warp-tech/warpgate
1
1
Fork 0
mirror of https://github.com/warp-tech/warpgate.git synced 2024-09-20 06:46:17 +08:00
Code Issues Packages Projects Releases Wiki Activity
597 commits 47 branches 34 tags 6.5 MiB
Commit graph

99 commits

Author SHA1 Message Date
Eugene 47c943d201
lint 2024-03-23 12:24:52 +01:00
Skyler Mansfield 916d51a4e8
Add support for role mappings on custom SSO providers. (#920) 
This is done using the `role_mappings` property.
Roles to be mapped are gotten from the 'warp_groups` oidc claim:
```sso_providers: 
  - name: custom_sso
    label: Custom SSO
    provider:
      type: custom
      client_id: <client_id>
      client_secret: <client_secret>
      issuer_url: <issuer_url>
      scopes: ["email", "profile", "openid", "warp_groups"] #warp_groups is scope name to request for my demo case, which adds a "warpgate_groups" claim to the userinfo
      role_mappings: 
        - ["warpgate:admin", "warpgate:admin"]
```
This maps the `warpgate:admin` group from OIDC to the `warpgate:admin`
role.

This [video on YouTube](https://youtu.be/XCYSGGCgk9Q) demonstrates the
functionality

---------

Co-authored-by: Eugene <inbox@null.page>
 2024-03-23 12:05:12 +01:00
Eugene bcba6763ae
cargo fmt 2024-03-04 10:15:27 +01:00
Eugene ea07658f0b
fixed test 2024-02-04 21:09:26 +01:00
Néfix Estrada 0ddc7979ea feat(http): add remote_addr to logs 
With this change, the remote address will be logged. This enables other
software, such as fail2ban, to monitor the logs and make actions if
required.

Closes #944
 2024-02-04 21:03:33 +01:00
Eugene 2d6621f5c8
bumped rust 2024-01-23 12:05:59 +01:00
Eugene 7e260e84e6
Bump version: 0.9.0 → 0.9.1 2023-12-18 16:24:44 +01:00
Nicolas SEYS 8c1dab63c5 Move session and cookie age in http config section 2023-11-29 11:03:17 +01:00
Nicolas SEYS 21d6ab4beb Make session and cookie age configurable 2023-11-29 11:03:17 +01:00
Eugene 0baf2e3b97
Bump version: 0.8.1 → 0.9.0 2023-11-23 19:41:07 +01:00
Eugene 6cace24fe8
lint 2023-11-23 19:40:53 +01:00
Eugene b346ca3d0b
don't suggest public key auth in the web auth API 2023-11-23 19:36:05 +01:00
Eugene e3b26b2699
fixed GHSA-c94j-vqr5-3mxr - privilege escalation during web auth 2023-11-23 18:35:27 +01:00
Skyler Mansfield d9af7470a4 Add better support for X-Forward- headers when constructing external url 2023-11-16 19:53:14 +01:00
Skyler Mansfield b0a9130a51 Add support for trusting X-Forwarded-For header to get client IP 
falls back to remote ip if header unavailable
 2023-11-16 19:53:14 +01:00
Eugene 8b91e4a328
Bump version: 0.8.0 → 0.8.1 2023-09-27 22:09:03 +02:00
Nicolas SEYS dec0b97a0d Fix redirection with a relative location 2023-09-26 15:53:51 +02:00
Eugene Pankov 4ecc6b653f
Bump version: 0.7.4 → 0.8.0 2023-08-20 19:06:49 +02:00
Eugene Pankov d9385ca44b lint 2023-08-08 21:06:01 +02:00
Eugene Pankov 49b92cde7a fixed #855 - log client IPs and credentials used 2023-08-08 09:56:41 +02:00
Eugene Pankov 0bc9ae1b1a fixed #854 - show session details during OOB auth 2023-08-07 22:28:15 +02:00
Eugene Pankov 4eb791f189
Bump version: 0.7.3 → 0.7.4 2023-08-02 09:05:59 +02:00
Eugene Pankov dca24110f9
Bump version: 0.7.1 → 0.7.3 2023-07-10 10:23:00 +02:00
Eugene Pankov 8173f6512a
fixed GHSA-868r-97g5-r9g4 - insufficient authentication for SSO users 2023-07-07 20:41:00 +02:00
Eugene Pankov a38fd2bbb1
ui: added search boxes - #761 2023-05-18 21:59:26 +02:00
Eugene Pankov f13a22f4d0
fixed #747 - don't include port in x-forwarded-for 2023-04-24 08:49:34 -07:00
Cléo REBERT 86daf9f38e
Fix build after cargo update 
* Fix project not building after `cargo update`

