aboutsummaryrefslogtreecommitdiff
path: root/gn_auth/auth
AgeCommit message (Collapse)Author
9 daysFix some linting issues.Frederick Muriuki Muriithi
9 daysBugfix: Build up "WHERE" clauses correctlyFrederick Muriuki Muriithi
Have the email and name checked with "OR" where both are present.
9 daysProvide missing symbol.Frederick Muriuki Muriithi
9 daysBugfix: Set the correct value.Frederick Muriuki Muriithi
2025-06-25Delete system users.Frederick Muriuki Muriithi
2025-06-24Search in names too. Fix query params.Frederick Muriuki Muriithi
2025-06-24Enable filtering of data, and limiting length.Frederick Muriuki Muriithi
2025-06-11Fix code issue caught by type-checker.Frederick Muriuki Muriithi
2025-06-11Fix code issues caught by the linter.Frederick Muriuki Muriithi
2025-06-09Add inbredset-group resource type in unlinked_data functionzsloan
This still needs to be implemented, but this commit prevents the key error
2025-06-09Enable linking multiple data items to a resource in single request.Frederick Muriuki Muriithi
2025-06-09Use more flexible check for authorisation.Frederick Muriuki Muriithi
Use the more flexible check for authorisation that a user has on a specific resource.
2025-06-09Add function to fetch the wrapper resource for a specific group.Frederick Muriuki Muriithi
2025-06-09Add a function to fetch the system resource.Frederick Muriuki Muriithi
2025-06-09Check for a user's privileges on a particular resource.Frederick Muriuki Muriithi
Add a general function to check that a particular user has certain privileges on a particular resource.
2025-06-09Allow linking of data by passing the raw ids too.Frederick Muriuki Muriithi
2025-05-06Fix failing mypy.Munyoki Kilyungi
Signed-off-by: Munyoki Kilyungi <me@bonfacemunyoki.com>
2025-05-05Fix "C0301: Line too long" pylint error.Munyoki Kilyungi
Signed-off-by: Munyoki Kilyungi <me@bonfacemunyoki.com>
2025-03-28Handle error raised in the case the request is not JSONFrederick Muriuki Muriithi
2025-03-28Simplify line where it was unnecessarily checking request.json twicezsloan
2025-03-14Add missing fix: Make display of minutes more human-friendly.Frederick Muriuki Muriithi
2025-03-14Make display of number of minutes more human-friendly.Frederick Muriuki Muriithi
2025-03-14Move expiry of auth-based emails into a config variable.Frederick Muriuki Muriithi
To ease setting up of value without changing code, move the value out into a configuration variable.
2025-02-26Fix pylint errors.Frederick Muriuki Muriithi
2025-02-26Remove use of obsolete flask_helpers module.Frederick Muriuki Muriithi
Create the requests in the class, as appropriate, checking for content-type.
2025-02-17Use default sys-admin group if user is not a member of any group.Frederick Muriuki Muriithi
Instead of failing, assign any population resource to the default system admin group, if the user is not a member of any group.
2025-02-17Provide a way to fetch a system-administrator's group.Frederick Muriuki Muriithi
2025-01-10Update server to support non-expiring JWTs.Frederick Muriuki Muriithi
2025-01-10Override `generate` to generate tokens without expiry.Frederick Muriuki Muriithi
2025-01-10Rework `get_token_data()` to only set 'exp' if its provided.Frederick Muriuki Muriithi
2025-01-10Allow for non-expiring JWT tokens.Frederick Muriuki Muriithi
2024-12-31Log out exceptions with the application's loggerFrederick Muriuki Muriithi
2024-12-31Allow the request to redirect from HTTP to HTTPS where relevant.Frederick Muriuki Muriithi
2024-12-31DEBUG: See the Public JWKS uri.Frederick Muriuki Muriithi
2024-11-22Delete local mariadb connections module.Frederick Muriuki Muriithi
We no longer need this module after moving the code to use gn-libs.
2024-11-22Use code in gn_libs for MySQL/MariaDB connection.Frederick Muriuki Muriithi
Update the application to use the gn_libs code for connecting to the database, rather than using a local module.
2024-11-08Revert "Debug: Add debug logging to trace JWK fetching."Frederick Muriuki Muriithi
This reverts commit 5a6dc1fb81bf223750f42f4697f3cd7d86b39e71. Remove debugging statements and restore original code.
2024-11-05Debug: Add debug logging to trace JWK fetching.Frederick Muriuki Muriithi
2024-11-04Output KeySet retrieved from the client.Frederick Muriuki Muriithi
2024-10-09Linting: Fix minor linting errorsFrederick Muriuki Muriithi
2024-10-09Fix masquerading logicFrederick Muriuki Muriithi
Update the code to actually use JWT bearer tokens that the older plain authorisation tokens that were previously used.
2024-10-09Add a client to the JWTBearerToken objects.Frederick Muriuki Muriithi
2024-10-09Update Configs: Change `OAUTH2_SCOPE` => `OAUTH2_SCOPES_SUPPORTED`Frederick Muriuki Muriithi
Use the OAUTH2_SCOPES_SUPPORTED application configuration variable, that is used by the flask integration for the Authlib library to set up the supported scopes.
2024-10-09Pass on all GET parameters when redirecting.Frederick Muriuki Muriithi
2024-10-09Put routes behind auth.Frederick Muriuki Muriithi
2024-10-03BugFix: Fetch also roles assigned to userFrederick Muriuki Muriithi
When fetching the resource roles, fetch also any roles that are assigned to the user for that resource.
2024-10-03BugFix: Remove duplicates from resources listFrederick Muriuki Muriithi
Issue: https://issues.genenetwork.org/issues/gn-auth/resources-duplicates-in-resources-list The query was returning multiple instances of the same resource in situations where a user had more than one role of a particular resource.
2024-10-03Provide a way to change OAuth2 client secrets.Frederick Muriuki Muriithi
2024-09-30Refactor: Initialise phenotype packageFrederick Muriuki Muriithi
* Move code into a new phenotypes package and update references. * Add new functions to fetch linked resources from GN3 data identifiers — this is useful for auth * Provide endpoint to fetch authorisation details for a specific phenotype.
2024-09-30Create a better named function, with less data in the args.Frederick Muriuki Muriithi
The new name serves better to reflect what the function does. We then pass only the data that the function needs to perform its operation rather than full objects with extra data — this has implications for security.
generated by cgit v1.2.3 (git 2.47.1) at 2025-07-12 19:31:40 +0000