ClusterCockpit/cc-backend
1
0
Fork 0
mirror of https://github.com/ClusterCockpit/cc-backend synced 2026-06-17 17:07:29 +02:00
Code Issues Packages Releases Activity
2,821 Commits 5 Branches 18 Tags
9d1efcd55d2f7641d02863f9f073ab0e4188a582
Commit Graph

22 Commits

Author SHA1 Message Date
Jan Eitzinger
83d04dff17 feat(auth): replace .env/godotenv secret handling with config-based secrets 
Secrets (JWT keys, LDAP sync password, OIDC client id/secret, cross-login
keys) are now configured directly in config.json under the auth section
where they are used. Each secret can still be supplied via its existing
environment variable, which takes precedence over the config value.

The godotenv dependency, the .env file, configs/env-template.txt and the
loadEnvironment() bootstrap step are removed. -init now writes the demo
JWT keys into config.json instead of a .env file.

Closes #283

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Entire-Checkpoint: 3a7cb814c53f
 2026-06-17 12:28:17 +02:00
Jan Eitzinger
6f7e262f3f Fix issues after security audit 
Entire-Checkpoint: bc18358a9343
 2026-06-04 18:33:30 +02:00
Jan Eitzinger
2ebab1e2e2 Reformat with gofumpt 2026-01-13 09:50:57 +01:00
Jan Eitzinger
8576ae458d Switch to cc-lib v2 2025-12-24 09:24:18 +01:00
Jan Eitzinger
340efd7926 Refactor auth package 
Fix security issues
Remove redundant code
Add documentation
Add units tests
 2025-11-19 16:54:01 +01:00
Jan Eitzinger
4fc78bc382 Refactor variable namings and doc comments 2025-09-27 09:27:36 +02:00
Jan Eitzinger
0754ba5292 Port configuration to ccConfig scheme 
Decentralize config validation
Modularize configuration handling
 2025-07-07 13:09:12 +02:00
Jan Eitzinger
639e1b9c6d Port to cc-lib. Extend legal header. 2025-06-30 12:06:35 +02:00
Christoph Kluge
01102cb9b0 feat: add updateUserOnLogin config option for oidc, jwt 2024-10-23 16:17:47 +02:00
Jan Eitzinger
fb8bbea99d Remove year in copyright notice 2024-04-11 23:04:30 +02:00
Jan Eitzinger
6828c97415 Add central function to persist users on Login 2024-03-28 14:22:23 +01:00
Jan Eitzinger
1e5f2944cf Upgrade dependencies. Port to jwt-auth v5. 2024-03-21 22:02:59 +01:00
Jan Eitzinger
bb1c8cc25d fix: Move name extract from token in else branch 2023-09-08 12:11:49 +02:00
Jan Eitzinger
4b06fa788d fix: Fix buggy logic and simplify code if ValidateUser enabled 2023-09-08 11:50:28 +02:00
Jan Eitzinger
32b0c8bdd7 Refactor and cleanup Auth configuration 2023-08-18 10:43:06 +02:00
Jan Eitzinger
d51be5c308 Formatting and minor fixes 2023-08-18 08:49:25 +02:00
Jan Eitzinger
29552fadc3 Cleanup SyncOnLogin Handling 2023-08-17 14:02:04 +02:00
Jan Eitzinger
15231bc683 Cleanup and adapt to new structure 2023-08-17 12:34:30 +02:00
Jan Eitzinger
87ce4f63d4 Refactor auth module 
Separate parts
Add user repository
Add user schema
 2023-08-17 10:29:00 +02:00
Jan Eitzinger
4a2afc7a5a Add LDAPSyncOnLogin option 
Cleanup
Extend docs
Remove obsolete Expiration attribute
 2023-08-14 12:40:21 +02:00
Jan Eitzinger
19d645f65c Readd URL token and cleanup 
Fix session values.
 2023-08-12 09:02:41 +02:00
Jan Eitzinger
b8273a9b02 refactor auth module 
Restructure module
Separate JWT auth variants
Cleanup code
Fixes #189
 2023-08-11 10:00:23 +02:00