b047175330
Auth: Support JWT configs tls_client_ca and jwk_set_bearer_token_file ( #109095 )
...
* Auth.jwt: Support config tls_client_ca
* Auth.jwt: Support config jwk_set_bearer_token_file
* Docs: Document new JWKS url options and mention tls_skip_verify_insecure
* Docs: Fix note on JWKS response caching
* chore: Refactor getBearerToken into standalone function
* docs: Apply wording/formatting suggestions
Co-authored-by: Victor Cinaglia <victorcinaglia@gmail.com >
* chore: Simplify ca helper function using testcerts
Co-authored-by: Victor Cinaglia <victorcinaglia@gmail.com >
* chore: Update doc and add comment preventing potential erroneous optimization
Co-authored-by: Victor Cinaglia <victorcinaglia@gmail.com >
chore: Reword comment prevent an erroneous refactor
* docs: Update casing
Co-authored-by: Victor Cinaglia <victorcinaglia@gmail.com >
---------
Co-authored-by: Victor Cinaglia <victorcinaglia@gmail.com >
2025-08-26 09:50:06 -03:00
561156c4da
Auth: Add support for the TlsSkipVerify parameter to JWT Auth ( #91514 )
...
* feat(auth/JWTAuth): add support for the TlsSkipVerify parameter
* feat(auth/JWTAuth): add param to default.ini and sample.ini
---------
Co-authored-by: Mihaly Gyongyosi <mgyongyosi@users.noreply.github.com >
2025-03-03 11:18:14 +02:00
6f62d970e3
JWT Authentication: Add support for specifying groups in auth.jwt for teamsync ( #82175 )
...
* merge JSON search logic
* document public methods
* improve test coverage
* use separate JWT setting struct
* correct use of cfg.JWTAuth
* add group tests
* fix DynMap typing
* add settings to default ini
* add groups option to devenv path
* fix test
* lint
* revert jwt-proxy change
* remove redundant check
* fix parallel test
2024-02-09 16:35:58 +01:00
6768c6c059
Chore: Remove public vars in setting package ( #81018 )
...
Removes the public variable setting.SecretKey plus some other ones.
Introduces some new functions for creating setting.Cfg.
2024-01-23 12:36:22 +01:00
c3d8c6e0ea
JWT: Fallthrough to fetch keyset in case of cache error ( #80081 )
...
fallthrough to fetch keyset in case of cache error. Fixes #67582
2024-01-08 16:02:31 +01:00
025b2f3011
Chore: use any rather than interface{} ( #74066 )
2023-08-30 18:46:47 +03:00
bba11d04cb
Auth: Add key_id config param to auth.jwt ( #72711 )
...
* Specify keyID for public key provided in PEM format for JWT Auth
* Update docs
* Update sample.ini
2023-08-03 09:13:23 +02:00
5e5c751ecd
Auth: Respect cache control for JWKS in auth.jwt ( #68872 )
...
* respect cache control for auth.jwt
* add documentation
* add small note on cache control header ignores
* make distinction of env
2023-05-23 12:29:10 +02:00
eb507dca89
Remotecache: rename setbytearray/getbytearray to set/get and remove codec ( #64470 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com >
2023-03-10 13:57:29 +01:00
45fde4235b
Deps: Replace go-jose v2 with go-jose v3 ( #64228 )
...
replace go-jose v2 with go-jose v3
2023-03-06 15:12:51 +01:00
b88206d98f
Cache: Refactor cache clients to use byte array ( #62930 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com >
2023-02-08 10:30:20 +01:00
7dbd2cd139
Chore: Fix goimports grouping ( #62426 )
...
fix goimports ordering
2023-01-30 09:34:18 +01:00
062d255124
Handle ioutil deprecations ( #53526 )
...
* replace ioutil.ReadFile -> os.ReadFile
* replace ioutil.ReadAll -> io.ReadAll
* replace ioutil.TempFile -> os.CreateTemp
* replace ioutil.NopCloser -> io.NopCloser
* replace ioutil.WriteFile -> os.WriteFile
* replace ioutil.TempDir -> os.MkdirTemp
* replace ioutil.Discard -> io.Discard
2022-08-10 15:37:51 +02:00
b8852ef6a3
Chore: Remove context.TODO() ( #43409 )
...
* Remove context.TODO() from services
* Fix live test
* Remove context.TODO
2021-12-22 11:02:42 +01:00
39a3b0d0b0
Auth: support JWT Authentication ( #29995 )
2021-03-31 08:40:44 -07:00
Steffen Baarsgaard
Filip "Ret2Me" Poplewski
Jo
Marcus Efraimsson
Ryan McKinley
Misi
Carl Bergquist
Serge Zaitsev
idafurjes
Vladimir Kochnev