node-red

mirror of https://github.com/node-red/node-red.git synced 2025-03-01 10:36:34 +00:00

Author	SHA1	Message	Date
Nick O'Leary	ea747711c3	Allow auth cookie name to be customised	2024-06-28 10:24:51 +01:00
Nick O'Leary	51edb1ef19	Fix bcrypt.compare usage	2024-05-31 15:31:41 +01:00
Nick O'Leary	2ad3af1864	Replace bcrypt with @node-rs/bcrypt	2024-05-31 15:16:32 +01:00
Nick O'Leary	7bd61f2c96	Merge pull request #4718 from node-red/4717-add-httpAdminCookieOptions Add httpAdminCookieOptions	2024-05-28 10:15:46 +01:00
Rotzbua	9b86874c2d	chore: migrate deprecated `util.isArray` Deprecated: Use Array.isArray() instead. Source: https://nodejs.org/docs/latest-v18.x/api/util.html#utilisarrayobject	2024-05-25 22:55:09 +02:00
Nick O'Leary	805ed593fb	Apply httpAdminCookieOptions to session cookie	2024-05-23 17:01:48 +01:00
Nick O'Leary	b27483de9c	Avoid login loops when autoLogin enabled but login fails Fixes #4363	2024-05-08 15:09:51 +01:00
giscafer	4643f5e8cc	chore: remove never use import code	2024-02-25 22:44:01 +08:00
Nick O'Leary	d802ce1484	Merge pull request #3460 from ArFe/feature-add-store-external-token-when-authenticate Feature add: Store external token when authenticate if provided	2022-04-22 09:51:20 +01:00
Nick O'Leary	14c23051ee	Merge pull request #3388 from mw75/strategy_in_verify OAuth/OpenID logout with Keycloak - Forum 57492	2022-04-20 10:24:58 +01:00
Nick O'Leary	b8435efc97	Allow adminAuth to auto-login users when using passport strategy Fixes #3467	2022-04-04 21:23:39 +01:00
Ariel Ferreira	450888f542	check if user contains token and use it instead of generating a new Token	2022-02-26 16:35:46 -05:00
Mario Wolff	5a9d858604	OAuth/OpenID logout with Keycloak - Forum 57492	2022-01-31 08:03:34 +01:00
Nick O'Leary	ea20342d76	Handle non-error responses from token function	2022-01-12 13:48:06 +00:00
Nick O'Leary	7732d52583	Initialize passport when only adminAuth.tokens is set Fixes #3341	2022-01-12 13:27:01 +00:00
Nick O'Leary	96840ede56	Include full user object on login audit events	2021-11-22 19:58:48 +00:00
Nick O'Leary	e3853ae402	Improve error reporting with oauth login strategies	2021-09-20 11:48:51 +01:00
Dominik Schmidt	630d2ca926	Give passport verfiy callback wrapper the same arity as the original callback passed in via options	2021-08-23 15:57:44 +02:00
Nick O'Leary	13406e76de	Ensure theme login image is passed through to api response Fixes #2929	2021-04-12 10:06:35 +01:00
Nick O'Leary	70b6674f44	Replace Math.random with crypto.getBytes for session tokens	2020-09-11 14:09:54 +01:00
Nick O'Leary	1df2f5e96a	Allow Comms websocket auth to be done via token header Fixes #2642	2020-07-09 19:07:51 +01:00
Nick O'Leary	05fc3c5eca	Merge branch 'master' into dev	2020-03-30 23:41:33 +01:00
KAZUHIRO ITO	83942c2551	Fix plugin only receives the actual token	2020-02-27 19:55:21 +09:00
KAZUHIRO ITO	458d794f52	Fix tokensStrategy order	2020-02-27 19:41:59 +09:00
KAZUHIRO ITO	bba6855872	Add admin api authentication function	2020-02-26 12:59:40 +09:00
Nick O'Leary	22de8855c1	Handle httpAdminRoot missing ending slash with login strategy Fixes #2473	2020-02-24 21:08:29 +00:00
Nick O'Leary	8bb7b2e88b	Ensure session expiry timeout doesn't exceed limit	2019-07-06 16:34:48 +01:00
Nick O'Leary	419f26db87	Fix use of custom auth strategy plugins	2019-02-12 10:45:38 +00:00
Nick O'Leary	e0bb03a53f	More api documentation updates	2019-01-28 14:40:42 +00:00
Nick O'Leary	a1f135bd66	Allow oauth strategy callback method to be customised Closes #1998 Method can be set via: `adminAuth.strategy.options.callbackMethod` Can be either GET (default) or POST.	2018-12-13 13:43:57 +00:00
Nick O'Leary	8c561e92c8	Actively expire login sesssions and notify user	2018-12-11 11:32:12 +00:00
Nick O'Leary	dabb2790c9	Fix up merge of auth token handling	2018-10-22 16:21:02 +01:00
Nick O'Leary	dc7e48dc53	Merge branch 'dev' into pr_1789	2018-10-22 10:46:47 +01:00
Nick O'Leary	e57d8ba0ef	pull out editor-client and editor-api	2018-08-17 22:10:54 +01:00

34 Commits