|
|
6b82c26268
|
chore(migration): fix oauth2 migration contd
|
2024-03-13 12:24:25 +01:00 |
|
|
|
770c2f3182
|
chore(migration): fix oauth2 migration
|
2024-03-13 10:20:10 +01:00 |
|
|
|
843e6dbba2
|
chore(migration): add oauth2 migration
|
2024-03-12 18:09:18 +01:00 |
|
|
|
3607a9da6d
|
Merge branch 'oauth2' into 142-userdata-oauth-mode
|
2024-03-12 15:08:20 +01:00 |
|
|
|
07dd91665c
|
chore: fix auth plugin refs
|
2024-03-11 15:20:24 +01:00 |
|
|
|
5662a2d1f1
|
chore: fix merge oopsie contd
|
2024-03-11 15:09:33 +01:00 |
|
|
|
72938e41ba
|
chore: fix merge oopsie
|
2024-03-11 15:07:50 +01:00 |
|
Sarah Vaupel
|
cf6ae898c4
|
Merge branch '139-single-sign-on-sso-routing-anpassen' into 142-userdata-oauth-mode
|
2024-03-11 14:50:07 +01:00 |
|
|
|
504490f593
|
chore(admin): switch to generic Aeson Value for oauth response parsing
|
2024-03-11 11:09:59 +01:00 |
|
|
|
e1ebd528b8
|
chore(auth): use available sources in AuthIsExternal access pred
|
2024-03-08 21:16:16 +01:00 |
|
|
|
708320e067
|
chore(auth): change user identification to UserIdent for ExternalUser entries
|
2024-03-08 20:04:19 +01:00 |
|
|
|
51298ba726
|
chore: make fetch and upsert results Maybe
|
2024-03-08 19:05:58 +01:00 |
|
|
|
96e3eb613d
|
chore(admin): merge external-user handlers (ldap, oauth2)
|
2024-03-08 12:10:26 +01:00 |
|
|
|
a2903da109
|
refactor(auth): UserConversionException -> DecodeUserException
|
2024-03-08 10:40:49 +01:00 |
|
|
|
c9fa627651
|
chore(admin): generalize admin ldap handler for all source types (TODO: rename)
|
2024-03-08 09:56:54 +01:00 |
|
|
|
969cc4df63
|
chore(jobs): use userLookupAndUpsert for synchronise user job
|
2024-03-08 09:56:27 +01:00 |
|
|
|
2480efc345
|
chore: userLookupAndUpsert contd
|
2024-03-08 09:55:51 +01:00 |
|
|
|
8c4ec00c35
|
chore(ldap): ldapSearch for arbitrary number of results
|
2024-03-08 09:54:30 +01:00 |
|
|
|
78a8442d07
|
chore(auth): userLookupAndUpsert
|
2024-03-07 23:24:41 +01:00 |
|
|
|
95803db3a0
|
chore(auth): fix fetchUserData
|
2024-03-07 15:32:07 +01:00 |
|
|
|
d71ff014ea
|
chore(ldap): derive more json instances
|
2024-03-07 15:30:48 +01:00 |
|
|
|
aca5a79de2
|
chore(auth): implement fetchUserData, generalized version of azureUser and ldapUser
|
2024-03-07 05:38:39 +01:00 |
|
|
|
4feb05a02e
|
chore(foundation): tweak UpsertUserData fields
|
2024-03-07 05:37:27 +01:00 |
|
|
|
77a9100b2e
|
chore(auth): refactor; add util function
|
2024-03-07 05:36:03 +01:00 |
|
|
|
bb03d28b7d
|
chore(auth): actually use user-auth config for determining auth plugins to load
|
2024-03-03 06:16:53 +01:00 |
|
|
|
2196e89208
|
chore(settings): define more sane default values in settings.yml
|
2024-03-03 04:36:18 +01:00 |
|
|
|
4ff51c8f6f
|
chore: add TODOs and debug logs
|
2024-03-03 04:35:39 +01:00 |
|
|
|
434eed2217
|
chore(auth): do not authenticate against external sources on dummy login
|
2024-03-01 20:42:51 +01:00 |
|
|
|
f88e527fe4
|
