summaryrefslogtreecommitdiff
path: root/lib/web/auth/oauth2/index.js (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Fix crash when OAuth2 config parameters are missingDavid Mehren2020-11-301-12/+19
| | | | | | | | | | If the optional config options `config.oauth2.userProfileIdAttr` or `config.oauth2.rolesClaim` were not set, `String.split` was called on `undefined`, triggering a crash. This commit adds handling of these cases and improves error logging in `checkAuthorization`. Fixes #608 Signed-off-by: David Mehren <git@herrmehren.de>
* Add oauth2 authorizationJoachim Mathes2020-11-251-1/+22
| | | | Signed-off-by: Joachim Mathes <joachim_mathes@web.de>
* Generic OAuth2: Set state: trueDexter Chua2020-10-221-1/+2
| | | | | | | | | | The OAuth2 specification RECOMMENDS setting the state to protect against CSRF attacks. Some OAuth2 providers (e.g. ORY Hydra) refuse to authenticate without the state set. This is a cherry-pick of 852868419dc03d5dec79e75a3d7692ab670c927f. Signed-off-by: haslersn <sebastian.hasler@gmx.net>
* Backport of #278 for 1.6.1Victor Berger2020-06-201-1/+2
| | | | | | | This is a backport of #278 with the default value of `scope` changed to `undefined`. This is thus a fully backward-compatible change. Signed-off-by: Victor Berger <victor.berger@m4x.org>
* Removing returnTo setting from referer in all other authentication sourcesRalph Krimmel2019-11-281-2/+1
| | | | Signed-off-by: Ralph Krimmel <rkrimme1@gwdg.de>
* Fix eslint warningsSheogorath2019-05-311-1/+1
| | | | | | | | | | | Since we are about to release it's time to finally fix our linting. This patch basically runs eslint --fix and does some further manual fixes. Also it sets up eslint to fail on every warning on order to make warnings visable in the CI process. There should no functional change be introduced. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
* Fix typoCloudYu2018-11-271-2/+2
| | | | Signed-off-by: CloudYu <cloudyu322@gmail.com>
* InternalOAuthError is not part of passport, but of passport-oauth2Claudius Coenen2018-11-141-4/+4
| | | | | | | This fixes part of #1056: an error while obtaining the profile would have `502`-crashed the server. Signed-off-by: Claudius Coenen <opensource@amenthes.de>
* Add support for generic OAuth2 providersPedro Ferreira2018-03-261-0/+106
Signed-off-by: Pedro Ferreira <pedro.ferreira@cern.ch>