Huiwen
9719e619be
[IdP] add user_id claim and allow to customize OIDC subject via FF ( #19455 )
...
* [papi] add user_id field to idp token
* [idp] allow to customize claim keys
* fixup update FF
* Update splitor and add more unit tests
2024-02-22 19:03:03 +02:00
Milan Pavlik
fcb8c5f79d
[papi] Extract JWT cookie when extracting creds ( #17875 )
...
* [papi] Extract JWT cookie when extracting creds
* fix
* fix
* fix
* Fix
* fix
* Update components/public-api-server/pkg/auth/middleware.go
Co-authored-by: Gero Posmyk-Leinemann <32448529+geropl@users.noreply.github.com>
---------
Co-authored-by: Gero Posmyk-Leinemann <32448529+geropl@users.noreply.github.com>
2023-06-14 15:37:04 +08:00
Pudong
4aede056ab
[IDP] set email_verified to false if user is not org-owned user ( #17896 )
...
* set email_verified to false if user is not org-owned user
* update test
2023-06-12 18:46:03 +08:00
Christian Weichel
36905ac004
[idp] Add email to ID token ( #17678 )
...
* [idp] Add email to ID token
* [idp] Claim that the email is verified
which is a valid claim because it's verified by the original IDP,
and this is not the user-editable value.
* Incorporate review feedback
2023-05-19 22:07:53 +08:00
Milan Pavlik
7b095abbbe
[public-api] Fix GetIDToken test ( #16714 )
2023-03-07 20:55:05 +01:00
Christian Weichel
da4cafd5e5
Gitpod OIDC Identity Provider ( #16482 )
...
* Prototype IDP provider
* [gp cli] Add IDP commands
* [public-api] Remove zitadel based IDP implementation
* [gitpod-cli] Add IDP support for Vault
* [idp] Remove per-org IDP
* [idp] Add key cache and random key IDs
* [idp] Defer GetIDToken authorisation to server
* [idp] Add Redis public key cache
* [gitpod-cli] Hide IDP commands
* [idp] Add key ID to JWT
* [idp] Add unit tests
* [idp] Adress review comments
* [public-api-server] Use logging middleware globally
* [public-api-server] Simplify service registration
* [idp] Add Redis outage resilience
2023-03-03 17:11:01 +01:00
