OBS SSO implementation
This is work in progress, see https://phabricator.apertis.org/T7891.
Edited by Andrej Shadura
Merge request reports
Activity
added 53 commits
-
e101cd40...d199d64b - 29 commits from branch
wip/andrewsh/sso-base
- 05f406c1 - Make :login accessible to non-logged-in users so that they can log in
- f754b8fa - [api] Move shared code to separate method
- a2187011 - Replace old-style attribute validation macros with new-style ones
- 11a7de14 - [api][webui] Fix deprecated string callback
- fb46abbe - Simplify password validation
- 945303ef - [webui][api] Update code documentation
- 6f3b0b25 - [api] Store available password hashing algorithms in constant variable
- 61c9a4b4 - [api] Use ActiveModel::Dirty in user model
- 4ae3d7f9 - [api] Drop code that prevents updating updated_at
- 83dcb286 - [api] Move ldap related code to separate method
- b1cd7025 - [api] Refactor updating user data in LDAP mode
- bd75ca5b - [api] Refactor creation of LDAP users
- d6929fd4 - [api][ci] Move creation of user with fake pw to model
- 63621996 - [api] Use SecureRandom to generate a random fake password
- a4ee2f75 - [webui] Drop validation of user's email address
- 561b26ab - [api] DRY code by using existing methods
- b2fca538 - Parse SSO authentication config on startup
- 119d5f22 - Add an SSO login page so that users can choose between providers
- 47fb6949 - Add a link to the SSO login to the dropdown login box
- f5aa87b9 - Add SSO buttons to the normal login page
- a7a5fa8b - Rename create_ldap_user to create_external_user
- b5e4f3cc - model: add find_with_omniauth/create_with_omniauth
- e58caea2 - Add SSO callback to allow existing users log in with an external source
- 13fcb60f - Implement login workflow
Toggle commit list-
e101cd40...d199d64b - 29 commits from branch
added 7 commits
- 5c1e0b93 - Add an SSO login page so that users can choose between providers
- e5492764 - Add a link to the SSO login to the dropdown login box
- 88879336 - Add SSO buttons to the normal login page
- 4cfe7a95 - Rename create_ldap_user to create_external_user
- e61cb101 - model: add find_with_omniauth/create_with_omniauth
- cbb41e24 - Add SSO callback to allow existing users log in with an external source
- f7e24a38 - Implement login workflow
Toggle commit listadded 7 commits
- 7c91ee9e - Add an SSO login page so that users can choose between providers
- 250fa653 - Add a link to the SSO login to the dropdown login box
- c1814a83 - Add SSO buttons to the normal login page
- 5fa1e26d - Rename create_ldap_user to create_external_user
- ca01f26e - model: add find_with_omniauth/create_with_omniauth
- 3db02e7b - Add SSO callback to allow existing users log in with an external source
- 93e0dc9d - Implement login workflow
Toggle commit listadded 8 commits
- f4db149b - Add an SSO login page so that users can choose between providers
- 3701a7e6 - Add a link to the SSO login to the dropdown login box
- 27c27bc2 - Add SSO buttons to the normal login page
- bf21f71e - Rename create_ldap_user to create_external_user
- 487fffe7 - user model: add find_with_omniauth/create_with_omniauth
- 053a7f28 - Add SSO callback to allow existing users log in with an external source
- 275afa7d - Implement login workflow
- 8a206fc9 - Limit OmniAuth to 1.x only
Toggle commit listadded 1 commit
- 4934be49 - fixup! Parse SSO authentication config on startup
added 14 commits
- cb94de31 - Parse SSO authentication config on startup
- 1d85f472 - Add an SSO login page so that users can choose between providers
- 53c785e5 - Add a link to the SSO login to the dropdown login box
- 523dd23b - Add SSO buttons to the normal login page
- 64623181 - Rename create_ldap_user to create_external_user
- 5706b6d4 - user model: add find_with_omniauth/create_with_omniauth
- f7058030 - Add SSO callback to allow existing users log in with an external source
- 14d5a646 - Implement login workflow
- efeb5fbd - Limit OmniAuth to 1.x only
- 6ccaff82 - Build a Docker image with the Web UI only
- 4ec9e81b - Build Docker images in GitLab CI
- 5f6aff60 - Preinstall gems for Azure OAuth2
- 543977b8 - Split docker-entrypoint.sh into three separate files
- fcfd3385 - Run autopkgtests in GitLab CI
Toggle commit listadded 1 commit
- df6e3d12 - Generate the SSO config from the environment variables
added 9 commits
