| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2022-12-12 | simplify error handling | Aleksandar Pesic | |
| fixes #6 Signed-off-by: Aleksandar Pesic <peske.nis@gmail.com> | |||
| 2022-12-08 | OAuth: Comment fixes | jwijenbergh | |
| Minor changes from PR #9 Co-authored-by: fkooman <fkooman@tuxed.net> | |||
| 2022-11-28 | OAuth: Define ReadHeaderTimeout | jwijenbergh | |
| 2022-11-28 | OAuth Listener: Explicitly specify localhost | jwijenbergh | |
| 2022-11-28 | Formatting: Run golines | jwijenbergh | |
| 2022-11-28 | Formatting: Run gofumpt -w | jwijenbergh | |
| 2022-11-28 | Refactor: Fix revive linter errors by deleting redundant prefixes | jwijenbergh | |
| 2022-11-28 | OAuth: Refactor Token getting and do not save them in the config | jwijenbergh | |
| This commit refactors getting the tokens into receiver methods. This means that functions do not have to call the cryptic "EnsureTokens" method. The receiver getter then already verifier whether or not the tokens could be obtained (and refreshes too). The downside is that some things are now private, so testing for invalid tokens needs to be done somewhere else. This needs another patch such that clients can save the tokens themselves using a keyring. | |||
| 2022-11-28 | Lint: Run godot fix | jwijenbergh | |
| Full command: golangci-lint run --disable-all -E godot --fix | |||
| 2022-11-28 | Refactor: Remove most get prefixes for receiver functions | jwijenbergh | |
| 2022-11-28 | Document: Add comments for most functions and packages | jwijenbergh | |
| Errors and test files still need to be done. Also some getters are changed by removing the 'get' prefix | |||
| 2022-11-24 | Style: Use stylecheck and fix errors | jwijenbergh | |
| 2022-11-24 | Util: Get rid of current time helper | jwijenbergh | |
| Fixes #5 | |||
| 2022-10-19 | OAuth + Server: Fix ISS for secure internet | jwijenbergh | |
| The wrong base url was used. Use the one from the home server NOT the current location | |||
| 2022-10-19 | Refactor: Make errors use the parent's error level | jwijenbergh | |
| - All wrapped errors have to be created with types.NewWrappedError to inherit the error level from the parent - Or types.NewWrappedErrorLevel can be used which means a custom error level is given. For example this is done with cancelling OAuth - Client public errors are forwarded with handleError that also logs it with the error's level | |||
| 2022-10-18 | OAuth: Do not use url.Values Has(), only use Get() | jwijenbergh | |
| Has() was only added in Go 1.17 | |||
| 2022-10-17 | OAuth: Use values Has and Get functions and check state after ISS | jwijenbergh | |
| 2022-10-17 | OAuth: Implement Authorization Server Issuer Identification (ISS) | jwijenbergh | |
| - This patch implements ISS checking according to RFC 9207 https://datatracker.ietf.org/doc/html/rfc9207 - This tries to prevent so called "mix-up" attacks where the client is fooled into authorizing with an honest AS through a malicious entity | |||
| 2022-10-13 | OAuth: Add a TODO note about ISS | jwijenbergh | |
| 2022-10-13 | OAuth: Wrap template errors | jwijenbergh | |
| 2022-10-13 | OAuth: Return HTML response on authorized | jwijenbergh | |
| HTML Template adapted from: https://github.com/eduvpn/apple/blob/5b18f834be7aebfed00570ae0c2f7bcbaf1c69cc/EduVPN/Helpers/Mac/OAuthRedirectHTTPHandler.m#L25 | |||
| 2022-10-13 | Format: Run gofumpt | jwijenbergh | |
| 2022-10-06 | OAuth: Use an available port instead of the hard-coded 8000 | jwijenbergh | |
| 2022-09-26 | OAuth: Verifier and State docs improvement | jwijenbergh | |
| 2022-09-26 | OAuth: Add verifier tests | jwijenbergh | |
| 2022-09-26 | Refactor: Errors into custom export types and expose types | jwijenbergh | |
| 2022-09-20 | Module: Move to eduvpn/eduvpn-common | jwijenbergh | |
| 2022-09-20 | Golang-ci-lint: Fixes | jwijenbergh | |
| 2022-09-20 | Go vet: Fixes | jwijenbergh | |
| 2022-09-14 | Refactor: Return without json | jwijenbergh | |
| 2022-09-08 | OAuth: Separate login functions to get rid of callback | jwijenbergh | |
| 2022-09-07 | Refactor: Remove the usage of the FSM in other internal packages | jwijenbergh | |
| This removes the FSM from being imported and thus used in other internal packages such as `oauth` or `server`. The benefit is that it becomes much easier now to reason about the FSM as it's only used in the public package. Additionally, we do not have to re-initialize the server and the oauth structure with the FSM pointer. | |||
| 2022-08-23 | Formatting: Run golines | jwijenbergh | |
| 2022-08-09 | Formatting: Run gofumpt | jwijenbergh | |
| 2022-08-09 | Refactor: Cleanup time calculations and usage | jwijenbergh | |
| 2022-07-20 | Refactor: Do not log in internal packages | jwijenbergh | |
| The reason behind this is that we then do not have to pass a lot to each function. Logging inside internal packages is less useful as we want to let them return errors and only log in the 'public' facing API or let the client decide | |||
| 2022-07-11 | OAuth: Make OAuth cancel error less confusing | jwijenbergh | |
| 2022-07-05 | Refactor: Handling of different servers and identifiers | jwijenbergh | |
| - Uses OrgID for Secure Internet and gets the data from discovery - Uses URL for Institute/Custom and gets the data from discovery - Implements SKIP WAYF as we now have the needed data - Implements an initial change location with a default location (NL right now) | |||
| 2022-06-20 | Refactor: Errors to have one custom type that is to be wrapped | jwijenbergh | |
| - For this an `internal/types` package is created with a custom error type - This custom error type can give back the cause and traceback of an error | |||
| 2022-09-20 | Server: Implement function for checking renewal button visibility | jwijenbergh | |
 |
index : eduvpn-common | |
| Fork of codeberg.org/eduVPN/eduvpn-common for <b>reasons</b> | herk |
| summaryrefslogtreecommitdiff |