nginx-sso

mirror of https://github.com/Luzifer/nginx-sso.git synced 2024-12-20 12:51:17 +00:00

Author	SHA1	Message	Date
Knut Ahlers	c60f01d4a9	[#78 ] Allow for sprig templating in configuration file This enables to move secrets from the configuration file into the environment and source them through Go templating with `env` template function closes #78 Signed-off-by: Knut Ahlers <knut@ahlers.me>	2023-07-29 13:58:50 +02:00
Knut Ahlers	89a1a2e565	Fix: Compiler refuses to convert 0x0 to string Signed-off-by: Knut Ahlers <knut@ahlers.me>	2022-12-21 01:06:02 +01:00
Knut Ahlers	f7685d6502	Add health-endpoint, fix copy on empty dir Signed-off-by: Knut Ahlers <knut@ahlers.me>	2022-12-21 00:59:57 +01:00
Paul TREHIOU	5e40728ec3	Add cookie auth key environment variable (#59 )	2020-04-09 16:08:14 +02:00
Knut Ahlers	4a72836925	Lint: Fix some minor linter errors Signed-off-by: Knut Ahlers <knut@ahlers.me>	2020-04-08 01:14:35 +02:00
Paul TREHIOU	f9d9c025dd	Fix: Config loading after CookieStore init (#58 ) * fix config loading after CookieStore init * refactor according to suggestions * fix module init on SIGHUP	2020-04-08 01:11:48 +02:00
Knut Ahlers	c0886ce964	Allow to configure anonymous access (#48 ) Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-12-28 13:12:18 +00:00
Knut Ahlers	3d0fb11afa	Switch to Go1.12+ vendoring Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-11-03 18:50:44 +01:00
Knut Ahlers	09cf06c905	[#41 ] Set default cookie values in all providers (#45 ) Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-06-29 12:40:39 +02:00
Knut Ahlers	930a23f461	Modernize login dialog Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-04-22 19:43:56 +02:00
Knut Ahlers	8d968ce29d	Add default page in case neither redirect was specified Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-04-22 06:44:06 +02:00
Knut Ahlers	42db8e247d	Implement oAuth2 provider: Google fixes #15 refs #35 Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-04-22 06:42:44 +02:00
Knut Ahlers	841f6458cd	Prepare moving auth plugins to own modules Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-04-21 16:58:06 +02:00
Knut Ahlers	e67316431b	Add redirect on root URL to login page fixes #34 closes #37 Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-04-21 03:43:36 +02:00
Knut Ahlers	1cb9199bd9	Add default redirect URL for missing go-parameter This adds a configuration option to set a default redirect URL for when no `go` parameter was passed. This allows for users to have bookmarked the login page and be redirected to the right location instead of seeing a 404 page. Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-04-21 03:43:36 +02:00
Knut Ahlers	45f15de654	Work around missing URL parameters when passing the URL with parameters in the `go=` parameter inside nginx. This is caused by nginx not being able to escape ampersands which then are parsed as parameters to the login handler instead of parameters of the redirect URL. There is a quite old ticket in nginx to implement proper escaping of URL elements which would be a way better solution but until someone decides to take care of that this should at least improve the situation. refs #39 Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-04-21 00:15:36 +02:00
Knut Ahlers	e9bff08810	Export errors for usage in plugins Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-02-22 00:27:02 +01:00
Knut Ahlers	97b284034f	Add plugin support (#38 ) * Extract Authenticator and MFAProvider interfaces * Implement plugin loading * Add config example Signed-off-by: Knut Ahlers <knut@ahlers.me>	2019-02-22 00:10:43 +01:00
Maximilian Gaß	085a158371	Fix audit logging when not using MFA (#32 ) Signed-off-by: Maximilian Gaß <m.gass@babiel.com>	2019-01-17 23:50:18 +01:00
Knut Ahlers	5d6fa23377	Fix several linter errors Signed-off-by: Knut Ahlers <knut@ahlers.me>	2018-12-29 01:06:12 +01:00
Knut Ahlers	f6d622d1b8	Implement MFA verification for logins (#10 )	2018-12-24 10:07:49 +01:00
Knut Ahlers	378a557782	[#19 ] Documentation improvements (#20 ) * Docs: Streamline header naming * Docs: Mention the logout endpoint	2018-11-18 12:24:33 +01:00
Knut Ahlers	5ee2feea64	[#17 ] Implement audit logging - Add README entry for audit logging - On login log the redirection target - Do not log empty headers - Log login errors into AuditLog - Fix: Wrong length error is a sign for no Yubikey OTP - Add missing dependencies - [#17] Implement audit logging closes #17 Signed-off-by: Knut Ahlers <knut@ahlers.me>	2018-11-17 14:42:56 +01:00
Knut Ahlers	8c9a2f6285	Implement config reload on SIGHUP (#12 ) closes #11	2018-09-20 15:39:22 +02:00
Knut Ahlers	e6952ed1b0	Fix: Memory leak due to http requests stored forever Signed-off-by: Knut Ahlers <knut@ahlers.me>	2018-09-08 19:39:59 +02:00
Knut Ahlers	c9836b032a	Pass through the ResponseWriter to allow cookie renewal Signed-off-by: Knut Ahlers <knut@ahlers.me>	2018-01-28 21:27:23 +01:00
Knut Ahlers	87d719367d	Initial version (#1 ) * Initial draft * HCL does not support int64 * Add http stubs * Login does not need to return user details * Fields should have a label * Add example configuration * Add stub for "Simple" authenticator * Add debug logging * Implement configuration loading * Implement user detection * Fix error names in doc strings * Implement session store * Implement "Token" provider * Add login frontend * Implement login and logout * Do not show tabs when there is no choice * Fix multi-tab errors, sorting * Implement "Yubikey" authenticator * Lint: Rename error to naming convention * Apply cookie security * Prevent double-login * Adjust parameters for crowd * Implement ACL * Replace HCL config with YAML config * Remove config debug output * Remove crowd config Signed-off-by: Knut Ahlers <knut@ahlers.me>	2018-01-28 15:16:52 +01:00

27 commits