CreatBot/CreatBotMoonraker
7
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
699 Commits 3 Branches 8 Tags
Commit Graph

17 Commits

Author SHA1 Message Date
Arksine
aa9641024a authorization: restrict CORS headers on non-options requests 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-23 20:36:26 -04:00
Arksine
dc4da6087f authorization: rename the oneshot request handler 
Naming the method "_handle_oneshot_request" is less ambiguous than "_handle_token_request".

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-23 14:46:46 -04:00
Arksine
8a3b885eca authorization: use ES256 algorithm for JWT signatures 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-23 14:46:46 -04:00
Arksine
ce7f659a32 authorization: use python_jose dependency for jwt management 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-23 09:09:53 -04:00
Arksine
b8cf0d7fd2 authorization: check the query string for jwts 
Clients may pass a json web token via the query string's "access_token" argument to authorize requests that do not allow modified headers.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-19 19:18:23 -04:00
Arksine
dca7bd51cd authorization: add 'force_logins' option 
When "force_logins" is enabled a user login is required if at least one user is registered, overriding the "trusted_clients" configuration.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-19 19:05:48 -04:00
Arksine
41ddbb16a8 authorization: add annotations 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-18 19:16:49 -04:00
Arksine
2ba85533c2 authorization: refactor user delete API 
It is now possible for any authorized request to delete a user, however a logged in user cannot delete its own account.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-14 12:59:30 -04:00
Arksine
490e66fe07 authorization: bypass authorization check when the request method is OPTIONS 
If CORS is enabled then then OPTIONS should always return 204.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-13 19:33:42 -04:00
Arksine
b3187710d0 authorization: Return more detail in "/access/users/list" 
Return a list of objects with username and creation date fields.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-13 17:58:07 -04:00
Arksine
1af7f7d550 authorization: send websocket notifications when a user is created or deleted 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-13 15:24:41 -04:00
Arksine
400cefebc8 authorization: add '/access/users/list' API request 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-05-13 14:58:22 -04:00
Arksine
46e1d7b66b authorization: support fqdns as "trusted_clients" 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-04-29 19:16:57 -04:00
Arksine
4e0e223599 authorization: allow auth related CORS Headers 
Allow Authorization, X-Api-Key, and X-Access-Token headers when CORS is enabled.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-04-19 20:46:17 -04:00
Arksine
7eba8e58e3 authorization: add support for JWT User Authorizaton 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-04-19 20:46:17 -04:00
Arksine
24e6fded91 authorization: use database to store API Key 
Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-04-18 07:25:12 -04:00
Arksine
14991ac3b9 authorization: convert module to component 
CONFIG CHANGE:  This deprecates the "enabled" option in the [authorization] section.  Authorization will be enabled if the section is included in moonraker.conf,  otherwise it will be disabled.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
 2021-04-18 07:25:12 -04:00