1
0
mirror of https://github.com/volatiletech/authboss.git synced 2025-01-24 05:17:10 +02:00

222 Commits

Author SHA1 Message Date
Aaron L
c9a9bcb3cc Merge pull request #103 from amygit/master
AttemptNumber should be set to 1 when login fails again after the loc…
2016-11-29 22:11:33 -08:00
Aaron L
c76295c0b4 Fix bash syntax error 2016-11-29 22:06:34 -08:00
Aaron L
32ed401d14 Circle no longer does code coverage without token 2016-11-29 21:43:04 -08:00
amygit
75a82c4a51 AttemptNumber should be set to 1 when login fails again after the lock windown is passed 2016-11-18 16:09:22 -08:00
Aaron L
4835af15f9 Merge pull request #96 from ckeeney/documentation-fix
fix documented import path for Auth module
2016-10-10 22:18:43 -07:00
CJ Keeney
7157885af5 fix documented import path for Auth module 2016-10-09 20:42:46 -07:00
Aaron L
958f5f1fe1 Fix circle test running 2016-08-07 23:53:53 -07:00
Aaron L
83c72ea507 Add coverage and junit reporting for authboss 2016-07-30 15:16:45 -07:00
Aaron L
414619c872 Revert "Merge pull request #88 from yargevad/ISSUE-87"
This reverts commit 3b11e039dc802bfc865cd2e515583e9b0911aaf0, reversing
changes made to 586415a7db9d2b1538cd2c05ca2dbbce0ee9cc62.

