grafana/pkg/middleware at d135f1229d0f9e463282efd73b2931aa31ff0f1d - grafana - Personal Gitea

public/grafana

Files

T

History

Jeffrey Descan c5f906f472 Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787 )

* Refactor redirect_to cookie with secure flag in middleware

* Refactor redirect_to cookie with secure flag in api/login

* Refactor redirect_to cookie with secure flag in api/login_oauth

* Removed the deletion of 'Set-Cookie' header to prevent logout

* Removed the deletion of 'Set-Cookie' at top of api/login.go

* Add HttpOnly flag on redirect_to cookies where missing

* Refactor duplicated code

* Add tests

* Refactor cookie options

* Replace local function for deleting cookie

* Delete redundant calls

Co-authored-by: Sofia Papagiannaki <papagian@users.noreply.github.com>

2020-01-10 15:55:30 +02:00

..

Auth Proxy: replace ini setting ldap_sync_ttl with sync_ttl (#20191 )

2019-11-07 11:24:54 +01:00

auth_proxy.go

AuthProxy: Can now login with auth proxy and get a login token (#20175 )

2019-11-07 17:48:56 +01:00

auth_test.go

Snapshot: Fix http api (#18830 )

2019-09-02 15:15:46 +02:00

auth.go

Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787 )

2020-01-10 15:55:30 +02:00

cookie.go

Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787 )

2020-01-10 15:55:30 +02:00

dashboard_redirect_test.go

Chore: use remote cache instead of session storage (#16114 )

2019-04-08 14:31:46 +03:00

dashboard_redirect.go

Revert "Opportunities to unindent code (unindent)"

2018-05-02 14:06:46 +02:00

headers.go

refactor datasource caching

2018-10-30 09:31:56 +01:00

logger.go

rename Context to ReqContext

2018-03-07 11:54:50 -05:00

middleware_basic_auth_test.go

pkg/util: Check errors (#19832 )

2019-10-23 10:40:12 +02:00

middleware_test.go

AuthProxy: Can now login with auth proxy and get a login token (#20175 )

2019-11-07 17:48:56 +01:00

middleware.go

Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787 )

2020-01-10 15:55:30 +02:00

org_redirect_test.go

Auth: Enable retries and transaction for some db calls for auth tokens (#16785 )

2019-04-30 14:42:01 +02:00

org_redirect.go

login users based on token cookie

2019-01-16 16:44:40 +01:00

perf.go

rename Context to ReqContext

2018-03-07 11:54:50 -05:00

quota_test.go

Auth: Enable retries and transaction for some db calls for auth tokens (#16785 )

2019-04-30 14:42:01 +02:00

quota.go

use authtoken for session quota restrictions

2019-02-12 15:10:55 +01:00

recovery_test.go

Security: Responses from backend should not be cached (#16848 )

2019-05-06 09:22:59 +02:00

recovery.go

move log package to /infra (#17023 )

2019-05-13 08:45:54 +02:00

render_auth.go

pkg/util: Check errors (#19832 )

2019-10-23 10:40:12 +02:00

request_metrics.go

Metrics: use consistent naming for exported variables (#18134 )

2019-07-16 16:58:46 +02:00

request_tracing.go

mark >=400 responses as error

2017-09-18 11:08:58 +02:00

testing.go

Auth: Do not search for the user twice (#18366 )

2019-08-03 21:50:05 +02:00

util.go

pkg/middleware: Check errors (#19749 )

2019-10-15 18:08:06 +02:00

validate_host.go

rename Context to ReqContext

2018-03-07 11:54:50 -05:00