mirror/phylum
1
0
Fork 0
mirror of https://codeberg.org/shroff/phylum.git synced 2026-01-08 04:30:46 -06:00
Code Issues Packages Projects Releases Wiki Activity
1,547 Commits 1 Branch 8 Tags
c19de8a0a3757e7bbcf3f68ef8b20be2f27ab5a8
Commit Graph

72 Commits

Author SHA1 Message Date
Abhishek Shroff
3e74c8a469 [server][auth] Print warning and disable password reset and magic links if necessary 2025-07-16 01:17:05 +05:30
Abhishek Shroff
bd21c6ec7c [server] Fix invalid token handling 2025-07-15 22:00:52 +05:30
Abhishek Shroff
759bcbfe16 [server][auth] Request Login Token (#2) 2025-07-15 22:00:16 +05:30
Abhishek Shroff
685689ad68 [server][cli] Allow revoking keys 2025-07-14 21:16:12 +05:30
Abhishek Shroff
57dd87b02b [server][cli] Add command to list api keys 2025-07-14 20:52:18 +05:30
Abhishek Shroff
dccb0212b1 [server][auth] Use Base64 encoding for api key id 2025-07-14 16:33:54 +05:30
Abhishek Shroff
2b4f433a77 [server][auth] Handle encoding/decoding instead of leaving it to consumers 2025-07-14 16:24:39 +05:30
Abhishek Shroff
b1a6c7dcdc [server][cli] Generate API Keys/Tokens from CLI 2025-07-14 16:15:57 +05:30
Abhishek Shroff
2d0fb18265 [server][auth] Allow generating and reading unencoded api keys 2025-07-14 15:46:18 +05:30
Abhishek Shroff
3b51db29ab [server][auth] Store encoded login tokens (#9) 2025-07-14 15:38:43 +05:30
Abhishek Shroff
1c97a7541c [server][auth] Don't unnecessarily expose keyID 2025-07-14 11:10:42 +05:30
Abhishek Shroff
d187e5155c [server][auth] Store hash of reset token in DB (#9) 2025-07-14 10:19:50 +05:30
Abhishek Shroff
f70d4bfb57 [server][auth] Store keyID+sha256(key) for API keys (#9) 2025-07-14 10:08:15 +05:30
Abhishek Shroff
4e87878f88 [server][core][publinks] Use configurable auth for publinks (pbkdf by default) 2025-07-13 22:48:51 +05:30
Abhishek Shroff
7b7ad24133 [server][auth] Allow configuring PBKDF as the password hashing algorithm 2025-07-13 21:52:01 +05:30
Abhishek Shroff
491227545f [server][auth] Add support for PBKDF2 2025-07-13 21:38:30 +05:30
Abhishek Shroff
6ca9dbc198 [server][auth][argon2] Use logarithmic memory parameter, set better defaults 2025-07-13 19:37:43 +05:30
Abhishek Shroff
9064814b16 [server][auth] Move argon2 variant detection into argon2 package 2025-07-13 17:51:53 +05:30
Abhishek Shroff
4e5b9f0b04 [server] move generatePKCEChallenge method to openid.go 2025-07-13 17:44:02 +05:30
Abhishek Shroff
6b59860df0 [server][auth] Modularize crypt password backend 2025-07-13 17:43:00 +05:30
Abhishek Shroff
bc0432aa15 [server][auth] Set userHome 2025-07-12 16:34:10 +05:30
Abhishek Shroff
e88316c77c [server][auth] Split auth.Auth into its own file 2025-07-12 16:34:10 +05:30
Abhishek Shroff
5889939abc [server] filesystem scopes (untested) 2025-07-12 16:34:10 +05:30
Abhishek Shroff
6a8130d242 [server][auth] WIP: auth.Auth 2025-07-12 16:34:10 +05:30
Abhishek Shroff
118de5874b [server][auth] Use regular errors instead of core errors 2025-07-12 16:34:10 +05:30
Abhishek Shroff
7aa0a4b429 [server][auth] Add scopes to API keys (#16) 2025-07-12 16:34:10 +05:30
George Wu
c9888f2c26 [server][auth] remove redundant setting of passwordBackend variable 2025-07-09 23:35:31 -07:00
George Wu
8bdc2bafb8 [server][auth] allow password backend to be none 2025-07-09 23:35:30 -07:00
Abhishek Shroff
823dd1f59c [server][auth] Support api keys that never expire (#14) 2025-07-09 22:25:55 +05:30
Abhishek Shroff
86e2f15c65 [server][auth] Add support for named api keys 2025-07-09 22:24:39 +05:30
George Wu
3c347e848f [server][auth] s/redirecURI/redirectURI/g 2025-07-08 22:13:41 -07:00
George Wu
13f9feaa10 [server][auth] add pkce support for OIDC logins. 2025-07-08 22:12:37 -07:00
George Wu
81504a061e [server][auth] s/authoriation/authorization/ 2025-07-09 05:38:36 +02:00
George Wu
61604d980a [server][auth] fix inserting rows to api_keys table. 2025-07-08 18:49:47 -07:00
George Wu
49fe8d002d [server][auth] updates the authorization code flow for oidc and utilizes client password -- rfc6749#4.1.3 & rfc6749#2.3.1 2025-07-08 22:41:35 +02:00
Abhishek Shroff
b9ccb57dd3 [server][breaking] Change api_key schema streamline expiration and validity 2025-07-09 01:34:02 +05:30
Abhishek Shroff
1a152d819d [server][breaking] Change pending logins table schema, add token expiration 2025-07-09 01:23:15 +05:30
Abhishek Shroff
719a77cb9f [server][auth] Use base32 encoded keys with 15 secure random bytes 2025-07-09 01:03:22 +05:30
Abhishek Shroff
da07ffa914 [server] loggers everywhere 2025-07-09 00:29:25 +05:30
Abhishek Shroff
b715c1e955 [server] Report auth initialization error 2025-07-08 21:59:41 +05:30
George Wu
510ab5c013 [server] fix typo'd filename 2025-07-07 23:13:40 -07:00
Abhishek Shroff
6bbb2ae79c [server] Fix password strength error 2025-07-05 21:58:30 +05:30
Abhishek Shroff
4831bd60eb [server] Rename ldap.search => ldap.dn_lookup 2025-06-30 11:14:10 +05:30
Abhishek Shroff
bd7d3f02d8 [server][auth] Don't check openid client configs on startup 2025-06-30 00:21:10 +05:30
Abhishek Shroff
cec83199f8 [server] Fix crypt config 2025-06-29 22:29:42 +05:30
Abhishek Shroff
e5e526dfae [server][auth] auto-create wildcards 2025-06-29 13:55:40 +05:30
Abhishek Shroff
c2214a507c [server][auth] Streamline auto create 2025-06-29 13:48:09 +05:30
Abhishek Shroff
9c3cd57485 [server][openid] Use name from id token, fall back to given_name+family_name 2025-06-29 13:13:00 +05:30
Abhishek Shroff
ec3e789ab3 [server] Fix api key rename 2025-06-29 13:01:01 +05:30
Abhishek Shroff
d80d879794 [server] Tweak login 2025-06-29 12:49:48 +05:30