* Bump totp-rs from 3.x to 5.x

* Bump sea-orm to 0.10 to 0.11

* Remove `chrono` unused features to get rid of warning during `cargo audit`
 2023-04-19 10:59:19 +02:00
Eugene Pankov 9a0d818b82
Bump version: 0.7.0 → 0.7.1 2023-03-17 09:59:11 +01:00
Eugene Pankov eb13e71fb3
bumped rust 2023-01-11 12:59:27 +01:00
dependabot[bot] 3be3971bf7 Bump once_cell from 1.14.0 to 1.17.0 
Bumps [once_cell](https://github.com/matklad/once_cell) from 1.14.0 to 1.17.0.
- [Release notes](https://github.com/matklad/once_cell/releases)
- [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md)
- [Commits](https://github.com/matklad/once_cell/compare/v1.14.0...v1.17.0)

---
updated-dependencies:
- dependency-name: once_cell
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-09 21:34:02 +01:00
Eugene Pankov e852140f75
bumped poem-openapi 2023-01-09 21:29:37 +01:00
Eugene Pankov 56ffb22fca
Merge branch 'main' of https://github.com/warp-tech/warpgate 2022-12-14 22:22:34 +01:00
dependabot[bot] 1234e6e26c Bump poem from 1.3.48 to 1.3.50 
Bumps [poem](https://github.com/poem-web/poem) from 1.3.48 to 1.3.50.
- [Release notes](https://github.com/poem-web/poem/releases)
- [Commits](https://github.com/poem-web/poem/commits)

---
updated-dependencies:
- dependency-name: poem
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-14 22:14:39 +01:00
Eugene Pankov 1d34e5e4e2
lint 2022-12-14 22:10:35 +01:00
Eugene Pankov 82a244496d
Bump version: 0.6.6 → 0.7.0 2022-11-22 00:52:56 +01:00
Eugene Pankov 971c7c9839
Bump version: 0.6.5 → 0.6.6 2022-11-21 22:08:22 +01:00
Eugene Pankov 468f4c6582
lint, removed DHAT 2022-11-21 22:01:14 +01:00
dependabot[bot] 21984967a8 Bump uuid from 1.1.2 to 1.2.2 
Bumps [uuid](https://github.com/uuid-rs/uuid) from 1.1.2 to 1.2.2.
- [Release notes](https://github.com/uuid-rs/uuid/releases)
- [Commits](https://github.com/uuid-rs/uuid/compare/1.1.2...1.2.2)

---
updated-dependencies:
- dependency-name: uuid
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-20 14:15:08 +01:00
Eugene Pankov 2040e92176
Bump version: 0.6.4 → 0.6.5 2022-11-16 10:02:13 +01:00
Eugene Pankov 95313a2923
bumped sea-orm 2022-11-11 17:36:30 +01:00
Eugene Pankov 8087179ea0
Revert "fixed openapi operation IDs" 
This reverts commit 9b58dbc0c8.
 2022-11-08 22:32:35 +01:00
Eugene Pankov 9b58dbc0c8
fixed openapi operation IDs 2022-11-08 11:48:38 +01:00
Eugene Pankov 2b7baac016
lint, removed lazy_static 2022-11-03 23:44:51 +01:00
Eugene Pankov 42f9c68788
bumped rust 2022-11-03 23:10:51 +01:00
Eugene Pankov c236da5e5c
fixed #452 - native MySQL and Postgres support 2022-11-02 20:03:44 +01:00
Eugene Pankov 6f39338c36
fixed #406 - construct correct SSO URLs behind a reverse proxy 2022-10-31 23:35:07 +01:00
Eugene Pankov 512396ffb4
#406 - apple id redirection fixes 2022-10-29 20:51:29 +02:00
Eugene Pankov 5bdddd3958
allow cancelling authentication 2022-10-02 20:02:05 +02:00
Eugene Pankov 47152bc718
Bump version: 0.6.3 → 0.6.4 2022-09-26 22:57:45 +02:00
Eugene Pankov 04e5ecf5cb
#353 - forbid HTTP caching for API endpoints 2022-09-21 20:37:05 +03:00