Commit graph

669 commits

Author SHA1 Message Date
Renovate Bot
c6bdd0be5e chore(deps): update golang.org/x/crypto commit hash to 948cd5f 2020-07-13 05:14:25 +00:00
renovate[bot]
51c8de70ba
chore(deps): update module open-policy-agent/opa to v0.21.1 (#1061)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2020-07-12 22:13:57 -07:00
Renovate Bot
f80a72d680 chore(deps): update google.golang.org/genproto commit hash to 8e8330b 2020-07-07 01:53:44 +00:00
Renovate Bot
e482fef247 chore(deps): update module google.golang.org/protobuf to v1.25.0 2020-07-02 16:07:51 +00:00
Caleb Doxsey
fae02791f5
cryptutil: move to pkg dir, add token generator (#1029)
* cryptutil: move to pkg dir, add token generator

* add gitignored files

* add tests
2020-06-30 15:55:33 -06:00
Renovate Bot
f8491b48ee chore(deps): update google.golang.org/genproto commit hash to ee7919e 2020-06-29 20:07:28 +00:00
Renovate Bot
a18f48b209 chore(deps): update module google.golang.org/grpc to v1.30.0 2020-06-29 17:34:09 +00:00
Renovate Bot
ad232bf10e chore(deps): update module prometheus/client_golang to v1.7.1 2020-06-29 06:43:00 +00:00
Renovate Bot
8e9f886818 chore(deps): update golang.org/x/sync commit hash to 6e8e738 2020-06-29 03:16:20 +00:00
Renovate Bot
0300be3ed1 chore(deps): update golang.org/x/net commit hash to 4c52546 2020-06-29 01:28:06 +00:00
Renovate Bot
fa40ff1f77 chore(deps): update module hashicorp/memberlist to v0.2.2 2020-06-23 05:41:34 +00:00
Renovate Bot
90bd2baf80 chore(deps): update google.golang.org/genproto commit hash to fbb79ea 2020-06-23 03:54:40 +00:00
Renovate Bot
1ea3253660 chore(deps): update module go.opencensus.io to v0.22.4 2020-06-23 00:47:22 +00:00
Renovate Bot
6ccf3246aa chore(deps): update module cenkalti/backoff/v4 to v4.0.2 2020-06-22 23:14:22 +00:00
renovate[bot]
0c7faf4991
chore(deps): update module google.golang.org/api to v0.28.0 (#949)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2020-06-22 16:59:09 -06:00
renovate[bot]
b6287fcf8a
chore(deps): update module google/go-cmp to v0.5.0 (#950)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2020-06-22 16:58:35 -06:00
renovate[bot]
8ea4560fe6
chore(deps): update module prometheus/client_golang to v1.7.0 (#953)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2020-06-22 16:58:16 -06:00
Renovate Bot
6ef74806c7 chore(deps): update module open-policy-agent/opa to v0.21.0 2020-06-22 15:29:50 +00:00
bobby
452c9be06d
cache: remove unused metrics and options (#957)
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
2020-06-22 06:59:04 -07:00
Caleb Doxsey
dbd7f55b20
feature/databroker: user data and session refactor project (#926)
* databroker: add databroker, identity manager, update cache (#864)

* databroker: add databroker, identity manager, update cache

* fix cache tests

* directory service (#885)

* directory: add google and okta

* add onelogin

* add directory provider

* initialize before sync, upate google provider, remove dead code

* add azure provider

* fix azure provider

* fix gitlab

* add gitlab test, fix azure test

* hook up okta

* remove dead code

* fix tests

* fix flaky test

* authorize: use databroker data for rego policy (#904)

* wip

* add directory provider

* initialize before sync, upate google provider, remove dead code

* fix flaky test

* update authorize to use databroker data

* implement signed jwt

* wait for session and user to appear

* fix test

* directory service (#885)

