IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-02-25 18:55:37 -06:00
Code Issues Packages Projects Releases Wiki Activity
c2d3c90bc8
grafana/pkg/services
History
Jo c2d3c90bc8
Auth: Implement Token URL JWT Auth () 
* Auth: check of auth_token in url and resolve user if present

* check if auth_token is passed in url

* Auth: Pass auth_token for request if present in path

* no need to decode token in index

* temp

* use loadURLToken and set authorization header

* cache token in memory and strip it from url

* Use loadURLToken

* Keep token in url

* strip sensitive query strings from url used by context logger

* adapt login by url to jwt token

* add jwt iframe devenv

* add jwt iframe devenv instructions

* add access note

* add test for cleaning request

* ensure jwt token is not carried into handlers

* do not reshuffle queries, might be important

* add correct db dump location

* prefer set token instead of cached token

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>

Co-authored-by: Karl Persson <kalle.persson@grafana.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
2022-07-27 16:10:47 +02:00
..
accesscontrol Revert "Service accounts: Add service account to teams" () 2022-07-26 09:43:29 +01:00
alerting Renderer: Add sanitize API () 2022-07-07 15:32:18 +04:00
annotations Chore: Add dashboard UID as query parameter of Get annotation endpoint () 2022-07-26 21:52:34 -04:00
auth Split Create User () 2022-06-28 14:32:25 +02:00
cleanup backend/dashboardsnapshot service: move models () 2022-06-17 09:09:01 -04:00
comments backend/services: Move GetDashboard from sqlstore to dashboard service () 2022-05-17 14:52:22 -04:00
contexthandler Auth: Implement Token URL JWT Auth () 2022-07-27 16:10:47 +02:00
correlations Chore: Move swagger definitions to the handlers () 2022-07-27 09:54:37 -04:00
dashboardimport Chore: Move swagger definitions to the handlers () 2022-07-27 09:54:37 -04:00
dashboards Fix anonymous access () 2022-07-22 10:35:26 +02:00
dashboardsnapshots chore/backend: move dashboard errors to dashboard service () 2022-06-30 09:31:54 -04:00
dashboardversion chore/backend: move dashboard errors to dashboard service () 2022-06-30 09:31:54 -04:00
datasourceproxy backend/datasources: move datasources models into the datasources service package () 2022-06-27 12:23:15 -04:00
datasources Secrets: Implement Secret Plugin required flag and fatal crash on startup () 2022-07-25 12:37:47 -04:00
encryption Encryption: Add support for decrypting ciphertexts with algorithm metadata () 2022-05-20 17:11:51 +02:00
export Export: include section count in status updates () 2022-07-18 11:03:08 -04:00
featuremgmt Traces: Remove serviceMap feature flag () 2022-07-19 08:00:58 +01:00
guardian Rename Acl to ACL () 2022-07-18 15:14:58 +02:00
hooks Migrate to Wire for dependency injection () 2021-08-25 15:11:22 +02:00
kmsproviders Encryption: Refactor secrets.Service initialization () 2022-07-07 09:48:25 +02:00
ldap LDAP: Improve errors and documentation () 2022-07-12 11:11:09 -04:00
libraryelements Chore: Move swagger definitions to the handlers () 2022-07-27 09:54:37 -04:00
librarypanels Rename Acl to ACL () 2022-07-18 15:14:58 +02:00
licensing RBAC: Make RBAC action names more consistent () 2022-06-02 13:14:48 +01:00
live sync routing tree with latest changes in Gin () 2022-06-29 19:05:57 +03:00
login Auth: Add prometheus metrics for case insensitive ids () 2022-07-21 18:11:35 +01:00
multildap Split Create User () 2022-06-28 14:32:25 +02:00
ngalert Alerting: Scheduler to use AlertRule () 2022-07-26 09:40:06 -04:00
notifications Alerting: Fix Teams notifier not failing on 200 response with error () 2022-07-14 13:15:18 -04:00
oauthtoken Chore: Move user errors to user service () 2022-07-20 14:50:06 +02:00
org Chore: Split delete user method () 2022-07-19 16:01:05 +02:00
playlist Chore: Introduce playlist service () 2022-07-18 05:26:35 -04:00
plugindashboards Chore: Make test tracer noop and return no errors () 2022-06-15 12:40:41 +02:00
pluginsettings Plugins: Add plugin settings DTO () 2022-03-18 20:49:13 +01:00
preference Add delete user from other services/stores () 2022-07-15 18:06:44 +02:00
provisioning Correlations: change casing of *UID properties () 2022-07-27 07:01:46 +01:00
publicdashboards Public Dashboards: Adds template variable validation for pubdash on the backend () 2022-07-21 13:56:20 -06:00
query Datasource: Propagate datasource secret decryption errors to the frontend () 2022-07-13 09:27:03 -04:00
queryhistory Chore: Move swagger definitions to the handlers () 2022-07-27 09:54:37 -04:00
quota Storage: limit the number of uploaded files () 2022-07-18 15:24:39 +04:00
rendering Sanitization: fix log message () 2022-07-18 06:46:57 -07:00
screenshot Alerting: Better metrics and renamed BrowserScreenshotService () 2022-06-30 17:47:23 +01:00
search Search (SQL): support dashboardUID query parameter () 2022-06-02 12:56:01 -07:00
searchusers Chore: Move swagger definitions to the handlers () 2022-07-27 09:54:37 -04:00
searchV2 Search: Handle special datasource types () 2022-07-22 21:10:53 -04:00
secrets Secrets: Implement Secret Plugin required flag and fatal crash on startup () 2022-07-25 12:37:47 -04:00
serviceaccounts Chore: Move swagger definitions to the handlers () 2022-07-27 09:54:37 -04:00
shorturls ShortURL: Use new Error type () 2022-06-15 15:11:36 +02:00
sqlstore Instrumentation: Collect database connection stats () 2022-07-27 13:42:28 +02:00
star Add delete user from other services/stores () 2022-07-15 18:06:44 +02:00
store Storage: allow public access to public files () 2022-07-26 20:37:35 -07:00
teamguardian Chore: Split delete user method () 2022-07-19 16:01:05 +02:00
thumbs chore/backend: move dashboard errors to dashboard service () 2022-06-30 09:31:54 -04:00
updatechecker Logging: Unify logging fakes () 2022-05-06 17:44:22 +02:00
user Chore: Move user errors to user service () 2022-07-20 14:50:06 +02:00
userauth Chore: Split delete user method () 2022-07-19 16:01:05 +02:00
validations Migrate to Wire for dependency injection () 2021-08-25 15:11:22 +02:00