ClusterCockpit/cc-backend
1
0
Fork 0
mirror of https://github.com/ClusterCockpit/cc-backend synced 2026-06-06 11:47:29 +02:00
Code Issues Packages Releases Activity
2,798 Commits 6 Branches 17 Tags
3bef199cbee1d581c7b8467e64ea090159d05c42
Commit Graph

122 Commits

Author SHA1 Message Date
Jan Eitzinger
6d86690c76 Fix critical issues from follow-up security audit 
A second-pass audit surfaced three severe issues missed by the previous
review, each a sibling code path of a bug class that was only partially
fixed before:

- auth: JWT session login (jwtSession.go) registered its authenticator
  even when CROSS_LOGIN_JWT_HS512_KEY was unset, leaving an empty HMAC
  key. golang-jwt verifies any HS256/HS512 signature against an empty
  key, allowing unauthenticated admin token forgery. Init() now refuses
  to register without a key, with a defense-in-depth empty-key guard in
  the keyfunc.

- repository: metric names from GraphQL ([String!]) were interpolated
  raw into json_extract(footprint, "$.<name>") SQL. SQLite parses
  double-quoted strings as literals, enabling SQL injection by any
  authenticated user. Validate metric names against ^[a-zA-Z0-9_]+$ in
  jobsMetricStatisticsHistogram and buildFloatJSONCondition.

