zishuo/onepanel
1
0
Fork 0
mirror of https://github.com/onepanelio/onepanel.git synced 2025-09-27 01:56:03 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,352 Commits 9 Branches 58 Tags
69006309b4af4f64b84ff0a3b20c061a5d1d3c7b
Commit Graph

49 Commits

Author SHA1 Message Date
Andrey Melnikov
69006309b4 feat: allow onepanel-access-token in addition to the onepanel-auth-token 2021-08-11 16:29:37 -07:00
Andrey Melnikov
193dbe156e fix: issue where wrong namespace was obtained from certain urls for workspaces/models 2021-07-27 11:05:26 -07:00
Andrey Melnikov
bcf78b54a0 fix: no 400 response returned from bad token 2021-05-25 11:49:35 -07:00
Andrey Melnikov
98766cdc41 feat: auth updates 2021-05-19 13:40:43 -07:00
Andrey Melnikov
2931d5e754 update: fixed missing generated files for grpc and moved generated files into their own subdirectory for easier separation of files. 2020-12-17 15:46:34 -08:00
Andrey Melnikov
89c0f26103 Revert "feat: remove is valid token endpoint" 
This reverts commit 466a417e60.

Also marks the IsValidToken endpoint as deprecated
 2020-11-16 10:46:44 -08:00
Andrey Melnikov
466a417e60 feat: remove is valid token endpoint 2020-11-12 15:55:58 -08:00
Andrey Melnikov
717a4bc2e8 fix: temporary fix while cvat is not updated to use new auth 2020-11-06 12:11:40 -08:00
Andrey Melnikov
a405e8bf46 feat: update api to use accessTokenAuth 2020-11-03 13:37:30 -08:00
Andrey Melnikov
93bdc7cd70 fix: rename LogIn to GetAccessToken 2020-11-03 10:29:02 -08:00
Andrey Melnikov
b129a1da7d fix: moved token to be inside client instead of sysconfig as it is not a system config value, but it is applicable to the current client. 
This fixes some concurrency issues since you could have multiple requests handled at the same time that try to read and modify the system values.
 2020-10-30 23:48:51 -07:00
Andrey Melnikov
e41d5c38af feat: added log in endpoint which is essentially an alias for auth token, but is more descriptive 2020-10-29 12:14:53 -07:00
Andrey Melnikov
50145cccdf feat: added more logging for getBearerToken errors 2020-10-23 11:40:29 -07:00
Andrey Melnikov
2bd3c3dde0 fix: use system-wide connection when checking authentication 2020-10-16 09:45:29 -07:00
Andrey Melnikov
c883f69fc9 fix: close db connection when not in use. 2020-10-15 21:48:25 -07:00
Andrey Melnikov
20c4950b69 feat: revert jwt token from auth 2020-10-14 11:53:05 -07:00
Andrey Melnikov
38f1aafaec fix: issue with concurrent map access 2020-10-13 16:02:40 -07:00
Andrey Melnikov
ede4c67c8f fix: bad token issue 2020-10-13 15:17:56 -07:00
Andrey Melnikov
c42997a643 fix: error to be API friendly 2020-10-13 12:21:32 -07:00
Andrey Melnikov
5bd2feaa86 update: added username to returned auth token 2020-10-12 17:01:26 -07:00
Andrey Melnikov
de4302d226 chore: formatting updates for error strings 2020-10-12 16:17:16 -07:00
Andrey Melnikov
7150f24631 feat: update incoming token to be a JWT token that takes in username 2020-10-12 16:07:12 -07:00
Andrey Melnikov
93d1b4a2c0 update: permissions issues are now more detailed 2020-08-19 11:00:40 -07:00
Andrey Melnikov
0736c92804 Merge branch 'dev' into feat/onepanelio.core.386-migrations.update 2020-08-14 14:34:20 -07:00
Andrey Melnikov
865f3fa827 fix: issue where auth would sometimes crash 2020-08-13 18:18:43 -07:00
Andrey Melnikov
9558473f2c feat: handled edge case where auth pieces might be less than 2. 2020-08-12 10:36:25 -07:00
Andrey Melnikov
7af3c9dd7c feat: allowed onepanel-auth-token header to provide authentication token. 
Updated server to make that key not require a grpc-gateway prefix.
 2020-07-20 20:52:36 -07:00
rushtehrani
640d4f6e9f add Workspace CRD auth check and creation 2020-06-18 19:35:35 -07:00
Andrey Melnikov
b8191f6b1f Merge remote-tracking branch 'origin/feat/onepanelio.core.266-is.authorized.changes' into feat/authorization.updates 2020-06-10 22:44:51 -07:00
Andrey Melnikov
5f6b995564 chore: added comments to some modified methods 2020-06-10 22:38:32 -07:00
Andrey Melnikov
483c79abb3 update: cache system config for entire application and not just per request 2020-06-10 14:19:33 -07:00
Andrey Melnikov
79d5babfcb update: IsAuthorized request to only be POST since the additional HEAD binding didn't work. Also updated the request to get data from headers if nothing is in body. 2020-06-10 10:44:33 -07:00
rushtehrani
4c4d01ed09 use non-string context key 2020-06-08 15:43:31 -07:00
rushtehrani
601541ebbf always use ClientContextKey 2020-06-08 15:32:21 -07:00
rushtehrani
5f6bda8838 refactor: clean up client code 2020-06-08 15:25:02 -07:00
Andrey Melnikov
c226ff8419 update: removed code specific to x-original-auth based on changes upcoming to structure. 
* Auth token will always be present unless you are validating an auth token.
 2020-06-08 14:44:28 -07:00
Andrey Melnikov
88955d4e15 fix: issue where request data did not come through to api 2020-06-05 16:03:05 -07:00
Andrey Melnikov
e2f027dd61 update: centralized authorization logic for workspace actions into one IsAuthorized endpoint 2020-06-04 14:01:07 -07:00
Rush Tehrani
473bc9d27a Merge branch 'master' into feat/core.124-add.envoy.filter 2020-05-07 10:29:49 -07:00
Aleksandr Melnikov
49451b5008 Per feedback, using the new auth code logic. 
Also, using "apps" instead of "apps/v1"
 2020-05-06 14:10:09 -07:00
rushtehrani
ff51502a0a fix IsAuthorized and statefulsets group 2020-05-05 22:48:31 -07:00
Aleksandr Melnikov
7616a5ff92 Handling an issue if the user is logging in for the first time, 
or if they logged out.
- EnvoyFilter would prevent the user from getting to the login page.
Or any page at all, because the "authorization" header would be missing.
Or, the cookie "auth-token".
 2020-05-04 16:20:07 -07:00
Aleksandr Melnikov
f7933fd549 Fixing the source of URL. 2020-05-01 17:24:16 -07:00
Aleksandr Melnikov
c7329a6d7a Updated code that checks the auth. 
- Code grabs the headers and checks to see if the "x-original-uri"
matches "fqdn".
If there is no match, then the code continues to the regular auth.
 2020-04-30 14:42:46 -07:00
Aleksandr Melnikov
b4962f16a4 Adding code to check IsWorkspaceAuthenticated method call. 2020-04-29 16:46:46 -07:00
rushtehrani
34556d243b rename auth package functions to not start with package name 2020-04-26 20:23:17 -07:00
Andrey Melnikov
67252942a4 fix: Added missing imports 2020-03-24 16:06:04 -07:00
Andrey Melnikov
570e5d9322 fix: Updated authentication check endpoint to take the auth token as POST request data 2020-03-24 15:55:51 -07:00
rushtehrani
48cd98344d authorizations for remaining resources 2020-02-20 16:02:46 -08:00