240 commits

Author	SHA1	Message	Date
William Brown	b6be05248c	(cargo-release) version 1.1.0-alpha.8	2022-05-01 13:58:18 +10:00
Firstyear	53f3260285	Remove async references (#724)	2022-04-29 13:23:46 +10:00
Firstyear	8dc0199380	383 170 164 authentication updates 3 (#723)	2022-04-29 13:03:21 +10:00
James Hodgkinson	5eb9fa604e	Making the login path nicer, dev scripting (#721) ... * making username-not-found messages nicer * adds a script to run a dev server easier	2022-04-29 10:44:57 +10:00
Firstyear	a58edc5128	20220427 dependency updates (#718)	2022-04-27 13:35:26 +10:00
Firstyear	9ade567a52	383 170 164 authentication updates 2 (#716) ... Add foundations for credential update sessions.	2022-04-27 10:56:18 +10:00
Euan Kemp	9427d27141	Add a new ACP and group allowing self-service mail updates (#672) ... * Add a new ACP and group allowing self-service mail updates This adds a new "idm_people_self_write_mail_priv" group which follows the existing canned group+acp format closely. This also adds a test for the functionality See the discussion in #648 for a bit more background * Limit the self-write ACP to targets with the "account" class Per feedback on #672, it's better to limit these APIs specifically to accounts. * Fix up Co-authored-by: Firstyear <william.brown@suse.com>	2022-04-13 20:45:45 +10:00
Euan Kemp	0c3ce226cf	Add 'account person set' command (#667) ... * Add 'account person set' command This command allows a user to modify, say, their legal name in a self-service fashion. This wasn't possible before by default since the 'extend' operation required additional ACPs in order to operate which not every user would have. The new "person set" api is compatible with the default self_write ACP, and so allows self-service modification. * Add a short section on people attributes to the book	2022-04-02 13:24:07 +10:00
James Hodgkinson	134235ef7f	Specifying MSRV in package now (#664) ... * specifying MSRV in package now	2022-03-31 14:12:53 +10:00
James Hodgkinson	a61ef91ac6	Fixes 654 - make DEVELOPER_README valid (#656) ... * updating dev readme and scripting * fixing confusing debug message about config loading	2022-03-28 08:36:25 +10:00
Firstyear	bd41ef8f91	Add design doc, revive the domain wide enc token (#649) ... * Add design doc, revive the domain wide enc token, use jwt from our lib instead of bundy, update docs	2022-03-14 17:29:04 +10:00
Firstyear	fa610c6d88	106 auth concurrency (#643)	2022-03-07 09:22:35 +10:00
Firstyear	f252d91e13	20220219 webui updates + source refactor + clippy go clip clip (#642)	2022-02-20 12:43:38 +10:00
Firstyear	6e1ed9ea07	Update to concread, add hooks for cache quiescing (#641)	2022-02-16 09:20:37 +10:00
Firstyear	840024f006	Change how domain names are handled in our configuration. (#639)	2022-02-15 16:17:43 +10:00
William Brown	4c74fffede	Fix relative path in oauth2 workflow	2022-02-09 15:28:43 +10:00
Firstyear	a2bd54c4cb	Improve access controls for IDM admins to manage account radius secrets. (#638) ... Remove need for a bundler in wasm	2022-02-09 12:57:38 +10:00
Firstyear	a0ef768fc8	Correct issuer to match url of connected client (#635)	2022-01-27 12:19:03 +10:00
Firstyear	2a282f8a89	20220104 resolve yew render issues (#632)	2022-01-09 10:47:21 +10:00
William Brown	c8468199fc	(cargo-release) version 1.1.0-alpha.7	2021-12-31 09:27:57 +10:00
Firstyear	d25e3b338a	Pre-release update and cleanup (#631)	2021-12-31 09:11:20 +10:00
Firstyear	c6c564cebb	Finalise email changes for oidc (#629)	2021-12-25 09:47:14 +10:00
Firstyear	dc1dd11333	Temp use env filter (#628)	2021-12-21 11:56:23 +10:00
Firstyear	22682279aa	20211216 tracing cleanup (#627)	2021-12-17 13:54:13 +10:00
Firstyear	42df4bf1a3	Refactor of value and addition of base types for business attributes (#626)	2021-12-16 10:13:03 +10:00
James Hodgkinson	172c2e4825	Check before rename for #622 (#624)	2021-12-08 10:02:04 +10:00
James Hodgkinson	b7837f3aae	add logging for oauth2 errors (#620)	2021-11-25 14:55:12 +10:00
Firstyear	fad0dd86e0	Improve book and errors related to domain name and origin mismatch (#617)	2021-11-25 08:37:50 +10:00
Kerstin	492cb653e8	Make sure that effective domain actually is descendant of rp_id (#618)	2021-11-25 08:30:39 +10:00
Firstyear	0f4189a57e	278 603 OIDC implementation (#608)	2021-11-21 16:41:49 +10:00
Firstyear	761bed0569	20211010 rfc7662 token introspect (#607)	2021-10-26 13:00:02 +10:00
Firstyear	c9ef4fe5df	Setup for webauthn subdomain support (#598)	2021-10-20 14:42:43 +10:00
Firstyear	8e3525c736	Fix state parameter to be string (#602)	2021-10-20 14:00:14 +10:00
James Hodgkinson	a993eb9cf3	changing errors to errors (#599)	2021-10-17 21:28:04 +10:00
James Hodgkinson	b0542c7e54	Adding some extra fields to logging on-request (#595)	2021-10-17 21:20:48 +10:00
Quinn	f1e4a4c7e2	Integrated compiled-uuid into kanidmd/src/lib/constants/uuids.rs (#593)	2021-10-11 14:49:32 +10:00
Firstyear	a09c1bc169	fixes (#589)	2021-10-10 08:44:58 +10:00
Firstyear	c62b39c338	509 oauth2 scope mapping (#586)	2021-10-07 18:31:48 +10:00
Quinn	d59ddcc74a	Added num-enum support for runtime enums (#585)	2021-10-02 09:02:36 +10:00
William Brown	c9f4b1dc2e	(cargo-release) version 1.1.0-alpha.6	2021-10-01 11:44:25 +10:00
Firstyear	573e346476	Add support for storing security token key in domain config (#581)	2021-09-25 11:24:00 +10:00
Firstyear	dbb57e9a7b	Remove auditscope for tracing (#580)	2021-09-21 12:42:00 +10:00
Firstyear	2fbc92668c	Entry Arc Tracking to reduce memory footprint (#579)	2021-09-17 12:05:33 +10:00
Firstyear	d2bb9cead4	Rewrite how we store the internals of valuesets in entries (#578)	2021-09-15 08:24:37 +10:00
Firstyear	0c1ad4e5fe	Swap to tide-openssl (#575)	2021-08-29 12:34:55 +10:00
Firstyear	1080e5d0b4	Start to remove audit scope :) (#574)	2021-08-26 11:48:03 +10:00
Firstyear	09e83a98c6	Fix io capture in tests (#573)	2021-08-24 14:23:53 +10:00
Firstyear	9456cac15b	Qnn idiomatic refactor (#570)	2021-08-21 14:44:55 +10:00
Quinn	a3c0b8ccfe	Customized tracing for tide::Middleware logging (#544)	2021-08-19 11:04:24 +10:00
Firstyear	3f27267ea4	508 token introspect (#565)	2021-08-18 09:41:04 +10:00