This merge actually caused the tests to fail. After digging in I decided
that the documentation is good enough as a test on creation of Authboss
is not possible with the current API. And this being only in the
register module was kind of a code smell.
2016-07-30 09:53:45 -07:00
Aaron L
0eb56c1de5 PWD in Circle file 2016-07-30 08:05:15 -07:00
Aaron L
c808c67e07 Add circle file 2016-07-30 07:08:57 -07:00
Aaron L
3b11e039dc Merge pull request #88 from yargevad/ISSUE-87
require `SessionStoreMaker` and `CookieStoreMaker` at startup
2016-06-25 13:45:04 -07:00
Dave Gray
c2e185a9b8 require SessionStoreMaker and CookieStoreMaker at startup instead of panicing on the first hit 2016-06-21 23:36:00 -07:00
Aaron L
586415a7db Merge pull request #83 from buu700/master
Additional -Maker properties on Config for GAE support
2016-05-09 12:24:05 -07:00
Ryan Lester
3fc0ed564b no DisableGoroutines (just check for -Maker); no ModuleNames; test fix 2016-05-09 13:20:10 -04:00
Ryan Lester
ec9c25e64f Merge remote-tracking branch 'upstream/master' 2016-05-09 12:14:18 -04:00
Aaron L
4ee00c6dc6 Fix go vet errors 2016-05-08 12:37:02 -07:00
Ryan Lester
8ed6deac08 final App-Engine-related fixes 2016-05-07 02:12:20 -04:00
Ryan Lester
2357e0679d more -Maker properties on Config 2016-05-03 21:14:24 -04:00
Aaron L
45dedd0c2d Merge pull request #81 from buu700/fix-gae-context
orian: Fix a problem with not getting the correct Context on App Engine
2016-02-23 23:09:38 -08:00
Ryan Lester
8655934e60 run gofmt 2016-02-23 21:28:43 -08:00
orian
231e4b2283 Fix a problem with not getting the correct Context when running on Google App Engine 2016-02-23 21:24:21 -08:00
orian
9cff57b284 add Facebook provider for oauth2 2016-02-23 21:24:20 -08:00
Kris Runzer
b519034670 Add query param to Register to allow for setting of primaryID
- Usefull when linking user to register page from email and you don't want
  them to change their email
2015-10-28 14:20:22 -07:00
Aaron L
b09e4831b6 Fix an issue where user is db fetched twice
- Fix #79
- Rename event EventGet to EventGetUser
- Remove double DB fetch
- Add new event callpoint: After(EventGetUser) for things that need to
  check that the user is ABLE to be gotten after it's fetched from the
  DB. That is before returning to the web app, ensure that the user is
  valid from a confirmation/lock etc point of view.
- Add test to make sure all the events are firing in CurrentUser()
2015-09-21 20:53:51 -07:00
Aaron L
124b1aec46 Remove bad cookies in router
- When authboss routes are accessed it goes through a check to see if
  they're logged in and if they need to actually visit this route. If
  the user was not found (despite having a session cookie) it would 500,
  and now it simply removes the bad cookie.
- Fix #75
2015-08-30 07:26:52 -07:00
Aaron L
c4eb529fd9 Merge branch 'context-request-separation' 2015-08-30 06:41:19 -07:00
Aaron
0ae4765ee3 Group constants. 2015-08-03 15:25:39 -07:00
Aaron
16200f8896 Merge remote-tracking branch 'orian/add-facebook-provider' 2015-08-03 15:22:34 -07:00
orian
280129a781 Fix names 2015-08-03 22:51:06 +02:00
orian
b63d1351f4 Merge branch 'master' into add-facebook-provider
Conflicts:
	oauth2/oauth2_test.go
2015-08-03 22:39:57 +02:00
orian
f19128a804 add Facebook provider for oauth2 2015-08-03 22:35:43 +02:00
Aaron
325d9002f6 Remove redundant struct.
- Fix #71
2015-08-03 09:06:38 -07:00
Aaron L
be041cbae6 remember: Context+Request separation ripple
- Re-add the age-old "Values" from the Context. This was originally
  there for exactly the documented purpose. However the Context holding
  the request form values negated it's use. It's back because of this
  new separation.
- Make the auth success path set the authboss.CookieRemember value in
  the context before calling it's callback.
2015-08-02 14:02:14 -07:00
Aaron L
8691f3bca9 register: Context+Request separation ripple 2015-08-02 13:02:31 -07:00
Aaron L
15bbe59c7a Remove validation from context.
- This is unnecessary now that request and context are more split up.
2015-08-02 13:00:16 -07:00
Aaron L
b8a8d772f7 recover: Context+Request separation ripple
- Modify the request mock to create query strings in the event that
  we're not using a POST request.
2015-08-02 12:54:53 -07:00
Aaron L
fb5c7ca377 internal/response: Context-Request separation 2015-08-02 12:00:53 -07:00
Aaron L
905e9bfcb4 confirm: Context-Request separation ripple 2015-08-02 11:55:39 -07:00
Aaron L
c074b79798 auth: Context-Request separation ripple 2015-08-02 11:52:23 -07:00
Aaron L
8a87d0de63 Separate the request from context. 2015-08-02 11:51:35 -07:00
Aaron
2eff32e3c8 Update documentation. 2015-08-02 10:05:31 -07:00
Aaron
4d1236b849 Ensure we call EventAuthFail.
- Remove validation of fields that we never
  store in the database anyways.
2015-08-02 09:52:30 -07:00
Aaron
5119d414c1 Make bind/unbind a lot more generic.
- This allows for the user struct to contain just about anything. But it
  will still produce errors when there is a type mismatch (which I believe
  was the entire point of the type-specific code).
- Leave sql.Scanner/driver.Valuer as special cases to allow control over
  serialization at some level.
- Fix #69
2015-08-02 09:31:21 -07:00
Aaron L
7cbe4216a0 Fix internal server error when wrong usr/pwd
- Correct tests to stop actually checking for internal server errors on
  wrong username/password. Sometimes tests aren't everything.
- Fix #64
2015-07-01 18:07:26 -07:00
Kris Runzer
a297274469 I need to learn how to git add... add missing tests. 2015-06-04 13:46:42 -07:00
Kris Runzer
7cb729827b Fix default validators to be inline with default primary ID 2015-06-04 13:34:29 -07:00
Kris Runzer
61a344b75a Added missing line. Sublime text save ftw. 2015-04-21 08:14:53 -07:00
Kris Runzer
f928282dec Remove password repopulation on recover complete. 2015-04-21 08:12:41 -07:00
Aaron L
704697472f Add redirection on pages when logged in.
- Stop logged in users from accessing pages like auth/recover etc.
- Ensure that half-authed users are allowed access to auth-like pages.
- Make sure that if users have a remember token, it's processed before
  we decide if a user is logged in or not, preventing or granting access
  to these pages.
- Fix #58
2015-04-10 22:41:59 -07:00