admin/kubesphere
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,250 Commits 13 Branches 51 Tags
master
Commit Graph

67 Commits

Author SHA1 Message Date
hongming
4d88ed2ca1 update dependencies (#6519) 
Signed-off-by: hongming <coder.scala@gmail.com>
 2025-05-29 15:51:37 +08:00
hongming
0d852e8276 chore: update copyright headers (#6496) 
Signed-off-by: hongming <coder.scala@gmail.com>
 2025-04-30 15:53:51 +08:00
smartcat999
f77b0afd85 fix ldaps protocol (#6384) 
fix: ldap default protocol (#2156)

Signed-off-by: peng wu <2030047311@qq.com>
 2025-03-03 16:03:40 +08:00
hongming
018f6045ee feat(auth): support multiple identity provider associations (#6299) 
Signed-off-by: hongming <coder.scala@gmail.com>
 2025-02-28 16:48:36 +08:00
smartcat999
f390d46da2 Fix OIDC logout redirect uri (#6348) 
* fix: oidc logout redirect uri

Signed-off-by: peng wu <2030047311@qq.com>

* fix: oidc unittest

Signed-off-by: peng wu <2030047311@qq.com>

---------

Signed-off-by: peng wu <2030047311@qq.com>
 2025-02-05 11:11:09 +08:00
smartcat999
68c13b78ee fix: support LDAPS && STARTTLS (#6320) 
Signed-off-by: peng wu <2030047311@qq.com>
 2024-12-24 10:39:08 +08:00
hongming
fa7c1340e3 Replace vulnerable dependency gopkg.in/square/go-jose.v2 (#6290) 
Signed-off-by: hongming <coder.scala@gmail.com>
 2024-11-26 11:13:36 +08:00
hongming
cfebd96a1f update dependencies (#6267) 
Signed-off-by: hongming <coder.scala@gmail.com>
 2024-11-06 10:27:06 +08:00
KubeSphere CI Bot
447a51f08b feat: kubesphere 4.0 (#6115) 
* feat: kubesphere 4.0

Signed-off-by: ci-bot <ci-bot@kubesphere.io>

* feat: kubesphere 4.0

Signed-off-by: ci-bot <ci-bot@kubesphere.io>

---------

Signed-off-by: ci-bot <ci-bot@kubesphere.io>
Co-authored-by: ks-ci-bot <ks-ci-bot@example.com>
Co-authored-by: joyceliu <joyceliu@yunify.com>
 2024-09-06 11:05:52 +08:00
littlejian
fde9d2e7cd feat: support gitlab identity provider (#5836) 2023-07-13 10:44:59 +08:00
Wenhao Zhou
b1466e572b fix: clear all oauth Providers when reloading configuration (#5797) 
* fix: clear all auth Providers when reloading configuration

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

* fix:identity-provider test

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

---------

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>
 2023-06-29 19:09:44 +08:00
Wenhao Zhou
62427cda32 Move struct DynamicOptions to package pkg/server (#5625) 
* move struct DynamicOptions to package pkg/server/dynamic_options.go

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

* update test types

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

---------

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>
 2023-04-07 11:33:36 +08:00
Wenhao Zhou
dc28a0917a Add api for identity provider login (#5534) 
* add api for ldap login

* update ldap login to identity provider login for more flexible login type

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

* update PasswordAuthenticate

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

* add test case

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

* update api path

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

* make goimports and add annotations

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

* update func names & add annotations

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>

---------

Signed-off-by: wenhaozhou <wenhaozhou@yunify.com>
 2023-02-27 18:35:35 +08:00
Wenhao Zhou
9dad732860 Revert PR #5018 (#5548) 
Revert "[KS-OIDC] Remove special characters form sub OIDC standard claim (#5018)"

This reverts commit 45a062593f.
 2023-02-27 15:34:35 +08:00
hongming
f0221dbed9 Use golang-jwt/jwt instead of form3tech-oss/jwt-go (#5532) 2023-02-20 12:18:28 +08:00
hongming
1c49fcd57e Bump sigs.k8s.io/controller-runtime to v0.14.4 (#5507) 
* Bump sigs.k8s.io/controller-runtime to v0.14.4

* Update gofmt
 2023-02-08 14:06:15 +08:00
hongzhouzi
44167aa47a Upgrade k8s package verison (#5358) 
* upgrade k8s package version

Signed-off-by: hongzhouzi <hongzhouzi@kubesphere.io>

* Script upgrade and code formatting.

Signed-off-by: hongzhouzi <hongzhouzi@kubesphere.io>

Signed-off-by: hongzhouzi <hongzhouzi@kubesphere.io>
 2022-11-15 14:56:38 +08:00
Eng Zer Jun
d1fec72a32 refactor: move from io/ioutil to io and os packages (#5266) 
The io/ioutil package has been deprecated as of Go 1.16 [1]. This commit
replaces the existing io/ioutil functions with their new definitions in
io and os packages.

