synced/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2025-07-09 11:45:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,035 Commits 363 Branches 234 Tags
52ecd35c8f60ade9c41777d65add8239d149fdb8
Commit Graph

14 Commits

Author SHA1 Message Date
Steven Masley
b0a16150a3 chore: Implement standard rbac.Subject to be reused everywhere (#5881) 
* chore: Implement standard rbac.Subject to be reused everywhere

An rbac subject is created in multiple spots because of the way we
expand roles, scopes, etc. This difference in use creates a list
of arguments which is unwieldy.

Use of the expander interface lets us conform to a single subject
in every case
 2023-01-26 14:42:54 -06:00
Jon Ayers
3120c94c22 feat: add template RBAC/groups (#4235) 2022-10-10 15:37:06 -05:00
Dean Sheather
6deef06ad2 feat: secure and cross-domain subdomain-based proxying (#4136) 
Co-authored-by: Kyle Carberry <kyle@carberry.com>
 2022-09-22 22:30:32 +00:00
Dean Sheather
29d804e692 feat: add API key scopes and application_connect scope (#4067) 2022-09-19 17:39:02 +00:00
Steven Masley
9b5ee8f267 feat: Implement (but not enforce) CSRF for FE requests (#3786) 
Future work is to enforce CSRF

Co-authored-by: Presley Pizzo <presley@coder.com>
 2022-09-13 15:26:46 -04:00
Kyle Carberry
b0fe9bcdd1 chore: Upgrade to Go 1.19 (#3617) 
This is required as part of #3505.
 2022-08-21 22:32:53 +00:00
Jon Ayers
c3eea98db0 fix: use unique ID for linked accounts (#3441) 
- move OAuth-related fields off of api_keys into a new user_links table
- restrict users to single form of login
- process updates to user email/usernames for OIDC
- added a login_type column to users
 2022-08-17 18:00:53 -05:00
Steven Masley
01dd35f1ba chore: Rename 'admin' to 'owner' (#3498) 
Co-authored-by: Colin Adler <colin1adler@gmail.com>
 2022-08-15 14:40:19 -05:00
Jon Ayers
7e9819f2a8 ref: move httpapi.Reponse into codersdk (#2954) 2022-07-12 19:15:02 -05:00
Kyle Carberry
2c89e07e12 fix: Redirect to login when unauthenticated and requesting a workspace app (#2903) 
Fixes #2884.
 2022-07-11 13:46:01 -05:00
Steven Masley
cc87a0cf6b feat: Implied 'member' roles for site and organization (#1917) 
* feat: Member roles are implied and never exlpicitly added
* Rename "GetAllUserRoles" to "GetAuthorizationRoles"
* feat: Add migration to remove implied roles
* rename user auth role middleware
 2022-06-01 09:07:50 -05:00
Steven Masley
26a2a169df fix: Suspended users cannot authenticate (#1849) 
* fix: Suspended users cannot authenticate

- Merge roles and apikey extract httpmw
- Add member account to make dev
- feat: UI Shows suspended error logging into suspended account
- change 'active' route to 'activate'
 2022-05-31 08:06:42 -05:00
Garrett Delfosse
0706c60445 chore: Add watch workspace endpoint (#1493) 2022-05-18 16:16:26 -05:00
Steven Masley
d0293e4d33 feat: Implement list roles & enforce authorize examples (#1273) 2022-05-03 16:10:19 -05:00