mirror of
https://github.com/grafana/grafana.git
synced 2024-11-26 02:40:26 -06:00
c2d3c90bc8
* Auth: check of auth_token in url and resolve user if present * check if auth_token is passed in url * Auth: Pass auth_token for request if present in path * no need to decode token in index * temp * use loadURLToken and set authorization header * cache token in memory and strip it from url * Use loadURLToken * Keep token in url * strip sensitive query strings from url used by context logger * adapt login by url to jwt token * add jwt iframe devenv * add jwt iframe devenv instructions * add access note * add test for cleaning request * ensure jwt token is not carried into handlers * do not reshuffle queries, might be important * add correct db dump location * prefer set token instead of cached token Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> Co-authored-by: Karl Persson <kalle.persson@grafana.com> Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> |
||
|---|---|---|
| .. | ||
| cookies | ||
| csrf | ||
| auth_test.go | ||
| auth.go | ||
| csp.go | ||
| dashboard_redirect_test.go | ||
| dashboard_redirect.go | ||
| gziper.go | ||
| logger_test.go | ||
| logger.go | ||
| middleware_basic_auth_test.go | ||
| middleware_jwt_auth_test.go | ||
| middleware_test.go | ||
| middleware.go | ||
| org_redirect_test.go | ||
| org_redirect.go | ||
| quota_test.go | ||
| quota.go | ||
| rate_limit_test.go | ||
| rate_limit.go | ||
| recovery_test.go | ||
| recovery.go | ||
| request_metrics.go | ||
| request_test.go | ||
| request_tracing.go | ||
| testing.go | ||
| validate_host.go | ||