h44z
72cfd1d8a9
feat: add support for PKCE ( #686 ) ( #702 )
Docker / Build and Push (push) Has been cancelled
Docker / release (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
2026-05-28 20:49:13 +02:00
Aram Akhavan
1517041363
fix: fetch user info from OIDC userinfo endpoint ( #698 )
...
The OIDC client was only extracting claims from the ID token, but many
OIDC providers (like Authelia) don't include all user information in the
ID token. Fields like 'preferred_username' are typically only available
via the userinfo endpoint.
This fix fetches additional user information from the provider's userinfo
endpoint and merges it with the ID token claims, ensuring that all
required user fields are available for user registration and login.
Fixes #697
Signed-off-by: Aram Akhavan <1147328+kaysond@users.noreply.github.com >
2026-05-28 20:48:37 +02:00
Mykhailo Roit
958dcb8fa9
feat: sanitize external identity provider user data ( #681 )
...
* feat: sanitize external user data
* remove config option to disable Sanitization: sanitize_external_user_data
* cleanup
---------
Co-authored-by: Christoph Haas <christoph.h@sprinternet.at >
2026-05-18 22:28:27 +02:00
Michael Tupitsyn
71806455dd
OIDC - support IdP logout ( #670 )
...
* OIDC - support IdP logout
Signed-off-by: Michael Tupitsyn <michael.tupitsyn@gmail.com >
* Add support of logout_idp_session parameter
Signed-off-by: Michael Tupitsyn <michael.tupitsyn@gmail.com >
* Fix merge conflict issue
Signed-off-by: Michael Tupitsyn <michael.tupitsyn@gmail.com >
* Restore original package-lock.json
Signed-off-by: Michael Tupitsyn <michael.tupitsyn@gmail.com >
* Cleanup
---------
Signed-off-by: Michael Tupitsyn <michael.tupitsyn@gmail.com >
Co-authored-by: Christoph Haas <christoph.h@sprinternet.at >
2026-04-12 13:18:04 +02:00
Michael Tupitsyn
9b437205b1
Add support for auth.oidc.allowed_user_groups ( #667 ) ( #668 )
...
Docker / Build and Push (push) Has been cancelled
Docker / release (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
Signed-off-by: Michael Tupitsyn <michael.tupitsyn@gmail.com >
2026-04-11 18:24:18 +02:00
Gwilherm Folliot
9770471a62
fix: ldap user creation when login in ( #631 )
...
Docker / Build and Push (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
Docker / release (push) Has been cancelled
Signed-off-by: Gwilherm Folliot <fl0w@3l0w.fr >
2026-03-01 22:18:13 +01:00
h44z
e0f6c1d04b
feat: allow multiple auth sources per user (#500,#477) ( #612 )
...
* feat: allow multiple auth sources per user (#500,#477)
* only override isAdmin flag if it is provided by the authentication source
2026-01-21 22:22:22 +01:00
h44z
0a88fe745f
allow setting a base-path for the web UI and API ( #583 ) ( #595 )
Docker / Build and Push (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
Docker / release (push) Has been cancelled
2025-12-20 15:30:55 +01:00
Christoph Haas
907bb0599a
fix race condition during ldap initialization ( #571 )
Docker / Build and Push (push) Has been cancelled
Docker / release (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
2025-11-20 18:28:20 +01:00
Christoph Haas
f53d0b3d7f
add the possibility to debug oauth or oidc login issues ( #541 )
2025-10-12 15:09:40 +02:00
Christoph Haas
cc2d1f53c4
improve logging of LDAP login process even more ( #529 )
Docker / Build and Push (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
Docker / release (push) Has been cancelled
2025-09-24 18:39:45 +02:00
Christoph Haas
ea26e56994
fix delayed setup of external auth providers ( #529 )
Docker / Build and Push (push) Has been cancelled
Docker / release (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
2025-09-21 21:16:12 +02:00
Christoph Haas
afb38b685c
improve logging of LDAP login process ( #529 )
Docker / Build and Push (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
Docker / release (push) Has been cancelled
2025-09-17 22:33:54 +02:00
h44z
0cbca61c15
ensure that LDAP filter values are escaped ( #512 )
2025-09-03 19:37:34 +02:00
Christoph Haas
1794b8653a
add retry handling for auth provider setup ( #484 )
Docker / Build and Push (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
Docker / release (push) Has been cancelled
2025-07-19 23:29:05 +02:00
h44z
f286840964
fix oauth domain check ( #474 ) ( #476 )
Docker / Build and Push (push) Has been cancelled
github-pages / deploy (push) Has been cancelled
Docker / release (push) Has been cancelled
2025-06-29 20:00:15 +02:00
Christoph Haas
1394be2341
add webauthn (passkey) support
2025-05-12 22:53:43 +02:00
Vladimir Dombrovski
3eb84f0ee9
Enable allowed_domains in oauth and oidc providers ( #416 )
...