chore(model): remigrate ExternalAuth -> ExternalUser for more general data lookup; redefine lastSync timestamp semantics contd
|
2024-03-01 12:03:38 +01:00 |
|
|
|
40fe8ecfc6
|
chore(model): remigrate ExternalAuth -> ExternalUser for more general data lookup; redefine lastSync timestamp semantics
|
2024-03-01 10:47:52 +01:00 |
|
|
|
13502d704e
|
refactor(auth): add missing TODOs, remove debris
|
2024-02-29 22:16:11 +01:00 |
|
|
|
d1e1f25162
|
chore(login): use correct auth plugin identifiers for comparison in login template
|
2024-02-29 17:52:31 +01:00 |
|
|
|
ac5bca2fcd
|
chore(ldap): use separate source-id for ldap instance identification
|
2024-02-28 15:50:47 +01:00 |
|
|
|
064645d1b3
|
refactor(ldap): move orphan instance
|
2024-02-28 12:00:06 +01:00 |
|
|
|
956c85a9f3
|
chore(migration): remove old ldap-primary-key index
|
2024-02-28 11:05:01 +01:00 |
|
David Mosbach
|
bee135ab48
|
chore(auth): connect azure user lookup
|
2024-02-22 18:56:03 +00:00 |
|
|
|
42ecc91c22
|
chore(test): update test database
|
2024-02-21 07:19:37 +01:00 |
|
|
|
a37d4b369a
|
chore(application): rename conf constructors
|
2024-02-21 07:14:18 +01:00 |
|
|
|
039b1234c5
|
chore(sap): generalize ldap-cutoff over configured ldap sources
|
2024-02-21 07:13:51 +01:00 |
|
|
|
87b3214c84
|
chore(lms): fix password in fake user
|
2024-02-21 07:13:00 +01:00 |
|
|
|
ad937cda8c
|
chore(users): remove ldap-specific columns in admin users page
|
2024-02-21 07:12:29 +01:00 |
|
|
|
899071e4d6
|
chore(users): remove eppn support
|
2024-02-21 07:11:59 +01:00 |
|
|
|
55bf8c0355
|
chore: add forgotten audPassword
|
2024-02-21 07:11:22 +01:00 |
|
|
|
b4a8ccf9cc
|
chore(admin): tweak ldap view
|
2024-02-21 07:10:19 +01:00 |
|
|
|
76d3c57658
|
chore(messages): add and tweak auth messages
|
2024-02-21 07:09:18 +01:00 |
|
|
|
2490f8e69f
|
chore(users): add password to user data for addNewUser
|
2024-02-21 07:08:56 +01:00 |
|
|
|
6cd0152636
|
refactor(jobs): use new user sync job name
|
2024-02-21 07:07:54 +01:00 |
|
|
|
19433fdc56
|
chore(profile): better auth info on profile page
|
2024-02-21 07:05:57 +01:00 |
|
|
|
012c75db21
|
chore(pwhash): reintroduce digest computation
|
2024-02-21 02:32:15 +01:00 |
|
|
|
71e2d6827e
|
chore(model): rename userLastLogin->userLastAuthentication for less migration woes
|
2024-02-21 02:06:00 +01:00 |
|
|
|
41b14f1ece
|
chore(model): replace auth-source model tables with AuthSourceIdent jsonified unique ids
|
2024-02-21 02:02:58 +01:00 |
|
|
|
a2e01e74af
|
chore(notifications): reimplement authmode-update notification to support new login modes
|
2024-02-20 01:33:34 +01:00 |
|
|
|
8a353c357f
|
chore(users): tweak assimilateUsers for new config
|
2024-02-20 00:38:46 +01:00 |
|
|
|
9bf7033eac
|
chore(guess-user): remove eppn lookup
|
2024-02-20 00:13:55 +01:00 |
|
|
|
0a01490aa7
|
chore(auth): use ldap external auth in health reports
|
2024-02-20 00:09:31 +01:00 |
|
|
|
115452035d
|
refactor(jobs): SynchroniseUserdb -> SynchroniseUsers