[1]: https://golang.org/doc/go1.16#ioutil
Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2022-10-18 15:47:38 +08:00
chavacava
14aa059c63 fix #5267 by renaming yaml struct tag (#5268) 
Signed-off-by: chavacava <salvadorcavadini+github@gmail.com>

Signed-off-by: chavacava <salvadorcavadini+github@gmail.com>
 2022-10-08 14:21:57 +08:00
失眠是真滴难受
1b07470611 test: add anonymous unit test (#5072) 2022-07-21 10:36:52 +08:00
hnajib
45a062593f [KS-OIDC] Remove special characters form sub OIDC standard claim (#5018) 
* [KS-OIDC] Remove special characters form sub OIDC standard claim

* [KS-OIDC] Change to base64 RawURLEncoding

* [KS-OIDC] Import encoding/base64

* [KS-OIDC] Change import

* [KS-OIDC] Damn Go

* [KS-OIDC] Damn Spaces

* [KS-OIDC] Backport to test

* [KS-OIDC] Backport to test: the other way

* [KS-OIDC] Backport to test: convert to string

* [KS-OIDC] Backport to test: Hint from @wansir

* [KS-OIDC] Backport to test: Damn Space
 2022-07-07 11:09:35 +08:00
andrew_li
f289795312 Add golangci-lint workflow (#4999) 
* fix lint workflow

* add golang lint

* close http response body
 2022-06-29 11:58:36 +08:00
hongming
f304ecdd01 Fix: deny the blocked user request 2022-05-12 12:17:41 +08:00
Xinzhao Xu
28f260e244 Add omitempty option to LoginHistoryMaximumEntries field to avoid it being set to 0 2022-03-28 17:09:13 +08:00
Xinzhao Xu
c53001c5dc Unify the omitempty configuration of YAML annotation 2022-02-23 16:41:51 +08:00
hongming
97326a89b9 add userinfo endpoint 
Signed-off-by: hongming <hongming@kubesphere.io>
 2021-09-17 18:03:32 +08:00
hongming
8c5c6a7dee support OIDC protocol 
Signed-off-by: hongming <hongming@kubesphere.io>
 2021-09-17 16:39:21 +08:00
hongming
4b5b1c64bc Refactor authenticator 
Signed-off-by: hongming <hongming@kubesphere.io>
 2021-09-17 16:39:20 +08:00
hongming
cb947ce505 Support skip information reconfirm when using external IDP 
Signed-off-by: hongming <hongming@kubesphere.io>
 2021-09-16 11:46:02 +08:00
Roland.Ma
3bfae73318 fix ks-apiserver missing interfaces 
Signed-off-by: Roland.Ma <rolandma@yunify.com>
 2021-08-16 06:58:12 +00:00
nanjofan
ad6acc5fb6 Update pkg/apiserver/authentication/identityprovider/identity_provider.go 
Co-authored-by: hongming <coder.scala@gmail.com>
 2021-08-04 13:48:06 +08:00
Yoshino
8fbfc734d2 Modify function error comments:"RegisterGenericProvider" and "GetOAuthProvider" 2021-08-03 14:48:06 +08:00
Roland.Ma
e6736a4e0e moving jwt-go from github.com/dgrijalva/jwt-go v3.2.0 to github.com/form3tech-oss/jwt-go v3.2.2 
Signed-off-by: Roland.Ma <rolandma@yunify.com>
 2021-06-08 10:11:56 +00:00
Roland.Ma
c37a11c5f9 move api to staging 
Signed-off-by: Roland.Ma <rolandma@yunify.com>
 2021-04-29 08:20:05 +00:00
KubeSphere CI Bot
e9c963c58d Merge pull request #3776 from wansir/feat-logout 
Support RP-Initiated Logout
 2021-04-20 20:17:12 +08:00
hongming
8fdd8beb08 Support RP-Initiated Logout 
Signed-off-by: hongming <talonwan@yunify.com>
 2021-04-20 15:17:40 +08:00
hongming
595f7a03e4 Fix issue with case-sensitive username 
Signed-off-by: hongming <talonwan@yunify.com>
 2021-04-20 14:18:31 +08:00
zryfish
ac275b6e98 add goimports format action (#3630) 
Signed-off-by: Jeff <jeffzhang@yunify.com>
 2021-03-30 13:44:24 +08:00
hongming
b83b3232cb remove useless log output 
Signed-off-by: hongming <talonwan@yunify.com>
 2021-03-26 11:15:45 +08:00
hongming
70a0ee40d6 limit login record entries 
Signed-off-by: hongming <talonwan@yunify.com>
 2021-03-06 14:45:11 +08:00
hongming
5f0727cf34 support CAS identity provider 
Signed-off-by: hongming <talonwan@yunify.com>
 2021-02-20 10:45:55 +08:00
hongming
ac2bdf2509 support oidc identity provider 
Signed-off-by: hongming <talonwan@yunify.com>
 2021-01-18 15:12:35 +08:00
KubeSphere CI Bot
d7607b3eaf Merge pull request #3167 from wansir/sensitive-config 
config data desensitization
 2020-12-11 10:06:45 +08:00
hongming
dfaefa5ffb improve identity provider plugin 
Signed-off-by: hongming <talonwan@yunify.com>
 2020-12-10 14:35:56 +08:00
hongming
13ede7dacc config data desensitization 
Signed-off-by: hongming <talonwan@yunify.com>
 2020-12-01 15:08:00 +08:00
hongming
00920d3d51 improve LDAP identity provider 
Signed-off-by: hongming <talonwan@yunify.com>
 2020-11-23 17:29:46 +08:00
yuswift
69a27e40aa Feat: support runnig ks-controller-manager without ldap option 
Signed-off-by: yuswift <yuswiftli@yunify.com>
 2020-11-16 12:19:07 +08:00
Roland.Ma
80f3db3d42 feat: authentication users with group's RoleBindings in API Server 
Signed-off-by: Roland.Ma <rolandma@yunify.com>
 2020-11-11 05:31:25 +00:00
luxingmin
1a39d62f63 support aliyun idaas oauth login 
Signed-off-by: luxingmin <luxingmin@hongyaa.com.cn>
 2020-09-29 11:14:23 +08:00
zryfish
93b123c1f0 add last login time for user (#2679) 
Signed-off-by: Jeff <zw0948@gmail.com>
 2020-07-28 17:26:13 +08:00