mirror/dex - dex - xhrpb gitea

Commit Graph

Author	SHA1	Message	Date
Matthias Klan	481f1276a8	Update using-dex.md fix wrong port from example	8 years ago
Simon Knott	822a10cede	Add missing word	8 years ago
Vy-Shane Xie	b03c85e56e	Add new federated:id scope that causes Dex to add a federated_claims claim containing the connector_id and user_id to the ID token	8 years ago
Eric Chiang	460f48320e	Documentation: restructure connector docs to a single folder	8 years ago
Eric Chiang	0811d1a07a	document limitations in the OpenID Connect connector	8 years ago
Wyatt Alt	e7d57bb31b	Correct "Verifier" method name in using-dex doc Change provider.NewVerifier to provider.Verifier per the godocs: https://godoc.org/github.com/coreos/go-oidc#Provider.Verifier	8 years ago
Pavel Borzenkov	47df6ea2ff	connector/microsoft: add support for groups Microsoft connector now provides support for 'groups' claim in case 'tenant' is configured in Dex config for the connector. It's possible to deny user authentication if the user is not a member of at least one configured groups. Signed-off-by: Pavel Borzenkov <pavel.borzenkov@gmail.com>	8 years ago
Pavel Borzenkov	6193bf5566	connector: implement Microsoft connector connector/microsoft implements authorization strategy via Microsoft's OAuth2 endpoint + Graph API. It allows to choose what kind of tenants are allowed to authenticate in Dex via Microsoft: * common - both personal and business/school accounts * organizations - only business/school accounts * consumers - only personal accounts * <tenant uuid> - only account of specific tenant Signed-off-by: Pavel Borzenkov <pavel.borzenkov@gmail.com>	8 years ago
Stephan Renatus	b09a13458f	password connectors: allow overriding the username attribute (password prompt) This allows users of the LDAP connector to give users of Dex' login prompt an idea of what they should enter for a username. Before, irregardless of how the LDAP connector was set up, the prompt was Username [_________________] Password [_________________] Now, this is configurable, and can be used to say "MyCorp SSO Login" if that's what it is. If it's not configured, it will default to "Username". For the passwordDB connector (local users), it is set to "Email Address", since this is what it uses. Signed-off-by: Stephan Renatus <srenatus@chef.io>	9 years ago
Daniel Dao	a2188bebf1	add documentation for etcd storage This adds references to etcd storage, including: - only supports etcd v3 - list of options and their meanings when connecting to etcd cluster	9 years ago
Eric Chiang	3d2d92b31b	*: run kubernetes tests in travis	9 years ago
Pavel Borzenkov	d5a9712aae	Documentation: add LinkedIn connector documentation Signed-off-by: Pavel Borzenkov <pavel.borzenkov@gmail.com>	9 years ago
Michael Stapelberg	4931f30a80	authproxy.md: strip X-Remote-User follow-up for https://github.com/coreos/dex/pull/1100	9 years ago
Eric Chiang	d099145921	authproxy: update docs and set a userID	9 years ago
Michael Stapelberg	a41d93db4a	Implement the “authproxy” connector (for Apache2 mod_auth etc.)	9 years ago
Laurent Rolaz	cca0275b0b	Add Documentation about customresourcedefinitions creation role	9 years ago
rithu john	34dcf6c9a0	Documentation: add docs for TPR to CRD migration	9 years ago
rithu john	1311caf864	storage/kubernetes: add CRD support	9 years ago
Eric Stroczynski	7079bb5316	Documentation: add org info req, remove redirect caveat The redirect caveat is being removed to avoid user confusion and is not important outside of testing.	9 years ago
Eric Stroczynski	9c6b6d565e	Documentation: oidc conformance test case and issue tables	9 years ago
Eric Stroczynski	a065533256	Documentation: OIDC conformance test setup	9 years ago
Eric Chiang	50f2905cac	*: add standup script for LDAP	9 years ago
Eric Stroczynski	bb36c96674	Documentation: fixed GitHub link syntax	9 years ago
Eric Stroczynski	71de7e8414	Documentation: github org redirect caveat	9 years ago
Eric Stroczynski	26527011ab	connector/github: enable private, primary emails; refactor API calls Documentation: removed private emails caveats section	9 years ago
Eric Stroczynski	9d154802a2	connector/github: multiple orgs, query by teams Documentation: examples of GitHub `orgs` field with multiple orgs and org with teams; note legacy behavior	9 years ago
Luk Burchard	4365d97162	Update api.md	9 years ago
rithu john	6f9127b4ae	Documentation: add a group query example for the ldap connector.	9 years ago
Zak Holt	43f0e8530b	Update using-dex.md	9 years ago
Zak Holt	41a20dbb2a	Update using-dex.md	9 years ago
Ben Navetta	cbb007663f	add documentation and tests	9 years ago
rithu john	d6c1b0f42b	Documentation/github-connector: warn user that GitHub email id should be public.	9 years ago
rithu john	081e68a16a	Documentation/ldap-connector.md: Warn about LDAP connector's bindPW restriction.	9 years ago
Eric Chiang	95334ad51d	Documentation: add docs on public clients	9 years ago
Eric Chiang	c400e860fe	Documentation: more diagrams	9 years ago
Tom Gamble	0edd0b2fb4	Update kubernetes.md fixed typo	9 years ago
Eric Chiang	a4cb57ab5d	Documentation: add a doc describing how to use dex	9 years ago
Filip	57aa32562b	Updated documentation for dex on k8s when RBAC authorization is used	9 years ago
Eric Chiang	74f5eaf47e	connector/ldap: support the StartTLS flow for secure connections When connecting to an LDAP server, there are three ways to connect: 1. Insecurely through port 389 (LDAP). 2. Securely through port 696 (LDAPS). 3. Insecurely through port 389 then negotiate TLS (StartTLS). This PR adds support for the 3rd flow, letting dex connect to the standard LDAP port then negotiating TLS through the LDAP protocol itself. See a writeup here: http://www.openldap.org/faq/data/cache/185.html	9 years ago
Eric Chiang	5f377f07d4	*: promote SAML to stable This means we no longer refer to it as "experimental" and wont make breaking changes.	9 years ago
rithu john	76b9eb1db9	connector/github: add support for github enterprise.	9 years ago
Phu Kieu	47897f73fa	Validate audience with entityIssuer if present, use redirectURI otherwise	9 years ago
Phu Kieu	8c0eb67ecd	Update documentation	9 years ago
Eric Chiang	5e34f0d1a6	Documentation: document dex scopes, claims, and client features	9 years ago
Eric Chiang	50b223a9db	*: validate InResponseTo SAML response field and make issuer optional	9 years ago
Eric Chiang	f503ff7950	*: add documentation for the OpenID Connect provider	9 years ago
Derek McQuay	9b052f37c9	clearified redirect-uri and make cmd location	9 years ago
Derek McQuay	a6ab82d6c0	update kubernetes example-app explanation Clarify some potentially confusing issues with how to run and build the example-app binary.	9 years ago
Eric Chiang	ee27a4f9f4	*: only use docker when releasing, update to Go 1.8, remove aci scripts This change modifies our release process to only require Docker when building a release and updates our released binary to use Go 1.8. It also removes our .aci scripts, which we've not been regularly building. A nice consequence is that OSX users can now build a release image.	9 years ago
Paul Burt	a660e7cd7a	Added produciton-users and integrations pages	9 years ago

1 2 3

110 Commits (cabdcb1eb072eebbc6b4927bbc814d06706f2cbf)