Age | Commit message (Collapse) | Author |
|
* Fix the gitlab oauth issue.
* Update for gitlab 11.1+
Versions beyond 11.1 (and possibly a few releases before) use a
different method for delivering tokens. They also have disabled
version 3 of the api.
These changes address that and add a debugging mode for the server
that make it easier to debug issues like this in the future.
* Cleanup of PR.
Updated README. Removed code duplication.
|
|
|
|
Microsoft uses JSON Web Tokens (JWT) as OAuth tokens. These can run to many thousands of characters which are too long for TTYs. Work around this by base64-encoding the token and chunk it into smaller pieces.
Closes #70
|
|
|
|
|
|
|
|
Infer the redirect url from the request instead
|
|
|
|
|
|
Use ParseBool instead of writing it on own.
Use c.newClient(token) to get an http client.
|
|
Defaults to public gitlab.com, but easily redirected to self-hosted
installation.
|
|
|
|
|
|
|
|
Whitelist Google users based on their email address instead of the username part of the email address.
Plain gmail (non Google Apps) accounts don't necessarily end in '@gmail.com', and whitelisting on username alone is open to abuse.
Skip testing for a Google Apps domain (ui.Hd) if no domain is configured.
Principals will still be added as the user part of the email address.
For the Github provider, skip checking that the user is a member of an organization is none is configured.
|
|
Add support for a users whitelist
|
|
|
|
Fix lint warnings.
|
|
|
|
This switch statement doesn't do what I thought it does
|
|
|
|
Fail loudly if either the google_opts domain value or github_opts organization
values are not set in the configuration. The lack of these values means that
a) in the Google case any @gmail.com address will be allowed
b) the Github case any Github user will be allowed.
This was previously documented but left as a foot-gun in the code.
Future commits will allow for explicit wildcards to be set.
|
|
|
|
|
|
|
|
I have no idea why I made it a map[string]interface{} and it's a pain to deal
with.
|
|
Rename 'GoogleOpts' to 'ProviderOpts'.
Rename Principals to AdditionalPrincipals to match the config option.
|
|
|
|
|
|
|
|
|