ClusterCockpit/cc-backend
1
0
Fork 0
mirror of https://github.com/ClusterCockpit/cc-backend synced 2026-06-18 01:17:29 +02:00
Code Issues Packages Releases Activity
2,819 Commits 4 Branches 18 Tags
83d04dff179edd37a3440606b0f7c4f3a135a82b
Commit Graph

38 Commits

Author SHA1 Message Date
Jan Eitzinger
83d04dff17 feat(auth): replace .env/godotenv secret handling with config-based secrets 
Secrets (JWT keys, LDAP sync password, OIDC client id/secret, cross-login
keys) are now configured directly in config.json under the auth section
where they are used. Each secret can still be supplied via its existing
environment variable, which takes precedence over the config value.

The godotenv dependency, the .env file, configs/env-template.txt and the
loadEnvironment() bootstrap step are removed. -init now writes the demo
JWT keys into config.json instead of a .env file.

Closes #283

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Entire-Checkpoint: 3a7cb814c53f
 2026-06-17 12:28:17 +02:00
Jan Eitzinger
51517f8031 Reduce insert pressure in db. Increase sqlite timeout value 
Entire-Checkpoint: a1e2931d4deb
 2026-03-16 11:17:47 +01:00
Jan Eitzinger
1980ef5f43 Renaming due to linter complaints 2026-02-09 09:17:01 +01:00
Jan Eitzinger
fd9b76c6a7 Security hardening of ldap and oicd auth implementations 2026-02-09 09:12:06 +01:00
Jan Eitzinger
1d4c79c821 Unify JSON attribute naming ot use kebab style case. Cleanup configuration. 2026-01-20 09:47:13 +01:00
Jan Eitzinger
8576ae458d Switch to cc-lib v2 2025-12-24 09:24:18 +01:00
Roland Pabel
443176a0d1 return directly on error 2025-11-20 15:09:53 +01:00
Jan Eitzinger
4fc78bc382 Refactor variable namings and doc comments 2025-09-27 09:27:36 +02:00
Jan Eitzinger
0754ba5292 Port configuration to ccConfig scheme 
Decentralize config validation
Modularize configuration handling
 2025-07-07 13:09:12 +02:00
Jan Eitzinger
639e1b9c6d Port to cc-lib. Extend legal header. 2025-06-30 12:06:35 +02:00
Jan Eitzinger
801607fc16 Refactor main 
Convert components to Singletons
Restructure main package
Reduce dependencies
 2024-07-16 12:08:10 +02:00
Jan Eitzinger
fb8bbea99d Remove year in copyright notice 2024-04-11 23:04:30 +02:00
Jan Eitzinger
e92e727279 Extend oidc auth provider 2024-03-13 17:09:36 +01:00
Pay Giesselmann
fd94d30a8e make ldap username attribute configurable 2023-08-29 09:30:57 +02:00
Jan Eitzinger
ebcae32e23 Update docs and cleanup 2023-08-18 15:56:11 +02:00
Christoph Kluge
734e818b19 Merge branch '189-refactor-authentication-module' of https://github.com/ClusterCockpit/cc-backend into 189-refactor-authentication-module 2023-08-18 11:17:33 +02:00
Christoph Kluge
57bda63506 Cleanup some error strings 2023-08-18 11:17:31 +02:00
Jan Eitzinger
32b0c8bdd7 Refactor and cleanup Auth configuration 2023-08-18 10:43:06 +02:00
Jan Eitzinger
d51be5c308 Formatting and minor fixes 2023-08-18 08:49:25 +02:00
Jan Eitzinger
29552fadc3 Cleanup SyncOnLogin Handling 2023-08-17 14:02:04 +02:00
Jan Eitzinger
15231bc683 Cleanup and adapt to new structure 2023-08-17 12:34:30 +02:00
Jan Eitzinger
87ce4f63d4 Refactor auth module 
Separate parts
Add user repository
Add user schema
 2023-08-17 10:29:00 +02:00
Jan Eitzinger
4f6d1fec68 Fix errors in ldap auth 2023-08-16 09:19:41 +02:00
Jan Eitzinger
4a2afc7a5a Add LDAPSyncOnLogin option 
Cleanup
Extend docs
Remove obsolete Expiration attribute
 2023-08-14 12:40:21 +02:00
Jan Eitzinger
b8273a9b02 refactor auth module 
Restructure module
Separate JWT auth variants
Cleanup code
Fixes #189
 2023-08-11 10:00:23 +02:00
Jan Eitzinger
f0685919fd Streamline auth error handling 2023-06-15 12:00:45 +02:00
Christoph Kluge
f37e7c26f6 Rework roles as enum, change AuthSource to enum 2023-03-06 11:44:38 +01:00
Jan Eitzinger
033598a656 Remove loglevel notice 2023-02-15 11:50:51 +01:00
Christoph Kluge
a885e69125 Adapt loglevel for logs, shorten strings, fix formats, streamline 
- Switched to Warn for most errors, reduces bloat, improves log control
 2023-02-01 11:58:27 +01:00
Christoph Kluge
b77bd078e5 Add log messages to error events w/o log message, primaryly error level 
- "log spam" to be controlled via loglevel flag on startup
 2023-01-31 18:28:44 +01:00
Christoph Kluge
79a949b55e Rework pkg/log, add 'loglevel' and 'logdate' flags, streamline 
- removes some previously added manual location strings: now handled by pkg/log depending on loglevel
- kept manual string locations on fmt print functions
- add 'notice' and 'critical' loglevels
- add 'Panic' and 'Panicf' functions to log panics
- adresses issue #26
 2023-01-23 18:48:06 +01:00
Christoph Kluge
24a4244f19 add more information to existing errors logs and panics 
- '$ROOT/$FILE' for better localization in the code
- add text where none was given
- fix unnecessary sprintf nesting in influxv2 and prometheus metricrepo logging
 2023-01-19 16:59:14 +01:00
Jan Eitzinger
8856f26fb0 Reformat and Refactor packages. Rebuild GraphQL. 2022-09-07 12:24:45 +02:00
Jan Eitzinger
26df1e7c14 Add copyright and license header. Update license year 2022-07-29 06:29:21 +02:00
Lou Knauer
dc4c7f0033 bugfix: LDAP is optional 2022-07-25 17:27:42 +02:00
Lou Knauer
04574db32f Integrate new auth interface 2022-07-07 14:08:37 +02:00
Lou Knauer
65f7e5e6c8 load config.json in current directory by default (issue #17) 2022-07-05 10:23:26 +02:00
Jan Eitzinger
81819db436 Refactor directory structure 2022-06-21 17:52:36 +02:00