|
2024-02-20 00:05:56 +01:00 |
|
|
|
b8e7ee2b3d
|
chore(users): remove old auth kind digesting
|
2024-02-19 23:49:17 +01:00 |
|
|
|
3d1908d71a
|
chore(users): tweak addNewUser to conform to new model
|
2024-02-19 23:48:33 +01:00 |
|
|
|
ed54b666ec
|
chore: add todos
|
2024-02-19 23:46:45 +01:00 |
|
|
|
a1d8dc2e7e
|
chore(auth): migrate password hash back to User model
|
2024-02-19 02:24:31 +01:00 |
|
|
|
9a5c487b2c
|
chore(auth): switch back to AuthId UniWorX == UserId
|
2024-02-19 01:44:58 +01:00 |
|
|
|
bcfcbd5c9b
|
chore(auth): fix redundant imports
|
2024-02-18 18:43:44 +01:00 |
|
|
|
96038a4f22
|
chore(auth): fix azure exception handler
|
2024-02-18 18:42:22 +01:00 |
|
|
|
5c4042e5f3
|
chore(oauth2): fix query function exports
|
2024-02-18 18:41:29 +01:00 |
|
|
|
c9f1bc4047
|
Merge branch 'oauth2' into 142-userdata-oauth-mode
|
2024-02-18 18:29:24 +01:00 |
|
|
|
bf13473954
|
chore(auth): rewrote authenticate (still WIP)
|
2024-02-18 05:06:23 +01:00 |
|
|
|
a0e7b2f96c
|
chore(auth): work on authenticate
|
2024-02-16 03:25:36 +01:00 |
|
|
|
848890d3cd
|
chore(auth): add more data to user upsert mode
|
2024-02-16 02:28:15 +01:00 |
|
|
|
f8bf02df2b
|
chore(ldap): move and add more instances
|
2024-02-16 02:26:24 +01:00 |
|
|
|
0c5f4cb430
|
refactor(settings): use better settings type names for user-auth
|
2024-02-14 02:02:42 +01:00 |
|
|
|
9597663881
|
chore(ldap): add more Ldap instances
|
2024-02-13 22:44:47 +01:00 |
|
|
|
7ed5e7a326
|
chore(model): use more specific (new)types for ldap model
|
2024-02-13 22:44:30 +01:00 |
|
|
|
1180ef6fd0
|
chore(ldap): add Ldap.Scope instances
|
2024-02-13 19:01:49 +01:00 |
|
|
|
2c3292cadf
|
chore(model): add authentication source models
|
2024-02-13 18:22:00 +01:00 |
|
|
|
7803b753cb
|
refactor(model): migrate auth models and model types to models/auth.model
|
2024-02-13 17:38:22 +01:00 |
|
|
|
42c97924ec
|
chore: remove debris
|
2024-02-11 17:41:22 +01:00 |
|
|
|
29fc201294
|
chore(auth): authenticate against new InternalAuthHash in internal login AuthPlugin
|
2024-02-11 17:40:46 +01:00 |
|
|
|
938423b832
|
chore(auth): AuthTagLDAP -> AuthTagExternal, AuthTagPWHash -> AuthTagInternal
|
2024-02-11 17:39:42 +01:00 |
|
|
|
54f2430b3e
|
chore(model)!: separate user authentication data from User table; add ExternalAuth and InternalAuth models
|
2024-02-11 17:36:57 +01:00 |
|
|
|
2e47df00b9
|
refactor(model): rename module Model.Types.Security -> Model.Types.Auth
|
2024-02-11 01:44:18 +01:00 |
|
|
|
223ae0f2f8
|
refactor(messages): rename campus error messages
|
2024-02-10 16:34:37 +01:00 |
|
|
|
cc8bd19f85
|
refactor(ldap): CampusUserError -> LdapUserError
|
2024-02-10 00:27:36 +01:00 |
|
|
|
12fe58fc81
|
chore(model)!: move user authentication data to new ExternalUser model
|
2024-02-09 18:17:43 +01:00 |
|
|
|
ac045fdc70
|
chore(auth): oauth2MockServer->azureMockServer
|
2024-02-01 20:53:55 +01:00 |
|
|
|
a85a5be4cd
|
