1
0
mirror of https://github.com/node-red/node-red.git synced 2023-10-10 13:36:53 +02:00
Commit Graph

22 Commits

Author SHA1 Message Date
Nick O'Leary
b8435efc97
Allow adminAuth to auto-login users when using passport strategy
Fixes #3467
2022-04-04 21:23:39 +01:00
Nick O'Leary
ea20342d76
Handle non-error responses from token function 2022-01-12 13:48:06 +00:00
Nick O'Leary
7732d52583
Initialize passport when only adminAuth.tokens is set
Fixes #3341
2022-01-12 13:27:01 +00:00
Nick O'Leary
96840ede56
Include full user object on login audit events 2021-11-22 19:58:48 +00:00
Nick O'Leary
e3853ae402
Improve error reporting with oauth login strategies 2021-09-20 11:48:51 +01:00
Dominik Schmidt
630d2ca926 Give passport verfiy callback wrapper the same arity as the original callback passed in via options 2021-08-23 15:57:44 +02:00
Nick O'Leary
13406e76de
Ensure theme login image is passed through to api response
Fixes #2929
2021-04-12 10:06:35 +01:00
Nick O'Leary
70b6674f44
Replace Math.random with crypto.getBytes for session tokens 2020-09-11 14:09:54 +01:00
Nick O'Leary
1df2f5e96a
Allow Comms websocket auth to be done via token header
Fixes #2642
2020-07-09 19:07:51 +01:00
Nick O'Leary
05fc3c5eca
Merge branch 'master' into dev 2020-03-30 23:41:33 +01:00
KAZUHIRO ITO
83942c2551 Fix plugin only receives the actual token 2020-02-27 19:55:21 +09:00
KAZUHIRO ITO
458d794f52 Fix tokensStrategy order 2020-02-27 19:41:59 +09:00
KAZUHIRO ITO
bba6855872 Add admin api authentication function 2020-02-26 12:59:40 +09:00
Nick O'Leary
22de8855c1
Handle httpAdminRoot missing ending slash with login strategy
Fixes #2473
2020-02-24 21:08:29 +00:00
Nick O'Leary
8bb7b2e88b
Ensure session expiry timeout doesn't exceed limit 2019-07-06 16:34:48 +01:00
Nick O'Leary
419f26db87
Fix use of custom auth strategy plugins 2019-02-12 10:45:38 +00:00
Nick O'Leary
e0bb03a53f
More api documentation updates 2019-01-28 14:40:42 +00:00
Nick O'Leary
a1f135bd66
Allow oauth strategy callback method to be customised
Closes #1998

Method can be set via: `adminAuth.strategy.options.callbackMethod`

Can be either GET (default) or POST.
2018-12-13 13:43:57 +00:00
Nick O'Leary
8c561e92c8
Actively expire login sesssions and notify user 2018-12-11 11:32:12 +00:00
Nick O'Leary
dabb2790c9
Fix up merge of auth token handling 2018-10-22 16:21:02 +01:00
Nick O'Leary
dc7e48dc53
Merge branch 'dev' into pr_1789 2018-10-22 10:46:47 +01:00
Nick O'Leary
e57d8ba0ef
pull out editor-client and editor-api 2018-08-17 22:10:54 +01:00