d53e64a32c
move auth token middleware/hooks to middleware package
...
fix/adds auth token middleware tests
2019-02-05 00:21:05 +01:00
88ca54eba9
renames signout function
2019-01-31 16:26:36 +01:00
d6edaa1328
moves cookie https setting to [security]
2019-01-24 19:04:58 +01:00
9153b6ed96
improves readability of loginping handler
2019-01-24 15:17:09 +01:00
4626f083bb
store oauth login error messages in an encrypted cookie
2019-01-23 17:01:09 +01:00
df85cc9bb1
redirect logged in users from /login to home
2019-01-23 15:28:33 +01:00
c3ff3d644c
fixes nil ref in tests
2019-01-22 16:16:32 +01:00
8b3fe41b0a
log fix
2019-01-17 17:32:33 +01:00
aba6148c43
login users based on token cookie
2019-01-16 16:44:40 +01:00
8764fb5aa6
inject login/logout hooks
2019-01-15 15:16:20 +01:00
3414be18bc
Implement oauth_auto_login setting
...
Redirect in backend
2018-10-29 18:46:52 +01:00
8c9939df72
Adds backend hooks service so extensions can modify index data
2018-10-12 11:26:42 +02:00
92ed1f04af
sql: added code migration type
2018-08-21 13:53:04 +02:00
a5e6cb9a02
Fix #9847 Add a generic signout_redirect_url to enable oauth logout
...
Signed-off-by: Julien Pivotto <roidelapluie@inuits.eu>
2018-05-27 14:52:50 +02:00
d837be91ec
switch to passing ReqContext as a property
2018-04-17 14:06:25 -04:00
1c5afa731f
shared library for managing external user accounts
2018-04-17 14:06:25 -04:00
0a415c50d0
Make golint happier
2018-03-22 22:38:44 +01:00
7aab6a8887
Make golint happier
2018-03-22 12:40:21 +01:00
c0ecdee375
rename Context to ReqContext
2018-03-07 11:54:50 -05:00
338655dd37
move Context and session out of middleware
2018-03-06 18:16:49 -05:00
3d1c624c12
WIP: Protect against brute force (frequent) login attempts ( #10031 )
...
* db: add login attempt migrations
* db: add possibility to create login attempts
* db: add possibility to retrieve login attempt count per username
* auth: validation and update of login attempts for invalid credentials
If login attempt count for user authenticating is 5 or more the last 5 minutes
we temporarily block the user access to login
* db: add possibility to delete expired login attempts
* cleanup: Delete login attempts older than 10 minutes
The cleanup job are running continuously and triggering each 10 minute
* fix typo: rename consequent to consequent
* auth: enable login attempt validation for ldap logins
* auth: disable login attempts validation by configuration
Setting is named DisableLoginAttemptsValidation and is false by default
Config disable_login_attempts_validation is placed under security section
#7616
* auth: don't run cleanup of login attempts if feature is disabled
#7616
* auth: rename settings.go to ldap_settings.go
* auth: refactor AuthenticateUser
Extract grafana login, ldap login and login attemp validation together
with their tests to separate files.
Enables testing of many more aspects when authenticating a user.
#7616
* auth: rename login attempt validation to brute force login protection
Setting DisableLoginAttemptsValidation => DisableBruteForceLoginProtection
Configuration disable_login_attempts_validation => disable_brute_force_login_protection
#7616
2018-01-26 10:41:41 +01:00
2de94d6548
convert old metrics to prom metrics
2017-09-14 14:26:32 +02:00
e3bd51e38d
fix: remove duplicate set-cookie when logging in, fixes #9013
2017-08-21 11:10:59 +02:00
1e5778174c
login: regenerates session id on login
2017-08-07 10:00:29 +02:00
b780415f25
fix: change to remember me cookie encoding
2017-04-25 15:33:15 +02:00
beb85f413a
oauth: delete session key instead of set to empty
...
Adds the Delete function to the Session wrapper so that the Macaron
function for deleting keys from a Session can be used.
https://go-macaron.com/docs/middlewares/session#implement-provider-interface
2017-03-23 15:26:13 +01:00
79cef75fed
Merge pull request #7426 from Altoros/altoros/authorization-errors
...
Add common type for oauth authorization errors
2017-03-23 15:25:35 +01:00
737c29ec8c
disable inviting new users to orgs if login form is disabled
2017-03-17 16:35:05 -04:00
30c334a2b8
Add common type for oauth authorization errors
2017-02-01 16:42:59 +03:00
2750c8a801
feat(config): changed name of allow_user_login_pass to disable_login_form, changed the section of the config option to [auth], impacts merged PR #5423
2016-09-28 15:27:08 +02:00
e5fc4332cd
feat(oauth): refactoring PR #6077
2016-09-28 15:10:50 +02:00
fc17ed351c
support logging in with grafana.net credentials
2016-09-19 16:48:07 -04:00
b4646b6c3a
Allow users to use a generic oauth that conforms to the github style.
...
Enables users to set their own link text.
2016-06-30 15:07:55 -07:00
690a74c6b7
feat(login): invert naming for dissallow user pass login
2016-06-25 16:30:41 +02:00
040586604b
Allow configuration to disable the username and password login interface.
...
Used for when admins only want users to login via OAuth.
2016-06-23 10:09:13 -07:00
2a557f67d2
Do not set remember me cookie when days are set to zero
2016-03-07 17:26:31 +01:00
201f50b121
Merge branch 'master' into external-plugins
...
Conflicts:
pkg/api/login.go
public/app/core/routes/all.js
public/app/core/table_model.ts
public/app/panels/table/table_model.ts
public/app/plugins/panels/table/editor.ts
public/app/plugins/panels/table/table_model.ts
2015-12-14 17:28:57 +01:00
df0bc7bbc4
feat(external_plugin): lots of refactoring for side menu link extensions and view data, #3185
2015-11-20 09:43:10 +01:00
235bbc9c7e
custom login hints via config file
2015-08-20 11:15:36 -07:00
0b5ba55131
feat(ldap): work on reading ldap config from toml file, #1450
2015-07-15 10:08:23 +02:00
0ef7271326
Started work on LDAP again, #1450
2015-07-10 11:10:48 +02:00
eb793f7feb
Initial work on ldap support, #1450
2015-06-04 09:34:42 +02:00
fc47fb8f64
Backend auth: remember cookie is needed for oauth logins as well
2015-04-15 13:38:38 +02:00
c07d48d930
A big refactoring for how sessions are handled, Api calls that authenticate with api key will no longer create a new session
2015-04-07 19:21:14 +02:00
22adf0d06e
Datasource proxy & session timeout fix (casued 401 Unauthorized error after a while), Fixes #1667
2015-04-07 09:25:00 +02:00
d987532262
Added server metrics
2015-03-22 15:14:00 -04:00
f3d4d2782f
Simplified single org settings, now auto_assign_org, and auto_assign_org_role, new [users] config section, Closes #1585
2015-03-11 16:19:29 +01:00
10820f31c2
Changed go package path
2015-02-05 10:37:13 +01:00
04d03f73b3
Added disable user sign up feature
2015-01-29 15:46:54 +01:00
1d6413bfae
More work on backend for user favorites
2015-01-29 12:10:34 +01:00