* Enable allowed_domains in oauth and oidc providers
Signed-off-by: Vladimir DOMBROVSKI <vladimir.dombrovski@bso.co >
* Domain check code cleanup
* Run gofmt on domain validation code
---------
Signed-off-by: Vladimir DOMBROVSKI <vladimir.dombrovski@bso.co >
2025-05-05 18:26:19 +02:00
Christoph Haas
6cbccf6d43
feat: add simple audit ui
2025-03-29 16:42:31 +01:00
Christoph Haas
7d0da4e7ad
chore: use interfaces for all other services
2025-03-23 23:09:47 +01:00
Christoph Haas
7473132932
chore: replace logrus with standard lib log/slog
2025-03-02 08:51:13 +01:00
Christoph Haas
e24acfa57d
chore: cleanup code formatting
2025-02-28 08:37:55 +01:00
Christoph Haas
f7d7038829
chore: update to Go 1.24, improve oauth admin mapping tests
2025-02-27 22:32:11 +01:00
Christoph Haas
a04eaa4bfb
fix user group parsing for OAuth login ( #317 )
2025-01-21 17:33:01 +01:00
Christoph Haas
c73ce0288e
fix disabling of missing ldap users ( #344 ) and allow deletion of all user types
2025-01-18 17:39:18 +01:00
Christoph Haas
662e9c0549
Improve admin privilege handling for OAuth. Update documentation.
2025-01-18 11:55:56 +01:00
Christoph Haas
26d3257516
update userdata after OAuth login ( #317 , #160 )
Docker / Build and Push (push) Waiting to run
Docker / release (push) Blocked by required conditions
github-pages / deploy (push) Waiting to run
2025-01-11 18:55:23 +01:00
Christoph Haas
6d86f15ff8
implement/fix peer and user disable event ( #337 , #273 )
Docker / Build and Push (push) Waiting to run
Docker / release (push) Blocked by required conditions
github-pages / deploy (push) Waiting to run
2025-01-05 10:06:34 +01:00
Christoph Haas
62dbdfe0f9
fix plain oauth login ( #317 )
Docker / Build and Push (push) Waiting to run
Docker / release (push) Blocked by required conditions
github-pages / deploy (push) Waiting to run
2025-01-04 14:25:13 +01:00
Christoph Haas
1b4b5ff161
fix REST API permission checks ( #209 )
2024-01-31 21:14:36 +01:00
h44z
8b820a5adf
V2 alpha - initial version ( #172 )
...
Initial alpha codebase for version 2 of WireGuard Portal.
This version is considered unstable and incomplete (for example, no public REST API)!
Use with care!
Fixes/Implements the following issues:
- OAuth support #154 , #1
- New Web UI with internationalisation support #98 , #107 , #89 , #62
- Postgres Support #49
- Improved Email handling #47 , #119
- DNS Search Domain support #46
- Bugfixes #94 , #48
---------
Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com >
2023-08-04 13:34:18 +02:00