chore(auth): mockPluginName->apAzureMock
|
2024-02-01 20:51:31 +01:00 |
|
|
|
1d7b46b4a4
|
chore(npm): remove oauth2-mock-server
|
2024-02-01 12:20:47 +01:00 |
|
|
|
9c608070ae
|
chore(db-fill): add missing user fields contd
|
2024-01-30 22:08:55 +01:00 |
|
|
|
aa81de74a4
|
chore(db-fill): add missing user fields
|
2024-01-30 22:02:48 +01:00 |
|
|
|
d9ed893b52
|
chore(application): fix ldapPool setup
|
2024-01-30 21:54:46 +01:00 |
|
|
|
dfa774f655
|
chore(users): campusUser->ldapUser
|
2024-01-30 21:54:20 +01:00 |
|
|
|
608d8a3661
|
chore(users): add missing azure id field for UsersAdd
|
2024-01-30 21:53:58 +01:00 |
|
|
|
3c4e6b62fb
|
chore: fix constructor names
|
2024-01-30 21:53:30 +01:00 |
|
|
|
f39de71c02
|
chore(jobs): upsertAzureUser on synchronise user job with azure config
|
2024-01-30 21:52:30 +01:00 |
|
|
|
24dbaf36bc
|
chore(form): add uuidField
|
2024-01-30 21:51:25 +01:00 |
|
|
|
43bf25a5bd
|
chore(azure): implement azureUser variant
|
2024-01-30 21:50:56 +01:00 |
|
|
|
f4b8417deb
|
chore(messages): add admin azure message
|
2024-01-30 21:50:19 +01:00 |
|
|
|
c8350722a4
|
chore(ldap): migrate more campusUser usages
|
2024-01-30 14:01:54 +01:00 |
|
|
|
af09e02801
|
chore(lms): add missing user fields for fake user
|
2024-01-30 13:52:33 +01:00 |
|
|
|
8e2a98c12b
|
chore(foundation): fix ldap auth and user lookup
|
2024-01-30 11:42:45 +01:00 |
|
|
|
1cdb20eb60
|
chore(ldap): fix user lookup types
|
2024-01-30 11:20:44 +01:00 |
|
|
|
264aaab24c
|
chore: campus->ldap
|
2024-01-28 20:05:52 +01:00 |
|
|
|
c65dc04e8f
|
chore: add missing AuthAzure case
|
2024-01-28 20:05:28 +01:00 |
|
|
|
a1ba004efa
|
chore(messages): add message for Azure auth kind
|
2024-01-28 18:37:59 +01:00 |
|
|
|
514bca5257
|
chore: rename setting
|
2024-01-28 18:37:28 +01:00 |
|
|
|
9cbc35c263
|
chore(users): add azure id to AddUserData
|
2024-01-28 18:32:36 +01:00 |
|
|
|
84d7890ae4
|
chore(auth): oauth2User->azureUser
|
2024-01-28 18:32:14 +01:00 |
|
|
|
aa893062f1
|
chore(ldap): refactor ldapLogin type
|
2024-01-28 18:16:10 +01:00 |
|
|
|
d4a3459adf
|
chore: user sources
|
2024-01-28 18:06:30 +01:00 |
|
|
|
e9bbeffd7e
|
chore(auth): campusLogin->ldapLogin
|
2024-01-28 12:45:59 +01:00 |
|
|
|
7e3e772055
|
chore(foundation): use multifunctional authenticate
|
2024-01-28 12:45:44 +01:00 |
|
|
|
471982d245
|
chore(application): reimplement ldapPool startup
|
2024-01-26 23:32:45 +01:00 |
|
|
|
3eec9ef8df
|
refactor(jobs): ldap->userdb messages
|
2024-01-26 23:32:10 +01:00 |
|
|
|
ff5b31929e
|
refactor(jobs): ldap->userdb
|
2024-01-26 23:31:13 +01:00 |
|
|
|
12bb8b7145
|
chore(foundation): loosen tight ldap<>failover coupling, move campusUser to ldapUser
|
2024-01-26 23:29:50 +01:00 |
|
|
|
2e005a90f2
|
chore(foundation): remove failover from ldap pool conf
|
2024-01-26 23:27:52 +01:00 |
|
|
|
843ac60aae
|
chore(auth): oauth2->azure
|
2024-01-26 23:27:13 +01:00 |
|
|
|
a42ccb0faa
|
chore(auth): campus->ldap
