Age | Commit message (Collapse) | Author | |
---|---|---|---|
13 days | Move logging setup functions to gn_auth.__init__.py module | Frederick Muriuki Muriithi | |
To ensure that logging will always be setup correctly, move the functions into the __init__.py module and call it within the create_app(..) function as before. | |||
2024-10-09 | Update Configs: Change `OAUTH2_SCOPE` => `OAUTH2_SCOPES_SUPPORTED` | Frederick Muriuki Muriithi | |
Use the OAUTH2_SCOPES_SUPPORTED application configuration variable, that is used by the flask integration for the Authlib library to set up the supported scopes. | |||
2024-09-25 | feat: add base implementation for hooks system | John Nduli | |
2024-07-31 | Remove the `CLIENTS_SSL_PUBLIC_KEYS_DIR` configuration | Frederick Muriuki Muriithi | |
Moving forward, each client will advertise it's current JWKs at a known endpoint, and we'll use those, rather than having a configuration that requires manual update of the certificates. This will make it easier to implement key rotation on the clients too. | |||
2024-07-31 | Remove obsoleted SSL_PRIVATE_KEY configuration | Frederick Muriuki Muriithi | |
With the key rotation in place, eliminate the use of the SSL_PRIVATE_KEY configuration which pointed to a specific non-changing JWK. | |||
2024-04-25 | Make `CLIENTS_SSL_PUBLIC_KEYS_DIR` explicitly a config setting. | Frederick Muriuki Muriithi | |
2024-04-24 | Setup logging: Use gunicorn's loggers where appropriate | Frederick Muriuki Muriithi | |
If the application is run under GUnicorn, then use the gunicorn loggers otherwise, use some default development loggers. This can be extended to support other WSGI servers down the line if ever necessary. | |||
2024-04-23 | pylint: Fix linting errors. | Frederick Muriuki Muriithi | |
2024-04-23 | Rename function and do minor bug-fixes. | Frederick Muriuki Muriithi | |
2024-04-23 | Make UPLOADS_DIR mandatory rather than CLIENTS_SSL_PUBLIC_KEYS_DIR | Frederick Muriuki Muriithi | |
2024-04-23 | Make the keys storage dir depend on the more generic uploads directory | Frederick Muriuki Muriithi | |
2024-04-22 | Separate clients' keys from authorisation server's key | Frederick Muriuki Muriithi | |
The authorisation server uses its key to sign any token it generates. It uses the clients' public keys to validate any assertions it receives from a client using the client's public key. | |||
2024-04-18 | Add the `SSL_KEY_PAIR_*` configurations | Frederick Muriuki Muriithi | |
Add paths to the SSL key-pair used for signing and verifying the JWTs. | |||
2024-03-01 | Put `GN_AUTH_SECRETS` config in the main configuration file. | Frederick Muriuki Muriithi | |
2024-03-01 | Configs: Check that all mandatory settings exist and are non-empty. | Frederick Muriuki Muriithi | |
2024-02-27 | Remove use of instance path in configurations. | Frederick Muriuki Muriithi | |
2023-12-05 | Enable CORS to allow access from GN2 javascript | Frederick Muriuki Muriithi | |
2023-11-02 | Config: Use instance_path to load secrets. | Frederick Muriuki Muriithi | |
2023-09-26 | Handle AuthorisationError at the top-level | Frederick Muriuki Muriithi | |
Add an error handler to gracefully handle the custom AuthorisationError at the application's top-level to avoid having to manually handle it everywhere that the error (and its sub-classes) might be raised. | |||
2023-08-08 | Use relative imports to break circular import errors | Frederick Muriuki Muriithi | |
2023-08-08 | Fix issues caught by linter | Frederick Muriuki Muriithi | |
* Add a .pylintrc to silence annoying messages * Fix imports * Add missing `parse_db_url` function * Add a new `gn_auth.auth.db.redis` module | |||
2023-08-07 | Add routes to the application | Frederick Muriuki Muriithi | |
2023-08-04 | Initialise the application and update some module imports | Frederick Muriuki Muriithi | |
2023-08-04 | Copy over files from GN3 repository. | Frederick Muriuki Muriithi | |