- metricstore: cluster/host line-protocol tags flowed unvalidated into
  path.Join(RootDir, cluster, host) for checkpoint/WAL files, allowing
  arbitrary file write outside the checkpoint root via NATS
  (unauthenticated) or POST /api/write. Reject path-traversal sequences
  in DecodeLine before the tags become path components.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Entire-Checkpoint: b57246993ec1
 2026-06-04 19:07:20 +02:00
Jan Eitzinger
6f7e262f3f Fix issues after security audit 
Entire-Checkpoint: bc18358a9343
 2026-06-04 18:33:30 +02:00
Jan Eitzinger
43807ae12a feat: Also submit projects array via oidc token 
Entire-Checkpoint: 2064482d97e1
 2026-04-01 13:46:21 +02:00
Jan Eitzinger
31a8a11f1b fix: Always request oidc roles from token 
Entire-Checkpoint: bfdbffd7aae0
 2026-04-01 12:36:37 +02:00
Jan Eitzinger
1f04e0a1ce fix: oidc role extraction 
Entire-Checkpoint: bbe9ad3cf817
 2026-04-01 11:03:19 +02:00
Jan Eitzinger
82c514b11a Ease samesite cookie settings 
Entire-Checkpoint: 2fe286e23a4a
 2026-03-30 16:10:15 +02:00
Jan Eitzinger
6ebc9e88fa Add more context information to auth failed log 
Entire-Checkpoint: 2187cd89cb78
 2026-03-18 06:56:01 +01:00
Jan Eitzinger
51517f8031 Reduce insert pressure in db. Increase sqlite timeout value 
Entire-Checkpoint: a1e2931d4deb
 2026-03-16 11:17:47 +01:00
Christoph Kluge
348b6010e8 fix typo preventing template condition to work 2026-02-26 15:09:01 +01:00
Jan Eitzinger
6035b62734 Run go fix 2026-02-17 21:04:17 +01:00
Jan Eitzinger
8d6c6b819b Update and port to cc-lib 2026-02-11 07:06:06 +01:00
Jan Eitzinger
1980ef5f43 Renaming due to linter complaints 2026-02-09 09:17:01 +01:00
Jan Eitzinger
fd9b76c6a7 Security hardening of ldap and oicd auth implementations 2026-02-09 09:12:06 +01:00
Jan Eitzinger
f6aa40d927 Migrate from gorilla to chi web framework. add 404 handler 2026-02-07 17:48:12 +01:00
Michael Panzlaff
05abea87e7 Do not warn about unencrypted auth when encrypted revsere proxy is used 2026-01-22 14:06:34 +01:00
Jan Eitzinger
1d4c79c821 Unify JSON attribute naming ot use kebab style case. Cleanup configuration. 2026-01-20 09:47:13 +01:00
Michael Panzlaff
489ad44b9f Make apiAllowedIPs optional 
If our test and production instance just use *, one might as well make
that the default value. This should ease configuration for minimal
setups.
 2026-01-15 16:08:29 +01:00
Jan Eitzinger
2ebab1e2e2 Reformat with gofumpt 2026-01-13 09:50:57 +01:00
Jan Eitzinger
8576ae458d Switch to cc-lib v2 2025-12-24 09:24:18 +01:00
Jan Eitzinger
0ff6cae1c3 Merge pull request #438 from rpabel/master 
return directly on error
 2025-12-04 06:40:43 +01:00
Roland Pabel
443176a0d1 return directly on error 2025-11-20 15:09:53 +01:00
Jan Eitzinger
340efd7926 Refactor auth package 
Fix security issues
Remove redundant code
Add documentation
Add units tests
 2025-11-19 16:54:01 +01:00
Jan Eitzinger
d40c54b802 Refactor 2025-09-28 08:24:41 +02:00
Jan Eitzinger
4fc78bc382 Refactor variable namings and doc comments 2025-09-27 09:27:36 +02:00
Jan Eitzinger
df0e8eb228 Merge branch 'dev' into metricstore 2025-09-10 09:14:50 +02:00
Aditya Ujeniya
62565b9ae2 Combined metricstore api and functions 2025-09-08 11:29:27 +02:00
Christoph Kluge
2a91ca0cff Merge branch 'dev' into rework_status_view 2025-08-13 14:29:19 +02:00
Christoph Kluge
bef832e45b Build new statusDash, refine newRoofline data render 2025-08-07 16:10:11 +02:00
Jan Eitzinger
0754ba5292 Port configuration to ccConfig scheme 
Decentralize config validation
Modularize configuration handling
 2025-07-07 13:09:12 +02:00
Jan Eitzinger
639e1b9c6d Port to cc-lib. Extend legal header. 2025-06-30 12:06:35 +02:00
Jan Eitzinger
f06b5f8fc0 Refactor 2025-05-16 17:37:36 +02:00
brinkcoder
61f0521072 fix: correct logging variable from err to ipErr in AuthApi 2025-04-25 22:37:16 +02:00
Christoph Kluge
1755a4a7df remove separate userapiallowedips config and check 2025-04-14 11:58:42 +02:00
Christoph Kluge
fb6a4c3b87 review and move api endpoints secured check 2025-04-09 16:00:27 +02:00
exterr2f
7a61bae471 clarify error message for blocked user 2025-02-17 09:17:27 +01:00
exterr2f
e1b992526e Improve rate limiting to combination of IP and username 2025-02-14 20:20:42 +01:00
exterr2f
b6b37ee68b Add Rate Limiting based on IP and username 2025-02-14 12:41:28 +01:00
exterr2f
43cb1f1bff Fix SessionMaxAge condition to correctly apply valid values 2025-02-14 11:44:46 +01:00
Christoph Kluge
e2efe71b33 Merge branch 'dev' of https://github.com/ClusterCockpit/cc-backend into dev 2024-11-28 15:18:14 +01:00
Christoph Kluge
2aef6ed9c0 fix: oversight error on redirect target 2024-11-28 15:18:07 +01:00
Jan Eitzinger
01b1136316 Fix Cookie settings, upgrade packages 2024-11-28 14:58:33 +01:00
Christoph Kluge
38ce40ae7d feat: redirect to requested page after login, solves #281 2024-11-26 16:21:16 +01:00
Christoph Kluge
01102cb9b0 feat: add updateUserOnLogin config option for oidc, jwt 2024-10-23 16:17:47 +02:00
Christoph Kluge
1b5f4bff2c feat: SyncUserOnLogin now updates name of token logged user 2024-09-09 10:32:26 +02:00
Jan Eitzinger
801607fc16 Refactor main 
Convert components to Singletons
Restructure main package
Reduce dependencies
 2024-07-16 12:08:10 +02:00
Christoph Kluge
3afe40083d rename api userconfig to frontend, return json on api auth error 2024-07-05 11:48:06 +02:00
Christoph Kluge
1072d7b449 Improve auth handling of rest apis used in frontend for compatibility 2024-07-04 11:16:45 +02:00
Christoph Kluge
61eebc9fbd Rework initial commit 
- moved frontend configuration api to new subrouter for compatibility
 2024-07-03 17:24:26 +02:00
Jan Eitzinger
fb8bbea99d Remove year in copyright notice 2024-04-11 23:04:30 +02:00
Jan Eitzinger
6828c97415 Add central function to persist users on Login 2024-03-28 14:22:23 +01:00