| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-05-23 | test: allow authenticated user the ability to create a new sparkle | mo khan | |
| 2025-05-23 | test: update test to generate a valid id_token | mo khan | |
| 2025-05-23 | Merge branch 'envoy-jwt-authn' into 'main' | mo khan | |
| Add External Authorization Service with Envoy Integration See merge request gitlab-org/software-supply-chain-security/authorization/sparkled!9 | |||
| 2025-05-23 | feat: add external authorization service (authzd) with JWT authentication | mo khan | |
| - Add new authzd gRPC service implementing Envoy's external authorization API - Integrate JWT authentication filter in Envoy configuration with claim extraction - Update middleware to support both cookie-based and header-based user authentication - Add comprehensive test coverage for authorization service and server - Configure proper service orchestration with authzd, sparkled, and Envoy - Update build system and Docker configuration for multi-service deployment - Add grpcurl tool for gRPC service debugging and testing This enables fine-grained authorization control through Envoy's ext_authz filter while maintaining backward compatibility with existing cookie-based authentication. | |||
| 2025-05-23 | Merge branch 'go-1.24.3' into 'main' | mo khan | |
| Upgrade to Go 1.24.3 See merge request gitlab-org/software-supply-chain-security/authorization/sparkled!10 | |||
| 2025-05-23 | chore: update packages | mo khan | |
| 2025-05-23 | chore: upgrade to go 1.24.3 | mo khan | |
| 2025-05-15 | chore: update golang-set module | mo khan | |
| 2025-05-15 | Merge branch 'envoy-health-check' into 'main' | mo khan | |
| Allow envoy to handle health checks See merge request gitlab-org/software-supply-chain-security/authorization/sparkled!8 | |||
| 2025-05-15 | chore: allow envoy to handle health checks | mo khan | |
| 2025-05-15 | Merge branch 'envoy-cleanup' into 'main' | mo khan | |
| Delete code that is now handled by envoy See merge request gitlab-org/software-supply-chain-security/authorization/sparkled!7 | |||
| 2025-05-15 | docs: add info on how to create an OAuth Application | mo khan | |
| 2025-05-15 | chore: add link to envoy install docs | mo khan | |
| 2025-05-15 | feat: remove oauth config and client secret from sparkle | mo khan | |
| 2025-05-15 | refactor: decouple from oauth config | mo khan | |
| 2025-05-15 | refactor: rename init.sh to entrypoint.sh | mo khan | |
| 2025-05-15 | refactor: rename TestServer to OIDCServer | mo khan | |
| 2025-05-15 | refactor: allow cookie parser to accept cookie name | mo khan | |
| 2025-05-15 | refactor: remove unused environment variables | mo khan | |
| 2025-05-15 | refactor: move NewOIDCProvider to web package | mo khan | |
| 2025-05-15 | refactor: inline usage of RawToken type | mo khan | |
| 2025-05-15 | refactor: remove more types from oidc package | mo khan | |
| 2025-05-15 | refactor: remove oidc.OpenID struct | mo khan | |
| 2025-05-15 | refactor: provide oauth config to oidc.New | mo khan | |
| 2025-05-15 | chore: register oauth2 config in inversion of control container | mo khan | |
| 2025-05-15 | refactor: inline usage of validate id token | mo khan | |
| 2025-05-15 | refactor: inline usage of config variable | mo khan | |
| 2025-05-15 | docs: update docs to indicate address to open | mo khan | |
| 2025-05-15 | refactor: delete code that is now handled by envoy | mo khan | |
| 2025-05-15 | Merge branch 'envoy-start' into 'main' | mo khan | |
| Enable Envoy to run consistently locally and in Docker See merge request gitlab-org/software-supply-chain-security/authorization/sparkled!6 | |||
| 2025-05-14 | test: remove old oidc test server | mo khan | |
| 2025-05-14 | fix: delegate to client_* directly | mo khan | |
| 2025-05-14 | test: invline variable | mo khan | |
| 2025-05-14 | refactor: use the existing oidc TestServer | mo khan | |
| 2025-05-14 | test: remove commented out code | mo khan | |
| 2025-05-14 | refactor: remove unnecessary params from ctor | mo khan | |
| 2025-05-14 | feat: provider a fallback provider that defaults to hard-coded paths | mo khan | |
| 2025-05-14 | test: disable pending test | mo khan | |
| 2025-05-14 | test: exit if discovery endpoint is not reachable | mo khan | |
| 2025-05-14 | test: use host network mode locally and in CI | mo khan | |
| 2025-05-14 | test: use playwright to test out an OIDC login | mo khan | |
| 2025-05-14 | test: add wait strategies for each of the ports | mo khan | |
| 2025-05-14 | test: wait for envoy port | mo khan | |
| 2025-05-14 | test: log env vars | mo khan | |
| 2025-05-14 | test: use generic type | mo khan | |
| 2025-05-13 | test: add integration test for envoy proxy configuration | mo khan | |
| 2025-05-13 | test: do not normalize env vars in CI | mo khan | |
| 2025-05-13 | test: disable host port access in CI | mo khan | |
| 2025-05-13 | test: extract function for container options | mo khan | |
| 2025-05-13 | test: normalize the issuer again | mo khan | |
 |
index : gitlab/sparkled.git | |
| GitLab CI/CD utilities | git |
| summaryrefslogtreecommitdiff |