mart-w/kanidm
1
0
Fork 0
mirror of https://github.com/kanidm/kanidm.git synced 2025-02-23 20:47:01 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
855 commits 17 branches 59 tags 246 MiB
Commit graph

99 commits

Author SHA1 Message Date
Firstyear 4a03ca5d29 Add tools container support (#1178) 2022-11-10 07:43:56 +10:00
Firstyear 15c3bde00e
Add new scim/sync files (#1152) 2022-10-29 19:07:54 +10:00
Firstyear a55c0ca68d
406 session revocation (#1123) 2022-10-17 20:09:47 +10:00
Firstyear 2845f8c4cc
20221011 sudo mode components (#1120) 2022-10-13 10:54:44 +10:00
Firstyear 7e4e2f1ad1
1063 967 oauth2 improvements (#1102) 2022-10-09 17:11:55 +10:00
Firstyear e9ed430199
Improve badlist updating (#1095) 2022-10-07 11:35:58 +10:00
Firstyear 821b2c05c4
Rework deps (#1079) 2022-10-01 16:08:51 +10:00
Firstyear 082464f786
20220911 api tokens (#1071) 2022-09-25 11:21:30 +10:00
James Hodgkinson 5c5b2d6c94
Initial admin UI things (#1044) 
* wireframed up the admin menu and components
* banner-shaped yak shaving
* making some nicer messages in the cert script
* removing wee_alloc
* adding admin_groups ui
* adding oauth2 basics
* added group view page
* changing to expect_throw
* serde-wasm-bindgen fixes
* adding view person and view service account basics
* adding basic testy things
* dropping breadcrumbs all over the place
* minor changes to oauth2 admin interface, adding automation around wasm testing
 2022-09-20 14:23:54 +10:00
Dominik Süß 2b11ad0ad5
feat: allow switch between spn and name for claims (#1043) 2022-09-15 11:42:08 +10:00
James Hodgkinson e99fe0988c
adding Serialize to kanidm_client::KanidmClientConfig (#1030) 
* adding Serialize to kanidm_client::KanidmClientConfig, making the internals public
 2022-09-12 09:43:31 +10:00
James Hodgkinson 66954213db
#896 kanidm_unixd UX updoots (#1024) 2022-09-08 13:37:03 +10:00
Firstyear 925c03b3fb
20220817 ldap service tokens (#1002) 2022-09-02 14:21:20 +10:00
James Hodgkinson e6d4cd2d84
change for KanidmClientConfig to make it public (#1008) 
* clippy calming and pub change for KanidmClientConfig
 2022-08-30 15:47:04 +10:00
Firstyear 4151897948
383 164 authentication updates 9 (#956) 
* implementation of passkeys as an auth mech
* listing the current passkeys when asking to remove one
* tweaking insecure dev server config so passkeys will work
* Fix domain rename
Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
 2022-07-30 22:10:24 +10:00
James Hodgkinson d2ea936b16
Domain Display Name (#872) 2022-07-07 13:03:08 +10:00
James Hodgkinson 2be83a635d
Showing the TOTP URI to the user when doing a TOTP cred reset (#855) 
* Console TOTP registration - present registration URI to the user (Fixes #853)
* 📎-happiness
 2022-06-26 18:08:24 +10:00
Firstyear b97d13d284
383 170 164 authentication updates - credential update webui! (#809) 2022-06-05 16:30:08 +10:00
James Hodgkinson 7d27612174
Windows automagical buildingtons (#798) 
* windows build automation
* making fmt happy, fixing windows-related bug
* disabled cargo_incremental when using `sccache`, added build options ARG to Dockerfile, limit docker build to one job
 2022-05-31 14:13:21 +10:00
Firstyear 12852cf0a0
383 170 164 authentication updates 4 (#739) 
* Codes and TOTP done!
* Cleanup
 2022-05-06 09:52:58 +10:00
Firstyear 3a07842d56
20220501 fix logging (#730) 2022-05-01 13:34:19 +10:00
James Hodgkinson fefcff2bc4
ref #725 - updated comment to note it's still failing (#727) 2022-04-30 20:11:47 +10:00
Firstyear 53f3260285
Remove async references (#724) 2022-04-29 13:23:46 +10:00
Firstyear 8dc0199380
383 170 164 authentication updates 3 (#723) 2022-04-29 13:03:21 +10:00
Euan Kemp 0c3ce226cf
Add 'account person set' command (#667) 
* Add 'account person set' command

This command allows a user to modify, say, their legal name in a
self-service fashion.

