Adam Ierymenko
|
7c3166e9be
Add a bit of hardening in the network certificate of membership by incorporating a full hash of the identity to which it is issued. This means the recipient need not depend entirely on the root verifying identities properly to make sure impersonation is not occurring.
|
há 3 anos atrás |
Grant Limberg
|
20721491e8
kill some noisy logs
|
há 3 anos atrás |
Grant Limberg
|
9eae444104
kill some verbose logs
|
há 3 anos atrás |
Adam Ierymenko
|
576b4f03a5
Adjust deauth time window and send revocation when SSO members expire.
|
há 3 anos atrás |
Adam Ierymenko
|
461810b06a
Move return so record gets created before URL.
|
há 4 anos atrás |
Grant Limberg
|
613d7b5ece
fix backwards logic
|
há 4 anos atrás |
Adam Ierymenko
|
663e748b8d
Deauth expiring members right away.
|
há 4 anos atrás |
Adam Ierymenko
|
0cf62d334d
Remove pointless check.
|
há 4 anos atrás |
Adam Ierymenko
|
0310bfa3e3
Include authentication URL in config
|
há 4 anos atrás |
Adam Ierymenko
|
efe0e8aa7b
Notification of about-to-expire status... almost there.
|
há 4 anos atrás |
Adam Ierymenko
|
5c7e51feaf
Merge branch 'dev' of github.com:zerotier/ZeroTierOne into dev
|
há 4 anos atrás |
Adam Ierymenko
|
34de579c91
Handling of soon-to-expire members
|
há 4 anos atrás |
Grant Limberg
|
10215af96d
whoops
|
há 4 anos atrás |
Grant Limberg
|
e67fee0264
debug logging
|
há 4 anos atrás |
Grant Limberg
|
364ad87e2b
add ssoEnabled flag to network config
|
há 4 anos atrás |
Grant Limberg
|
e6b4fb5af7
add "ssoRedirectURL" to local.conf
|
há 4 anos atrás |
Adam Ierymenko
|
1dfe909bab
Increase authentication URL sizes.
|
há 4 anos atrás |
Grant Limberg
|
74a678c1e1
chicken or egg problem.
|
há 4 anos atrás |
Grant Limberg
|
f27d193cf6
.
|
há 4 anos atrás |
Grant Limberg
|
7ca2ecb421
put expiry time back on nc object
|
há 4 anos atrás |
Grant Limberg
|
0702e581a1
remove some noisy log lines & fix a query error
|
há 4 anos atrás |
Grant Limberg
|
c78792a705
moar temporary debug printfs
|
há 4 anos atrás |
Grant Limberg
|
287c19e822
move this outside the auth block. If SSO is enabled, it should be checked whether authorized or not
|
há 4 anos atrás |
Grant Limberg
|
4f521baafd
Big SSO update
|
há 4 anos atrás |
Grant Limberg
|
fc6d90a04a
set the correct default
|
há 4 anos atrás |
Grant Limberg
|
d2f1d05a06
handle cases where authenticationURL and authenticationExpiryTime don't exist
|
há 4 anos atrás |
Adam Ierymenko
|
c470c6255e
Postgres code for SSO (almost certainly needs work)
|
há 4 anos atrás |
Adam Ierymenko
|
6b3a7ec827
Fix a few things...
|
há 4 anos atrás |
Adam Ierymenko
|
1ce71f9dc0
Build fix.
|
há 4 anos atrás |
Adam Ierymenko
|
18508b5a2e
Build fix.
|
há 4 anos atrás |