|
2024-01-26 23:26:53 +01:00 |
|
|
|
c929d42ebd
|
chore(foundation): rename auth exceptions
|
2024-01-26 23:26:00 +01:00 |
|
|
|
4051d1e11b
|
chore(settings): refactor userdb config structure
|
2024-01-26 23:24:40 +01:00 |
|
|
|
71af64dc28
|
chore(model): add AuthAzure
|
2024-01-26 23:22:58 +01:00 |
|
|
|
74f044919c
|
chore(model): add azure primary key
|
2024-01-26 23:21:33 +01:00 |
|
|
|
9dc6ec461c
|
chore(settings): simplify/flatten userdb config settings
|
2024-01-23 02:59:25 +01:00 |
|
|
|
1f31fe8cf2
|
chore(settings): add support for multiple modes for userdb
|
2024-01-23 02:16:06 +01:00 |
|
|
|
d56c9c3c31
|
Merge branch 'oauth2' into 142-userdata-oauth-mode
|
2024-01-22 10:36:43 +01:00 |
|
|
|
55ed01cb40
|
chore: improve settings, rename old ldap settings
|
2024-01-19 23:23:23 +01:00 |
|
Sarah Vaupel
|
9f299c854c
|
chore(settings)!: rename userdb app settings
|
2024-01-19 14:53:00 +01:00 |
|
Sarah Vaupel
|
35902daff6
|
chore(settings): add default value for oauth2 scopes in yaml
|
2024-01-13 01:19:58 +01:00 |
|
Sarah Vaupel
|
31f657a15f
|
chore(settings): fix oauth2 config json parsers
|
2024-01-13 01:14:54 +01:00 |
|
Sarah Vaupel
|
7946e046e2
|
chore(settings): update settings.yml
|
2024-01-13 00:42:25 +01:00 |
|
Sarah Vaupel
|
7ca12d064d
|
refactor(settings): enhance field names
|
2024-01-13 00:40:57 +01:00 |
|
Sarah Vaupel
|
5e85eae825
|
refactor(settings): move ResourcePool, Ldap and OAuth2 settings to separate modules
|
2024-01-12 23:24:58 +01:00 |
|
Sarah Vaupel
|
3e9e90ed86
|
chore(settings): restructure Settings.hs; add OAuthConf to AppSettings
|
2024-01-12 17:14:42 +01:00 |
|
|
|
2356bf80a5
|
chore(release): 27.4.56
|
2023-12-20 21:23:33 +00:00 |
|
|
|
decc5af682
|
fix(users): fix #121 by providing last login column, which was the last part missing
|
2023-12-20 16:31:59 +01:00 |
|
|
|
c7b5a3c6cb
|
fix(firm): improve supervisor filter yet once more
|
2023-12-20 09:02:10 +01:00 |
|
|
|
88f24fe6f1
|
fix(firm): improve supervisor filter by caching
|
2023-12-19 18:15:09 +01:00 |
|
|
|
dd5d283f88
|
chore(release): 27.4.55
|
2023-12-14 12:58:09 +00:00 |
|
|
|
1d48b627f6
|
fix(migration): ignore superfluous migration entries gracefully
|
2023-12-14 11:11:00 +01:00 |
|
|
|
a4b2af7f15
|
fix(build): while the blank is necessary to prevent unnecessary migrations, it is not allowed either, see #133
|
2023-12-14 11:10:21 +01:00 |
|
|
|
2509358878
|
fix(school): fix #133 by adjusting default value
|
2023-12-14 09:26:18 +01:00 |
|
|
|
f36f234c42
|
chore(firm): improve efficiency of foreign supervisor filter
|
2023-12-13 16:25:11 +01:00 |
|
|
|
ce45d26a21
|
chore(error): revert 54a956dc36 ff since it did not help towards #40
|
2023-12-13 16:20:17 +01:00 |
|
|
|
db77850c4f
|
fix(firm): supervisor filter performance
|
2023-12-12 18:23:52 +01:00 |
|
|
|
d4f0d69428
|
fix(migration): fix #133 by removing old outdated migrations irrelevant to FRADrive
|
2023-12-12 12:33:21 +01:00 |
|
