IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-02-25 18:55:37 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
c5f906f47266626b62fa8f8b52fea6c6bbed3400
grafana/pkg/middleware
History
Jeffrey Descan c5f906f472 Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787) 
* Refactor redirect_to cookie with secure flag in middleware

* Refactor redirect_to cookie with secure flag in api/login

* Refactor redirect_to cookie with secure flag in api/login_oauth

* Removed the deletion of 'Set-Cookie' header to prevent logout

* Removed the deletion of 'Set-Cookie' at top of api/login.go

* Add HttpOnly flag on redirect_to cookies where missing

* Refactor duplicated code

* Add tests

* Refactor cookie options

* Replace local function for deleting cookie

* Delete redundant calls

Co-authored-by: Sofia Papagiannaki <papagian@users.noreply.github.com>
2020-01-10 15:55:30 +02:00
..
auth_proxy
Auth Proxy: replace ini setting ldap_sync_ttl with sync_ttl (#20191)
2019-11-07 11:24:54 +01:00
auth_proxy.go
AuthProxy: Can now login with auth proxy and get a login token (#20175)
2019-11-07 17:48:56 +01:00
auth_test.go
Snapshot: Fix http api (#18830)
2019-09-02 15:15:46 +02:00
auth.go
Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787)
2020-01-10 15:55:30 +02:00
cookie.go
Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787)
2020-01-10 15:55:30 +02:00
dashboard_redirect_test.go
Chore: use remote cache instead of session storage (#16114)
2019-04-08 14:31:46 +03:00
dashboard_redirect.go
Revert "Opportunities to unindent code (unindent)"
2018-05-02 14:06:46 +02:00
headers.go
refactor datasource caching
2018-10-30 09:31:56 +01:00
logger.go
rename Context to ReqContext
2018-03-07 11:54:50 -05:00
middleware_basic_auth_test.go
pkg/util: Check errors (#19832)
2019-10-23 10:40:12 +02:00
middleware_test.go
AuthProxy: Can now login with auth proxy and get a login token (#20175)
2019-11-07 17:48:56 +01:00
middleware.go
Security: refactor 'redirect_to' cookie to use 'Secure' flag (#19787)
2020-01-10 15:55:30 +02:00
org_redirect_test.go
Auth: Enable retries and transaction for some db calls for auth tokens (#16785)
2019-04-30 14:42:01 +02:00
org_redirect.go
login users based on token cookie
2019-01-16 16:44:40 +01:00
perf.go
rename Context to ReqContext
2018-03-07 11:54:50 -05:00
quota_test.go
Auth: Enable retries and transaction for some db calls for auth tokens (#16785)
2019-04-30 14:42:01 +02:00
quota.go
use authtoken for session quota restrictions
2019-02-12 15:10:55 +01:00
recovery_test.go
Security: Responses from backend should not be cached (#16848)
2019-05-06 09:22:59 +02:00
recovery.go
move log package to /infra (#17023)
2019-05-13 08:45:54 +02:00
render_auth.go
pkg/util: Check errors (#19832)
2019-10-23 10:40:12 +02:00
request_metrics.go
Metrics: use consistent naming for exported variables (#18134)
2019-07-16 16:58:46 +02:00
request_tracing.go
mark >=400 responses as error
2017-09-18 11:08:58 +02:00
testing.go
Auth: Do not search for the user twice (#18366)
2019-08-03 21:50:05 +02:00
util.go
pkg/middleware: Check errors (#19749)
2019-10-15 18:08:06 +02:00
validate_host.go
rename Context to ReqContext
2018-03-07 11:54:50 -05:00