2016-06-08 11:20:06 +02:00
02d2a7058e
Remove whitespace in scope input
2016-06-07 16:15:53 +02:00
4afde79297
Fix error message
2016-06-07 15:56:22 +02:00
691803f10b
Allow optional expiresAt to be set on token creation
2016-06-07 15:47:13 +02:00
290ab6cc7d
Fix typo
2016-06-07 15:38:30 +02:00
8e5af17e5d
Add route to delete a single token
2016-06-07 15:34:27 +02:00
721fe74f3c
The route creates the subobject
2016-06-07 14:47:47 +02:00
96eeb247a1
Add rest api to create a new token for a client
2016-06-07 14:29:37 +02:00
684625fbaf
Remove unused clients.getAllWithDetailsByUserId()
2016-06-07 12:25:48 +02:00
Girish Ramakrishnan