summaryrefslogtreecommitdiff
path: root/app
AgeCommit message (Collapse)Author
2025-06-13fix: fix double write header issuemo khan
2025-06-13fix: do not write the header twicemo khan
2025-06-13test: add test to reproduce the double header write issuemo khan
2025-06-13refactor: sort fieldsmo khan
2025-06-13fix: lock the mutex before readingmo khan
2025-06-13test: add a simple test for the All() methodmo khan
2025-06-13test: add test to produce error that bypasses repository interfacemo khan
2025-06-13fix: take a lock before updating the list of itemsmo khan
2025-06-13test: reproduce a race conditionmo khan
2025-06-11chore: move third party css/js to public dirmo khan
2025-05-28refactor: remove unused configurationmo khan
2025-05-28chore: do not forward sensitive headers to Sparklemo khan
2025-05-28chore: rename headers from x-id-jwt to x-jwtmo khan
2025-05-28chore: remove logging of sensitive fieldsmo khan
2025-05-28refactor: always provide a user in the request contextmo khan
2025-05-28refactor: delete jwt verification codemo khan
2025-05-28refactor: parse headers injected by envoymo khan
2025-05-28refactor: extract type to parse user from http.Requestmo khan
2025-05-28refactor: extract RequestParser typemo khan
2025-05-26fix: do not clear id_token cookie on errormo khan
2025-05-26refactor: parse id token from custom x-jwt-payload headermo khan
2025-05-24chore: log the sub claim from the envoy headermo khan
2025-05-24chore: log x-request-id in sparkle and authzdmo khan
2025-05-24fix: register oidc provider oncemo khan
2025-05-24fix: disable require permission middlewaremo khan
2025-05-24feat: connect rpc client to inversion of control containermo khan
2025-05-24refactor: decorate handler with access check middlewaremo khan
2025-05-24feat: create middleware to check if user has permissionmo khan
2025-05-23feat: parse the body of the id tokenmo khan
2025-05-23feat: add external authorization service (authzd) with JWT authenticationmo khan
- Add new authzd gRPC service implementing Envoy's external authorization API - Integrate JWT authentication filter in Envoy configuration with claim extraction - Update middleware to support both cookie-based and header-based user authentication - Add comprehensive test coverage for authorization service and server - Configure proper service orchestration with authzd, sparkled, and Envoy - Update build system and Docker configuration for multi-service deployment - Add grpcurl tool for gRPC service debugging and testing This enables fine-grained authorization control through Envoy's ext_authz filter while maintaining backward compatibility with existing cookie-based authentication.
2025-05-15chore: allow envoy to handle health checksmo khan
2025-05-15feat: remove oauth config and client secret from sparklemo khan
2025-05-15refactor: decouple from oauth configmo khan
2025-05-15refactor: rename TestServer to OIDCServermo khan
2025-05-15refactor: allow cookie parser to accept cookie namemo khan
2025-05-15refactor: remove unused environment variablesmo khan
2025-05-15refactor: move NewOIDCProvider to web packagemo khan
2025-05-15refactor: inline usage of RawToken typemo khan
2025-05-15refactor: remove more types from oidc packagemo khan
2025-05-15refactor: remove oidc.OpenID structmo khan
2025-05-15refactor: provide oauth config to oidc.Newmo khan
2025-05-15chore: register oauth2 config in inversion of control containermo khan
2025-05-15refactor: inline usage of validate id tokenmo khan
2025-05-15refactor: delete code that is now handled by envoymo khan
2025-05-14refactor: remove unnecessary params from ctormo khan
2025-05-14feat: provider a fallback provider that defaults to hard-coded pathsmo khan
2025-05-14test: exit if discovery endpoint is not reachablemo khan
2025-05-11fix: redirect to dashboard when already logged in at callback urlmo khan
2025-05-11refactor: inline unncessary methodmo khan
2025-05-11refactor: use same cookie names as envoy pluginmo khan
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 04:03:19 +0000