- 9fb6aa12 - Implement login flow
- 37077826 - Limit OmniAuth to 1.x only
- fa867cfc - Build a Docker image with the Web UI only
- bc26de7d - Build Docker images in GitLab CI
- c7c73098 - Preinstall gems for Azure OAuth2
- d663a135 - Split docker-entrypoint.sh into three separate files
- 6fa0534d - Move Docker-related files under docker/
- 7a203ad6 - Generate the SSO config from the environment variables
- 649de541 - Try harder to derive the username from email addresses
Toggle commit listadded 2 commits
added 1 commit
- 4c464d37 - Allow passing SSO auth configuration as a secret
added 6 commits
- d35d2a9b - Generate the SSO config from the environment variables
- d0fbd14d - Try harder to derive the username from email addresses
- 9ecd97bc - Clean up stale pid files on start
- c81b3aee - Install and configure mstmp
- 9e36f64f - Allow changing the session lifetime
- e77c95cb - Allow passing SSO auth configuration as a secret
Toggle commit listadded 18 commits
- be7185c4 - Rename create_ldap_user to create_external_user
- 983a7229 - user model: add find_with_omniauth/create_with_omniauth
- b8dc34fa - Add SSO callback to allow existing users log in with an external source
- 7bcfcee3 - Implement login flow
- d974df0a - Limit OmniAuth to 1.x only
- 54683c84 - Build a Docker image with the Web UI only
- 82c4894d - Build Docker images in GitLab CI
- cdbbd595 - Preinstall gems for Azure OAuth2
- 7fbc09c4 - Split docker-entrypoint.sh into three separate files
- e590e111 - Move Docker-related files under docker/
- 2327500b - Generate the SSO config from the environment variables
- 65904f01 - Try harder to derive the username from email addresses
- fd77f463 - Clean up stale pid files on start
- a0cf1f08 - Install and configure mstmp
- f743a458 - Allow changing the session lifetime
- 03637dee - Allow passing SSO auth configuration as a secret
- 2ce3baa7 - Unbreak the validators
- 3b3b9975 - Mark passwords for SSO-only users as invalid to allow changing them later
Toggle commit listadded 1 commit
- 22e5c3f5 - Mark passwords for SSO-only users as invalid to allow changing them later
added 1 commit
- d3bc105e - Mark passwords for SSO-only users as invalid to allow changing them later
added 17 commits
- 1ff1459a - user model: add find_with_omniauth/create_with_omniauth
- a278b782 - Add SSO callback to allow existing users log in with an external source
- 21c38fe4 - Implement login flow
- 1896a47d - Limit OmniAuth to 1.x only
- a96f2a30 - Build a Docker image with the Web UI only
- f0f33fd7 - Build Docker images in GitLab CI
- 670a1a93 - Preinstall gems for Azure OAuth2
- c8ec2db4 - Split docker-entrypoint.sh into three separate files
- 49843e60 - Move Docker-related files under docker/
- 6643f160 - Generate the SSO config from the environment variables
- f8e15f56 - Try harder to derive the username from email addresses
- 4fc76311 - Clean up stale pid files on start
- de0f3d14 - Install and configure mstmp
- 24fb2a44 - Allow changing the session lifetime
- 8c910bd4 - Allow passing SSO auth configuration as a secret
- afe2b01b - Unbreak the validators
- bbb89273 - Mark passwords for SSO-only users as invalid to allow changing them later
Toggle commit listadded 1 commit
- ba206271 - Mark passwords for SSO-only users as invalid to allow changing them later
added 17 commits
- 27358dc4 - user model: add find_with_omniauth/create_with_omniauth
- 56cb9090 - Add SSO callback to allow existing users log in with an external source
- c1c5a8c1 - Implement login flow
- e4774f60 - Limit OmniAuth to 1.x only
- 6baa7d56 - Build a Docker image with the Web UI only
- 9952b700 - Build Docker images in GitLab CI
- 4bfd6cba - Preinstall gems for Azure OAuth2
- b1f97e27 - Split docker-entrypoint.sh into three separate files
- d4ae81d1 - Move Docker-related files under docker/
- 75d0aa20 - Generate the SSO config from the environment variables
- 70ac63d7 - Try harder to derive the username from email addresses
- 2e4582c4 - Clean up stale pid files on start
- 3f286119 - Install and configure mstmp
- 210b50c7 - Allow changing the session lifetime
- 4c84d221 - Allow passing SSO auth configuration as a secret
- a73d02c0 - Unbreak the validators
- 35632341 - Mark passwords for SSO-only users as invalid to allow changing them later
Toggle commit list
Please register or sign in to reply