This wasn't possible before by default since the 'extend' operation
required additional ACPs in order to operate which not every user would
have.

The new "person set" api is compatible with the default self_write ACP,
and so allows self-service modification.

* Add a short section on people attributes to the book
 2022-04-02 13:24:07 +10:00
James Hodgkinson 134235ef7f
Specifying MSRV in package now (#664) 
* specifying MSRV in package now
 2022-03-31 14:12:53 +10:00
Firstyear 5213ed4e01
Improve client diagnostics (#660) 2022-03-28 13:32:12 +10:00
Firstyear bd41ef8f91
Add design doc, revive the domain wide enc token (#649) 
* Add design doc, revive the domain wide enc token, use jwt from our lib instead of bundy, update docs
 2022-03-14 17:29:04 +10:00
Firstyear f252d91e13
20220219 webui updates + source refactor + clippy go clip clip (#642) 2022-02-20 12:43:38 +10:00
Firstyear d25e3b338a
Pre-release update and cleanup (#631) 2021-12-31 09:11:20 +10:00
Firstyear c6c564cebb
Finalise email changes for oidc (#629) 2021-12-25 09:47:14 +10:00
Firstyear 22682279aa
20211216 tracing cleanup (#627) 2021-12-17 13:54:13 +10:00
Firstyear 42df4bf1a3
Refactor of value and addition of base types for business attributes (#626) 2021-12-16 10:13:03 +10:00
Firstyear 0f4189a57e
278 603 OIDC implementation (#608) 2021-11-21 16:41:49 +10:00
Firstyear c62b39c338
509 oauth2 scope mapping (#586) 2021-10-07 18:31:48 +10:00
Firstyear 573e346476
Add support for storing security token key in domain config (#581) 2021-09-25 11:24:00 +10:00
James Hodgkinson c09ebccbda
adding useragent based on client version (#564) 2021-08-12 09:13:33 +10:00
James Hodgkinson 8737a7ad78
making 📎 slightly happier (#551) 2021-08-02 10:54:55 +10:00
Firstyear 1791f12adf
Oauth2 ui flows (#527) 2021-07-25 10:51:37 +10:00
cuberoot74088 8306c3bc6a
Rename to SetCredentialRequest::BackupCodeGenerate (#524) 2021-07-22 12:04:56 +10:00
James Hodgkinson bea2ce76ba
Relates to comments in #528 - pops error now instead of debug message (#529) 2021-07-22 10:58:36 +10:00
cuberoot74088 620a1717a8
495 backup codes cli extension (#517) 2021-07-08 12:50:55 +10:00
Firstyear e134fa5b40
Fix totp registration workflow with broken authenticators (#516) 2021-07-03 14:39:22 +10:00
James Hodgkinson 554ff3bb1b
Fixing kanidm windows client build (#507) 2021-06-30 10:34:45 +10:00
Firstyear 1de1b2db3b
Add the ability to configure and provide Oauth2 authentication for Kanidm. (#485) 2021-06-29 14:23:39 +10:00
Quinn c2d74ced2b
Removed OperationResponse (#489) 2021-06-21 12:32:39 +10:00
Quinn 03d2fc841a
kanidm_client bool/return values (#479) 2021-06-17 12:59:34 +10:00
James Hodgkinson 6b696b1923
unixd will now bail if startup tests fail (#476) 2021-06-15 11:54:04 +10:00
Firstyear ea34dc08a9
Add email syntax (#465) 
Part one of #461 - this adds the syntax to support email addresses and validation of their content, and a method to serialise to the DB that can be extended with attribute tagging in the future. Part two will address administration of these values.
 2021-06-12 10:01:44 +10:00
Firstyear 807af81184
64 120 session claims (#462) 2021-06-02 09:30:37 +10:00