1
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-11-22 08:42:32 -05:00
forgejo/templates/user/auth
QuaSoft 7b4d2f7a2a Add single sign-on support via SSPI on Windows (#8463)
* Add single sign-on support via SSPI on Windows

* Ensure plugins implement interface

* Ensure plugins implement interface

* Move functions used only by the SSPI auth method to sspi_windows.go

* Field SSPISeparatorReplacement of AuthenticationForm should not be required via binding, as binding will insist the field is non-empty even if another login type is selected

* Fix breaking of oauth authentication on download links. Do not create new session with SSPI authentication on download links.

* Update documentation for the new 'SPNEGO with SSPI' login source

* Mention in documentation that ROOT_URL should contain the FQDN of the server

* Make sure that Contexter is not checking for active login sources when the ORM engine is not initialized (eg. when installing)

* Always initialize and free SSO methods, even if they are not enabled, as a method can be activated while the app is running (from Authentication sources)

* Add option in SSPIConfig for removing of domains from logon names

* Update helper text for StripDomainNames option

* Make sure handleSignIn() is called after a new user object is created by SSPI auth method

* Remove default value from text of form field helper

Co-Authored-By: Lauris BH <lauris@nix.lv>

* Remove default value from text of form field helper

Co-Authored-By: Lauris BH <lauris@nix.lv>

* Remove default value from text of form field helper

Co-Authored-By: Lauris BH <lauris@nix.lv>

* Only make a query to the DB to check if SSPI is enabled on handlers that need that information for templates

* Remove code duplication

* Log errors in ActiveLoginSources

Co-Authored-By: Lauris BH <lauris@nix.lv>

* Revert suffix of randomly generated E-mails for Reverse proxy authentication

Co-Authored-By: Lauris BH <lauris@nix.lv>

* Revert unneeded white-space change in template

Co-Authored-By: Lauris BH <lauris@nix.lv>

* Add copyright comments at the top of new files

* Use loopback name for randomly generated emails

* Add locale tag for the SSPISeparatorReplacement field with proper casing

* Revert casing of SSPISeparatorReplacement field in locale file, moving it up, next to other form fields

* Update docs/content/doc/features/authentication.en-us.md

Co-Authored-By: guillep2k <18600385+guillep2k@users.noreply.github.com>

* Remove Priority() method and define the order in which SSO auth methods should be executed in one place

* Log authenticated username only if it's not empty

* Rephrase helper text for automatic creation of users

* Return error if more than one active SSPI auth source is found

* Change newUser() function to return error, letting caller log/handle the error

* Move isPublicResource, isPublicPage and handleSignIn functions outside SSPI auth method to allow other SSO methods to reuse them if needed

* Refactor initialization of the list containing SSO auth methods

* Validate SSPI settings on POST

* Change SSPI to only perform authentication on its own login page, API paths and download links. Leave Toggle middleware to redirect non authenticated users to login page

* Make 'Default language' in SSPI config empty, unless changed by admin

* Show error if admin tries to add a second authentication source of type SSPI

* Simplify declaration of global variable

* Rebuild gitgraph.js on Linux

* Make sure config values containing only whitespace are not accepted
2019-11-23 01:33:31 +02:00
..
activate.tmpl Don't warn users about *every* dirty form (#3707) 2018-03-23 22:10:42 +08:00
change_passwd.tmpl Force user to change password (#4489) 2018-09-13 15:04:25 +03:00
change_passwd_inner.tmpl Force user to change password (#4489) 2018-09-13 15:04:25 +03:00
finalize_openid.tmpl Some small template fixes (#3820) 2018-04-20 08:25:15 +08:00
forgot_passwd.tmpl Don't warn users about *every* dirty form (#3707) 2018-03-23 22:10:42 +08:00
grant.tmpl Use AppSubUrl for more redirections (#8647) 2019-10-23 22:04:22 +01:00
grant_error.tmpl Integrate OAuth2 Provider (#5378) 2019-03-08 11:42:50 -05:00
link_account.tmpl UX of link account (Step 1) (#5006) 2018-10-28 18:46:16 -04:00
prohibit_login.tmpl #2937 able to prohibit user login 2016-07-16 10:22:16 +08:00
reset_passwd.tmpl UX + Security current user password reset (#5042) 2019-04-18 10:23:59 +03:00
signin.tmpl Login via OpenID-2.0 (#618) 2017-03-17 15:16:08 +01:00
signin_inner.tmpl Move index.js to web_src and use webpack to pack them (#8598) 2019-11-13 15:52:13 +01:00
signin_navbar.tmpl Add single sign-on support via SSPI on Windows (#8463) 2019-11-23 01:33:31 +02:00
signin_openid.tmpl Center-aligned login topbar (#1880) 2017-06-06 15:05:06 +08:00
signup.tmpl Oauth2 consumer (#679) 2017-02-22 08:14:37 +01:00
signup_inner.tmpl Make captcha and password optional for external accounts (#6606) 2019-07-06 15:48:02 -04:00
signup_openid_connect.tmpl Use readonly input form to show the validated OpenID URI (#1308) 2017-03-20 09:50:24 +08:00
signup_openid_navbar.tmpl Login via OpenID-2.0 (#618) 2017-03-17 15:16:08 +01:00
signup_openid_register.tmpl Add Recaptcha functionality to Gitea (#4044) 2018-07-05 00:13:05 -04:00
twofa.tmpl Change two factor code entry box from text to number (#1733) 2017-05-16 15:30:20 +08:00
twofa_scratch.tmpl Autofocus on 2fa passcode fields (#1460) 2017-04-07 06:07:37 -07:00
u2f.tmpl Fix missing AppSubUrl in few more templates (#5021) 2018-10-05 19:41:09 -04:00
u2f_error.tmpl Add support for FIDO U2F (#3971) 2018-05-19 17:12:37 +03:00