mirror of
https://github.com/grafana/grafana.git
synced 2024-11-29 12:14:08 -06:00
c2d3c90bc8
* Auth: check of auth_token in url and resolve user if present * check if auth_token is passed in url * Auth: Pass auth_token for request if present in path * no need to decode token in index * temp * use loadURLToken and set authorization header * cache token in memory and strip it from url * Use loadURLToken * Keep token in url * strip sensitive query strings from url used by context logger * adapt login by url to jwt token * add jwt iframe devenv * add jwt iframe devenv instructions * add access note * add test for cleaning request * ensure jwt token is not carried into handlers * do not reshuffle queries, might be important * add correct db dump location * prefer set token instead of cached token Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> Co-authored-by: Karl Persson <kalle.persson@grafana.com> Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> |
||
---|---|---|
.. | ||
cookies | ||
csrf | ||
auth_test.go | ||
auth.go | ||
csp.go | ||
dashboard_redirect_test.go | ||
dashboard_redirect.go | ||
gziper.go | ||
logger_test.go | ||
logger.go | ||
middleware_basic_auth_test.go | ||
middleware_jwt_auth_test.go | ||
middleware_test.go | ||
middleware.go | ||
org_redirect_test.go | ||
org_redirect.go | ||
quota_test.go | ||
quota.go | ||
rate_limit_test.go | ||
rate_limit.go | ||
recovery_test.go | ||
recovery.go | ||
request_metrics.go | ||
request_test.go | ||
request_tracing.go | ||
testing.go | ||
validate_host.go |