* directory: add google and okta

* add onelogin

* add directory provider

* initialize before sync, upate google provider, remove dead code

* add azure provider

* fix azure provider

* fix gitlab

* add gitlab test, fix azure test

* hook up okta

* remove dead code

* fix tests

* fix flaky test

* remove log line

* only redirect when no session id exists

* prepare rego query as part of create

* return on ctx done

* retry on disconnect for sync

* move jwt signing

* use !=

* use parent ctx for wait

* remove session state, remove logs

* rename function

* add log message

* pre-allocate slice

* use errgroup

* return nil on eof for sync

* move check

* disable timeout on gRPC requests in envoy

* fix gitlab test

* use v4 backoff

* authenticate: databroker changes (#914)

* wip

* add directory provider

* initialize before sync, upate google provider, remove dead code

* fix flaky test

* update authorize to use databroker data

* implement signed jwt

* wait for session and user to appear

* fix test

* directory service (#885)

* directory: add google and okta

* add onelogin

* add directory provider

* initialize before sync, upate google provider, remove dead code

* add azure provider

* fix azure provider

* fix gitlab

* add gitlab test, fix azure test

* hook up okta

* remove dead code

* fix tests

* fix flaky test

* remove log line

* only redirect when no session id exists

* prepare rego query as part of create

* return on ctx done

* retry on disconnect for sync

* move jwt signing

* use !=

* use parent ctx for wait

* remove session state, remove logs

* rename function

* add log message

* pre-allocate slice

* use errgroup

* return nil on eof for sync

* move check

* disable timeout on gRPC requests in envoy

* fix dashboard

* delete session on logout

* permanently delete sessions once they are marked as deleted

* remove permanent delete

* fix tests

* remove groups and refresh test

* databroker: remove dead code, rename cache url, move dashboard (#925)

* wip

* add directory provider

* initialize before sync, upate google provider, remove dead code

* fix flaky test

* update authorize to use databroker data

* implement signed jwt

* wait for session and user to appear

* fix test

* directory service (#885)

* directory: add google and okta

* add onelogin

* add directory provider

* initialize before sync, upate google provider, remove dead code

* add azure provider

* fix azure provider

* fix gitlab

* add gitlab test, fix azure test

* hook up okta

* remove dead code

* fix tests

* fix flaky test

* remove log line

* only redirect when no session id exists

* prepare rego query as part of create

* return on ctx done

* retry on disconnect for sync

* move jwt signing

* use !=

* use parent ctx for wait

* remove session state, remove logs

* rename function

* add log message

* pre-allocate slice

* use errgroup

* return nil on eof for sync

* move check

* disable timeout on gRPC requests in envoy

* fix dashboard

* delete session on logout

* permanently delete sessions once they are marked as deleted

* remove permanent delete

* fix tests

* remove cache service

* remove kv

* remove refresh docs

* remove obsolete cache docs

* add databroker url option

* cache: use memberlist to detect multiple instances

* add databroker service url

* remove cache service

* remove kv

* remove refresh docs

* remove obsolete cache docs

* add databroker url option

* cache: use memberlist to detect multiple instances

* add databroker service url

* wip

* remove groups and refresh test

* fix redirect, signout

* remove databroker client from proxy

* remove unused method

* remove user dashboard test

* handle missing session ids

* session: reject sessions with no id

* sessions: invalidate old sessions via databroker server version (#930)

* session: add a version field tied to the databroker server version that can be used to invalidate sessions

