warp-tech/warpgate
1
1
Fork 0
mirror of https://github.com/warp-tech/warpgate.git synced 2025-09-27 00:48:32 +08:00
Code Issues Projects Releases Packages Wiki Activity
725 commits 36 branches 53 tags 9.1 MiB
Commit graph

128 commits

Author SHA1 Message Date
Eugene
c2208f4c87
docker fix (#1229) 2025-01-30 14:16:37 +01:00
Eugene
e89bc036d5
fixed #1218 - make target search case insensitive 2025-01-27 15:56:19 +01:00
Eugene
6ade841378
correctly bind to both ipv4 and ipv6 when [::] is set as listen endpoint (#1193) 2024-12-27 10:16:36 +01:00
Eugene
010534a12f
API tokens (#1191) 2024-12-24 23:33:49 +01:00
Mohammad Al Shakoush
59884fbbe9
Add More Metadata to public ssh keys (#1182) 
Co-authored-by: Eugene <inbox@null.page>
 2024-12-22 19:13:42 +01:00
Mohammad Al Shakoush
1dec4c98d4
Add title when adding public keys (#1171) 2024-12-18 21:53:26 +01:00
Eugene
409b382e8f
UI update (#1175) 2024-12-18 00:07:46 +01:00
Eugene
efcb2205ff
Bump russh for ssh-key/ssh-encoding backend (#1144) 2024-12-12 21:44:54 +01:00
Eugene
fb1babcb41
Bump version: 0.11.0 → 0.12.0-beta.1 2024-12-07 23:42:58 +01:00
Eugene
f217b5da04
Self-service credentials management (#1145) 2024-11-26 23:13:48 +01:00
Eugene
b35983837f
Separate DB models for credentials (#1143) 2024-11-24 19:35:31 +01:00
Eugene
a20fdb8cc9
Bump russh (#1131) 2024-11-18 10:31:39 +01:00
Eugene
cc0b054cc9
fixed #1107 - pass user-identifying headers to HTTP targets 2024-11-03 23:23:59 +01:00
Eugene
ebc03133ff
Update info.rs 2024-10-24 11:15:24 +02:00
Eugene
e8e13454cc
do not crash the info endpoint on missing external host 2024-10-24 10:34:46 +02:00
Eugene
dbf96a8fee
fixed #1093 - allow multiple return domains for SSO, prefer host header over external_host 2024-10-24 00:04:37 +02:00
Eugene
80ee6ccc83
fixed #1074 - strip trailing slash in SSO issuer URLs and log errors properly 2024-10-14 10:18:19 +02:00
Eugene
837cc2d515
Bump version: 0.10.2 → 0.11.0 2024-10-09 00:24:38 +02:00
Eugene
00d3c36bbb
PostgreSQL support (#1021) 
Fixes #938
 2024-10-09 00:08:33 +02:00
Eugene
2f30c5c113
lint 2024-09-27 18:18:15 +02:00
Eugene
2fb4c4730c
lint 2024-09-27 18:15:09 +02:00
Eugene
c191e54c07
bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
Eugene
fe521f2a39
OIDC RP-initiated logout (SSO single logout) support (#992) 
Fixes #935
 2024-09-10 23:16:42 +02:00
Eugene
53b0a9095b
Bump version: 0.10.1 → 0.10.2 2024-08-14 22:59:52 +02:00
Eugene
a0465174a7
Bump version: 0.10.0 → 0.10.1 2024-07-26 18:18:39 +02:00
Eugene
c83a70c730
Bump version: 0.9.1 → 0.10.0 2024-07-18 09:55:42 +02:00
Eugene
f07b9246a8
switch to rustls 2024-07-16 12:56:42 +02:00
Eugene
4afa979de2
bump rust some more 2024-07-16 10:40:27 +02:00
Eugene
72236d004a
fixed #748 - per-protocol external ports (#973) 2024-03-26 10:16:22 +01:00
Eugene
47c943d201
lint 2024-03-23 12:24:52 +01:00
Skyler Mansfield
916d51a4e8
Add support for role mappings on custom SSO providers. (#920) 
This is done using the `role_mappings` property.
Roles to be mapped are gotten from the 'warp_groups` oidc claim:
```sso_providers: 
  - name: custom_sso
    label: Custom SSO
    provider:
      type: custom
      client_id: <client_id>
      client_secret: <client_secret>
      issuer_url: <issuer_url>
      scopes: ["email", "profile", "openid", "warp_groups"] #warp_groups is scope name to request for my demo case, which adds a "warpgate_groups" claim to the userinfo
      role_mappings: 
        - ["warpgate:admin", "warpgate:admin"]
```
This maps the `warpgate:admin` group from OIDC to the `warpgate:admin`
role.

This [video on YouTube](https://youtu.be/XCYSGGCgk9Q) demonstrates the
functionality

---------

Co-authored-by: Eugene <inbox@null.page>
 2024-03-23 12:05:12 +01:00
Eugene
bcba6763ae
cargo fmt 2024-03-04 10:15:27 +01:00
Eugene
ea07658f0b
fixed test 2024-02-04 21:09:26 +01:00
Néfix Estrada
0ddc7979ea feat(http): add remote_addr to logs 
With this change, the remote address will be logged. This enables other
software, such as fail2ban, to monitor the logs and make actions if
required.

Closes #944
 2024-02-04 21:03:33 +01:00
Eugene
2d6621f5c8
bumped rust 2024-01-23 12:05:59 +01:00
Eugene
7e260e84e6
Bump version: 0.9.0 → 0.9.1 2023-12-18 16:24:44 +01:00
Nicolas SEYS
8c1dab63c5 Move session and cookie age in http config section 2023-11-29 11:03:17 +01:00
Nicolas SEYS
21d6ab4beb Make session and cookie age configurable 2023-11-29 11:03:17 +01:00
Eugene
0baf2e3b97
Bump version: 0.8.1 → 0.9.0 2023-11-23 19:41:07 +01:00
Eugene
6cace24fe8
lint 2023-11-23 19:40:53 +01:00
Eugene
b346ca3d0b
don't suggest public key auth in the web auth API 2023-11-23 19:36:05 +01:00
Eugene
e3b26b2699
fixed GHSA-c94j-vqr5-3mxr - privilege escalation during web auth 2023-11-23 18:35:27 +01:00
Skyler Mansfield
d9af7470a4 Add better support for X-Forward- headers when constructing external url 2023-11-16 19:53:14 +01:00
Skyler Mansfield
b0a9130a51 Add support for trusting X-Forwarded-For header to get client IP 
falls back to remote ip if header unavailable
 2023-11-16 19:53:14 +01:00
Eugene
8b91e4a328
Bump version: 0.8.0 → 0.8.1 2023-09-27 22:09:03 +02:00
Nicolas SEYS
dec0b97a0d Fix redirection with a relative location 2023-09-26 15:53:51 +02:00
Eugene Pankov
4ecc6b653f
Bump version: 0.7.4 → 0.8.0 2023-08-20 19:06:49 +02:00
Eugene Pankov
d9385ca44b lint 2023-08-08 21:06:01 +02:00
Eugene Pankov
49b92cde7a fixed #855 - log client IPs and credentials used 2023-08-08 09:56:41 +02:00
Eugene Pankov
0bc9ae1b1a fixed #854 - show session details during OOB auth 2023-08-07 22:28:15 +02:00