| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2024-07-31 | Remove the `CLIENTS_SSL_PUBLIC_KEYS_DIR` configuration | Frederick Muriuki Muriithi | |
| Moving forward, each client will advertise it's current JWKs at a known endpoint, and we'll use those, rather than having a configuration that requires manual update of the certificates. This will make it easier to implement key rotation on the clients too. | |||
| 2024-07-31 | Enable external configuration of session expiry period | Frederick Muriuki Muriithi | |
| Enable passing in the number of minutes that a session can be valid for. This enables the length of time that the session can last to be configurable rather than hard-coded. | |||
| 2024-07-31 | Remove obsoleted SSL_PRIVATE_KEY configuration | Frederick Muriuki Muriithi | |
| With the key rotation in place, eliminate the use of the SSL_PRIVATE_KEY configuration which pointed to a specific non-changing JWK. | |||
| 2024-07-31 | Retrieve newest JWK, creating a new JWK where necessary. | Frederick Muriuki Muriithi | |
| To help with key rotation, we fetch the latest key, creating a new JWK in any of the following 2 conditions: * There is no JWK in the first place * The "newest" key is older than a specified number of days | |||
| 2024-06-03 | Initialise default email settings for the application. | Frederick Muriuki Muriithi | |
| 2024-04-25 | Make `CLIENTS_SSL_PUBLIC_KEYS_DIR` explicitly a config setting. | Frederick Muriuki Muriithi | |
| 2024-04-23 | Update default settings. | Frederick Muriuki Muriithi | |
| 2024-04-22 | Separate clients' keys from authorisation server's key | Frederick Muriuki Muriithi | |
| The authorisation server uses its key to sign any token it generates. It uses the clients' public keys to validate any assertions it receives from a client using the client's public key. | |||
| 2024-04-18 | Add the `SSL_KEY_PAIR_*` configurations | Frederick Muriuki Muriithi | |
| Add paths to the SSL key-pair used for signing and verifying the JWTs. | |||
| 2024-03-01 | Put `GN_AUTH_SECRETS` config in the main configuration file. | Frederick Muriuki Muriithi | |
| 2023-12-05 | Add missing scripts and update code to invoke them | Frederick Muriuki Muriithi | |
| Copy the missing scripts over from GN3 and update them for gn-auth. Update the code to invoke the scripts correctly. Set up correct redis keys for use with the scripts. | |||
| 2023-12-05 | Enable CORS to allow access from GN2 javascript | Frederick Muriuki Muriithi | |
| 2023-09-26 | Add default `REDIS_URI` configuration. | Frederick Muriuki Muriithi | |
| 2023-08-04 | Initialise the application and update some module imports | Frederick Muriuki Muriithi | |
 |
index : gn-auth | |
| GN authentication and authorization service |
| aboutsummaryrefslogtreecommitdiff |