boundary

Commit Graph

Author	SHA1	Message	Date
Jeff Mitchell	140c54e319	Repoint base62 import	5 years ago
Jeff Mitchell	2cbcf9a563	Update usage of shared-secure-libs (#1393 )	5 years ago
Jim	75108cbc8b	Ongoing OIDC: return the primary account info along with the user. (#1145 )	5 years ago
Jim	358f5a61fb	bump protoc to v3.15.8 (#1147 )	5 years ago
Jeff Mitchell	be10cc4b42	Update grpc/proto deps (#1136 ) * Update grpc/proto deps * Make gen	5 years ago
Jim	dd0f34bc35	Add new OIDC auth method. (#1090 ) Co-authored-by: Todd Knight <T.Alan.Knight@gmail.com> Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com> Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com>	5 years ago
Jeff Mitchell	fcbf372881	Bump proto/grpc deps (#1017 ) * Bump proto/grpc deps * Back out buf change * Run make gen	5 years ago
Louis Ruch	7387cec475	Remove sentinel errors (#968 ) * Remove sentinal errors	5 years ago
s-christoff	6623be8bfb	Refactor internal/auth to return domain specific errors (#905 ) * Refactor internal/auth to return domain specific errors	5 years ago
Jim	ffcda56f40	a small refactor, so we can easily support options when creating new auth tokens. (#920 )	5 years ago
s-christoff	81785e139f	[enhancement] Refactor authtoken repo to return domain specific errors (#876 )	5 years ago
Jeff Mitchell	6cd97a4a6e	Add support for recursive listing (#885 )	5 years ago
Jeff Mitchell	84c617dc49	Run make gen after the gofumpt update	5 years ago
Michael Gaffney	94cb79bbdd	See how Boundary would look with gofumpt applied (#853 ) * See how Boundary would look with https://github.com/mvdan/gofumpt applied Results of running `gofumpt -w -s .` * Update tools file and Makefile for gofumpt Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	5 years ago
Louis Ruch	bfbb179741	ICU-738/Refactor internal/db to domain errors (#815 ) * Refactor internal/db to domain errors	5 years ago
Jeff Mitchell	11b821a200	Bump deps (#818 )	5 years ago
Jeff Malnick	11c7c8dbe8	feat: make auth token staleness and duration configurable (#777 ) * feat: make auth token time to live and staleness configurable * docs: add configuration docs for auth token TTL and staleness Co-authored-by: Jeff Mitchell <jeffrey.mitchell@gmail.com>	5 years ago
Jim	af6ef1b687	Refactor existing sentinel errors (#774 )	5 years ago
Jeff Mitchell	cf3fa4522d	Swap base58 libraries (#472 ) * Swap base58 libraries This doesn't reduce binary size but it removes a metric ton of dependencies.	6 years ago
Jim	21ca0b6388	SetAssociatedAccounts, DisassociateAccounts, AssociateAccounts with support for multiple accounts. (#439 )	6 years ago
Jeff Mitchell	35c3f5b717	Use 'at' for auth token prefix (#397 )	6 years ago
Jeff Mitchell	6201357902	Use scope-specific token DEKs (#342 )	6 years ago
Jim	e119466233	stop oplogging tokens and allow for a time skew (#343 )	6 years ago
Jeff Mitchell	f94f21fd97	Update API codes (#336 )	6 years ago
Michael Gaffney	de162c5533	Replace and remove ErrNilParameter with ErrInvalidParameter (#295 )	6 years ago
Jeff Mitchell	74544f6324	Encrypt tokens on the way out and decrypt on the way in (#302 ) * Encrypt tokens on the way out and decrypt on the way in This isn't a security feature related to tokens specifically; it's so that we can discard cryptographically bad tokens before we ever hit the DB. This way we can't pass through a DDoS to the database due to fetching obviously invalid token values. I'm using base58 to encode the resulting value as there aren't great base62 options, and allowing base64 / and + values can hamper usability by creating copying/highlighting breaks.	6 years ago
Jim	9570897032	basic keys mgmt repo (#264 )	6 years ago
Jeff Mitchell	6661117d4c	The name. The name. The name!	6 years ago
Jim	1c836c430b	support for associating/disassociating an auth account with a user (#233 )	6 years ago
Michael Gaffney	bdb31cf8b5	Bump deps (#245 )	6 years ago
Todd Knight	41b2d36d98	AuthToken Tests now use recently added TestAuthMethod and TestAccount (#226 )	6 years ago
Jim	cb89422d9d	define immutable fields including PKs. (#205 )	6 years ago
Todd Knight	a0bed2b5d7	Truncate instead of round timestamps so our tests that require a time to pass can succeed. (#224 )	6 years ago
Todd Knight	25514fb553	Fix a failing test due to time resolutions mismatch. (#221 ) * Round generated expiration timestamps to the nearest second.	6 years ago
Michael Gaffney	e03a0ff9d7	Simplify SetTableName pattern (#214 )	6 years ago
Todd Knight	f47046f158	Update Watchtower to use grpc-gateway v2 (#204 ) * Migration to grpc gateway v2.	6 years ago
Todd Knight	6de1f7ee16	Auth Token Read/List/Delete handler and Go SDK (#199 ) * Creating Auth Token Get List and Delete API.	6 years ago
Michael Gaffney	799242fce4	Bump deps and run 'make gen' (#212 )	6 years ago
Jeff Mitchell	dec1f07266	Update deps and make proto	6 years ago
Jim	c83e90ed38	implement SetTableName patttern that allows table name to be set back to the default for the storage type. (#196 )	6 years ago
Jeff Mitchell	acce195dcb	Organizations -> orgs consistency (#189 ) * Organizations -> orgs consistency * Fix up some tests and some mistaken substitutions	6 years ago
Todd Knight	beea32b8c8	Fixing test that was missed with PR #171 . (#175 )	6 years ago
Todd Knight	2ce9affeea	Don't use repo to check impossible token requests and repo doesn't return error on token value mismatch. (#171 ) * Remove error when tokens mismatch from public id but log returned errors from repo.	6 years ago
Todd Knight	c44a4c4795	Tools for auth token interception and authentication (#152 )	6 years ago
Todd Knight	f69d6b9952	Creating Auth Token Repo (#125 )	6 years ago

45 Commits (02ff2db66e015aed51a2b9d1735dcc8036d9bfba)