* fix tests

* add log

* authenticate: create user record immediately, call "get" directly in authorize (#931)
2020-06-19 07:52:44 -06:00
Renovate Bot
d5a8fece0c chore(deps): update module caddyserver/certmagic to v0.11.2 2020-06-15 05:45:59 +00:00
Renovate Bot
e51e8c3410 chore(deps): update google.golang.org/genproto commit hash to 7676ae0 2020-06-15 03:51:56 +00:00
Renovate Bot
2b6b21739d Update golang.org/x/crypto commit hash to 70a84ac 2020-06-11 10:53:34 +00:00
Renovate Bot
3f359c1f38 Update module go-redis/redis/v7 to v7.4.0 2020-06-11 08:58:42 +00:00
Renovate Bot
24229a8013 Update golang.org/x/net commit hash to 627f964 2020-06-11 05:54:57 +00:00
Renovate Bot
5373a1d637 Update module google.golang.org/api to v0.26.0 2020-06-11 04:26:26 +00:00
Renovate Bot
5a22a0d6f7 Update module stretchr/testify to v1.6.1 2020-06-10 22:59:32 +00:00
Renovate Bot
89ece36d0c Update module rs/zerolog to v1.19.0 2020-06-10 21:42:18 +00:00
Renovate Bot
5baeb4ae94 Update module open-policy-agent/opa to v0.20.5 2020-06-10 20:35:03 +00:00
Renovate Bot
eecf33218a Update module contrib.go.opencensus.io/exporter/prometheus to v0.2.0 2020-06-10 20:25:14 +00:00
Renovate Bot
5aa3cbc5b9 Update module caddyserver/certmagic to v0.11.1 2020-06-10 18:20:19 +00:00
Renovate Bot
36fa986e97 Update google.golang.org/genproto commit hash to a5b850b 2020-06-10 16:40:59 +00:00
Bobby DeSimone
b8ccfee499
go.mod: bump required go version to 1.14 (#868)
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
2020-06-10 09:07:39 -07:00
Renovate Bot
7e77a2fc9f chore(deps): update module stretchr/testify to v1.6.0 2020-06-01 19:29:46 +00:00
Renovate Bot
db2ca576fd chore(deps): update module caddyserver/certmagic to v0.11.0 2020-06-01 17:54:45 +00:00
Renovate Bot
ab00c68cc8 chore(deps): update google.golang.org/genproto commit hash to 0f60399 2020-06-01 16:47:54 +00:00
Renovate Bot
44784e98fe chore(deps): update golang.org/x/net commit hash to 3c3fba1 2020-06-01 13:49:57 +00:00
Renovate Bot
c973174d30 chore(deps): update github.com/natefinch/atomic commit hash to 18c0533 2020-06-01 12:33:54 +00:00
Renovate Bot
57d2656f66 chore(deps): update module open-policy-agent/opa to v0.20.4 2020-05-26 19:50:06 +00:00
Renovate Bot
80597c9459 chore(deps): update module go-redis/redis/v7 to v7.3.0 2020-05-26 18:41:19 +00:00
Renovate Bot
e8f539e69e chore(deps): update module google/go-jsonnet to v0.16.0 2020-05-26 14:23:45 +00:00
Renovate Bot
ffe8ebe93e chore(deps): update google.golang.org/genproto commit hash to e9a78aa 2020-05-26 12:59:31 +00:00
Renovate Bot
c36748cffb chore(deps): update module google.golang.org/api to v0.25.0 2020-05-25 22:34:47 +00:00
Renovate Bot
c3d63babc8 chore(deps): update golang.org/x/net commit hash to 0ba52f6 2020-05-25 21:40:26 +00:00
Travis Groth
727d4bed9d
envoy: Tracing config improvements (#754) 2020-05-23 18:40:26 -04:00
Caleb Doxsey
e4832cb4ed
authorize: add client mTLS support (#751)
* authorize: add client mtls support

* authorize: better error messages for envoy

* switch from function to input

* add TrustedCa to envoy config so that users are prompted for the correct client certificate

* update documentation

* fix invalid ClientCAFile

* regenerate cache protobuf

* avoid recursion, add test

* move comment line

* use http.StatusOK

* various fixes
2020-05-21 16:01:07 -06:00
Renovate Bot
38c1b5ec65 chore(deps): update module google.golang.org/grpc to v1.29.1 2020-05-21 14:47:56 +00:00
renovate[bot]
adaaed2481
chore(deps): update module yaml to v2.3.0 (#717)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2020-05-19 09:14:57 -07:00
Caleb Doxsey
959c9e8225
envoy: always populate pomerium-authz cluster (#730) 2020-05-19 08:11:12 -06:00
Renovate Bot
0ca5230467 chore(deps): update module caddyserver/certmagic to v0.10.13 2020-05-19 02:45:14 +00:00