ClusterCockpit/cc-backend
1
0
Fork 0
mirror of https://github.com/ClusterCockpit/cc-backend synced 2026-06-26 20:20:38 +02:00
Code Issues Packages Releases Activity
2,823 Commits 7 Branches 18 Tags
feat/74-assign-user-role-based-on-ldap-group
Commit Graph

22 Commits

Author SHA1 Message Date
moebiusband 83d04dff17 feat(auth): replace .env/godotenv secret handling with config-based secrets 
Secrets (JWT keys, LDAP sync password, OIDC client id/secret, cross-login
keys) are now configured directly in config.json under the auth section
where they are used. Each secret can still be supplied via its existing
environment variable, which takes precedence over the config value.

The godotenv dependency, the .env file, configs/env-template.txt and the
loadEnvironment() bootstrap step are removed. -init now writes the demo
JWT keys into config.json instead of a .env file.

Closes #283

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Entire-Checkpoint: 3a7cb814c53f
 2026-06-17 12:28:17 +02:00
moebiusband 6f7e262f3f Fix issues after security audit 
Entire-Checkpoint: bc18358a9343
 2026-06-04 18:33:30 +02:00
moebiusband 2ebab1e2e2 Reformat with gofumpt 2026-01-13 09:50:57 +01:00
moebiusband 8576ae458d Switch to cc-lib v2 2025-12-24 09:24:18 +01:00
moebiusband 340efd7926 Refactor auth package 
Fix security issues
Remove redundant code
Add documentation
Add units tests
 2025-11-19 16:54:01 +01:00
moebiusband 4fc78bc382 Refactor variable namings and doc comments 2025-09-27 09:27:36 +02:00
moebiusband 0754ba5292 Port configuration to ccConfig scheme 
Decentralize config validation
Modularize configuration handling
 2025-07-07 13:09:12 +02:00
moebiusband 639e1b9c6d Port to cc-lib. Extend legal header. 2025-06-30 12:06:35 +02:00
Christoph Kluge 01102cb9b0 feat: add updateUserOnLogin config option for oidc, jwt 2024-10-23 16:17:47 +02:00
moebiusband fb8bbea99d Remove year in copyright notice 2024-04-11 23:04:30 +02:00
moebiusband 6828c97415 Add central function to persist users on Login 2024-03-28 14:22:23 +01:00
moebiusband 1e5f2944cf Upgrade dependencies. Port to jwt-auth v5. 2024-03-21 22:02:59 +01:00
moebiusband bb1c8cc25d fix: Move name extract from token in else branch 2023-09-08 12:11:49 +02:00
moebiusband 4b06fa788d fix: Fix buggy logic and simplify code if ValidateUser enabled 2023-09-08 11:50:28 +02:00
moebiusband 32b0c8bdd7 Refactor and cleanup Auth configuration 2023-08-18 10:43:06 +02:00
moebiusband d51be5c308 Formatting and minor fixes 2023-08-18 08:49:25 +02:00
moebiusband 29552fadc3 Cleanup SyncOnLogin Handling 2023-08-17 14:02:04 +02:00
moebiusband 15231bc683 Cleanup and adapt to new structure 2023-08-17 12:34:30 +02:00
moebiusband 87ce4f63d4 Refactor auth module 
Separate parts
Add user repository
Add user schema
 2023-08-17 10:29:00 +02:00
moebiusband 4a2afc7a5a Add LDAPSyncOnLogin option 
Cleanup
Extend docs
Remove obsolete Expiration attribute
 2023-08-14 12:40:21 +02:00
moebiusband 19d645f65c Readd URL token and cleanup 
Fix session values.
 2023-08-12 09:02:41 +02:00
moebiusband b8273a9b02 refactor auth module 
Restructure module
Separate JWT auth variants
Cleanup code
Fixes #189
 2023-08-11 10:00:23 +02:00