aboutsummaryrefslogtreecommitdiff
path: root/gn_auth/settings.py
AgeCommit message (Collapse)Author
2024-08-13Emails: Make "From" address configurableFrederick Muriuki Muriithi
We are running GeneNetwork in different environments. Each environment could have it's own separate domain, and need a different sender email to allow the underlying services to allow the emails through.
2024-07-31Remove the `CLIENTS_SSL_PUBLIC_KEYS_DIR` configurationFrederick Muriuki Muriithi
Moving forward, each client will advertise it's current JWKs at a known endpoint, and we'll use those, rather than having a configuration that requires manual update of the certificates. This will make it easier to implement key rotation on the clients too.
2024-07-31Enable external configuration of session expiry periodFrederick Muriuki Muriithi
Enable passing in the number of minutes that a session can be valid for. This enables the length of time that the session can last to be configurable rather than hard-coded.
2024-07-31Remove obsoleted SSL_PRIVATE_KEY configurationFrederick Muriuki Muriithi
With the key rotation in place, eliminate the use of the SSL_PRIVATE_KEY configuration which pointed to a specific non-changing JWK.
2024-07-31Retrieve newest JWK, creating a new JWK where necessary.Frederick Muriuki Muriithi
To help with key rotation, we fetch the latest key, creating a new JWK in any of the following 2 conditions: * There is no JWK in the first place * The "newest" key is older than a specified number of days
2024-06-03Initialise default email settings for the application.Frederick Muriuki Muriithi
2024-04-25Make `CLIENTS_SSL_PUBLIC_KEYS_DIR` explicitly a config setting.Frederick Muriuki Muriithi
2024-04-23Update default settings.Frederick Muriuki Muriithi
2024-04-22Separate clients' keys from authorisation server's keyFrederick Muriuki Muriithi
The authorisation server uses its key to sign any token it generates. It uses the clients' public keys to validate any assertions it receives from a client using the client's public key.
2024-04-18Add the `SSL_KEY_PAIR_*` configurationsFrederick Muriuki Muriithi
Add paths to the SSL key-pair used for signing and verifying the JWTs.
2024-03-01Put `GN_AUTH_SECRETS` config in the main configuration file.Frederick Muriuki Muriithi
2023-12-05Add missing scripts and update code to invoke themFrederick Muriuki Muriithi
Copy the missing scripts over from GN3 and update them for gn-auth. Update the code to invoke the scripts correctly. Set up correct redis keys for use with the scripts.
2023-12-05Enable CORS to allow access from GN2 javascriptFrederick Muriuki Muriithi
2023-09-26Add default `REDIS_URI` configuration.Frederick Muriuki Muriithi
2023-08-04Initialise the application and update some module importsFrederick Muriuki Muriithi