| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-06-17 | chore: replace the token endpoint with a local sts service | mo khan | |
| 2025-06-13 | chore: fix the oauth2 regex config | mo khan | |
| 2025-05-28 | docs: update envoy documentation | mo khan | |
| 2025-05-28 | chore: do not forward sensitive headers to Sparkle | mo khan | |
| 2025-05-28 | chore: rename headers from x-id-jwt to x-jwt | mo khan | |
| 2025-05-28 | chore: inject jwt headers for all requests | mo khan | |
| 2025-05-28 | refactor: always provide a user in the request context | mo khan | |
| 2025-05-28 | chore: read from id_token and bearer_token cookies | mo khan | |
| 2025-05-28 | chore: specify the issuer of the jwt provider | mo khan | |
| 2025-05-28 | refactor: parse headers injected by envoy | mo khan | |
| 2025-05-27 | chore: add retry policy for oauth2 http filter | mo khan | |
| 2025-05-24 | chore: remove duplicate log entry from envoy | mo khan | |
| 2025-05-24 | chore: stop using deprecated `exact_match` option | mo khan | |
| 2025-05-23 | feat: add external authorization service (authzd) with JWT authentication | mo khan | |
| - Add new authzd gRPC service implementing Envoy's external authorization API - Integrate JWT authentication filter in Envoy configuration with claim extraction - Update middleware to support both cookie-based and header-based user authentication - Add comprehensive test coverage for authorization service and server - Configure proper service orchestration with authzd, sparkled, and Envoy - Update build system and Docker configuration for multi-service deployment - Add grpcurl tool for gRPC service debugging and testing This enables fine-grained authorization control through Envoy's ext_authz filter while maintaining backward compatibility with existing cookie-based authentication. | |||
| 2025-05-15 | chore: allow envoy to handle health checks | mo khan | |
| 2025-05-13 | chore: specify the max_active_downstream_connections | mo khan | |
| 2025-05-12 | chore: fix typo in envoy config | mo khan | |
| 2025-05-12 | chore: safe_regex_match is deprecated and replaced with string_match | mo khan | |
| 2025-05-12 | chore: mimic how services are run between docker and host machine | mo khan | |
| 2025-05-12 | refactor: mimic target deployment filesystem | mo khan | |
 |
index : gitlab/sparkled.git | |
| GitLab CI/CD utilities | git |
| summaryrefslogtreecommitdiff |