seg_yinzy
/
che-server
mirror of https://github.com/eclipse-che/che-server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
9,595 Commits
124 Branches
308 Tags
147 MiB
Commit Graph

45 Commits (fdb2dbf163a02aff5e574ce29a8ba767dfce1f7b)

Author SHA1 Message Date
Anatolii Bazko b24e3c7d95
feat: support retrieving Git user data when PAT is configured (#489) 
* feat: support retrieving Git user data when PAT is configured

Signed-off-by: Anatolii Bazko <abazko@redhat.com>
 2023-04-04 10:14:40 +03:00
Anatolii Bazko 49773464e3 Fix remarks 
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
 2023-02-27 16:32:29 +02:00
Anatolii Bazko 19d13edc7f feat: Azure DevOps Service OAuth2 
Signed-off-by: Anatolii Bazko <abazko@redhat.com>
 2023-02-23 15:20:20 +02:00
Igor Vinokur cb3565dbf8
Support Bitbucket-server oAuth2 factory (#440) 
Apply Bitbucket Server oAuth-2 configuration for the factory flow.
 2023-02-15 16:43:27 +02:00
Igor Vinokur 7323f4776f
Apply Bitbucket server url validation by testing an API request (#428) 
Support factory from public Bitbucket-server repository without any oAuth configuration in the Che side. Add a new check that detects a Bitbucket-server url by testing it by a Bitbucket-server Api request.
 2023-01-26 15:25:09 +02:00
Nick Boldt a97e6eec90
chore: update license headers to 2023 because we still use that annoying license header checker for some reason (#412) 
To update next year:

  find . -name "*" -exec sed -i -r -e "s@-2023 Red Hat@-2024 Red Hat@g" {} \;

Change-Id: I2167da69ac584e743e61f4bbe699f06296911857
Signed-off-by: Nick Boldt <nboldt@redhat.com>

Signed-off-by: Nick Boldt <nboldt@redhat.com>
 2023-01-04 10:33:06 -04:00
Igor Vinokur ef626cd6ee
Fix Delete oauth token API method (#408) 
Rework the invalidate token oauth API method to send revoke token request to the git provider. After this request Che authorisation is unsynchronised so user is asked to re apply the authentication on new factory create step.
 2023-01-04 10:06:25 +02:00
Igor Vinokur bd9cd9db44
chore: Apply authentication status in the callback url (#338) 
When processing an authentication callback request set additional error query patameter to the callback url.
How it works:
1. User creates a factory form dashboard.
2. Dasboard requests che-server factory API with no error param in the request url. See https://github.com/eclipse-che/che-dashboard/pull/599
3. Che-server create factory API parses the url for the error param. No error query param means `skipAuthentication=false`. Authentication in progress.
74eb0a333d/wsmaster/che-core-api-factory-github/src/main/java/org/eclipse/che/api/factory/server/github/GithubFactoryParametersResolver.java (L104-L106)
4. GitHub shows the authentication page. If User rejects the authentication, authentication status is set to `access_denied`.
5. The error status is added to the redirect url as a query param.
74eb0a333d/wsmaster/che-core-api-auth/src/main/java/org/eclipse/che/security/oauth/EmbeddedOAuthAPI.java (L85-L93)
6. Dasboard is loaded from the redirect url. Dashboard requests the che-server to create factory by an api request with the error status query param from the redirect url.
e2849d9d21/packages/dashboard-frontend/src/containers/Loader/Factory/Steps/FetchDevfile/index.tsx (L208-L213)
7. Che-server create factory API parses the url for the status param. If `skipAuthentication=true` the authentication flow is skiped and factory creation progress goes further. If `skipAuthentication=false` factory is created in a regular way.
74eb0a333d/wsmaster/che-core-api-factory/src/main/java/org/eclipse/che/api/factory/server/scm/AuthorizingFileContentProvider.java (L70-L81)
 2022-08-11 17:14:30 +03:00
Pavol Baran 6b17bd5bf3 feat: github oauth with embededOAuthAPI 
Signed-off-by: Pavol Baran <pbaran@redhat.com>
 2021-11-25 00:55:24 +01:00
Max Shaposhnik a79cc94397
fix: improve bitbucket OAuth flow to use more specific error messages 2021-09-20 11:10:28 +03:00
Sergii Kabashniuk 359ebb32bc
build: Transition from Java EE to Jakarta EE (#80) 
* Upgrade swagger-ui-3.51.2

* Upgrade tomcat 10.0.10

* changed only imports

* changed imports in service loader

* changed swagger jaxrs deployment

* Changed swagger annotations + basic imports

* Changed imports and minimal key length for jsonwebtoken

* Restassured API changes + imports

* Removed trailing slash from CHE_HOME

* Migrate to jakarta schema in web.xml

* Disable tracing

* New artifacts and maven build upgrade

* Removed jackson-jaxrs-json-provider from wsmaster war

* Fixed KeycloakServletModuleTest and forked TracingFilter

* Removed unused dependecies
 2021-09-13 08:20:09 +03:00
Sergii Kabashniuk 6670c6986b Upgrade license 2021-05-20 17:05:45 +03:00
Sergii Kabashniuk 98b66ff1f6 Upgrade maven plugin configuration. Made pom.xml independent from che-parent 2021-05-20 16:53:16 +03:00
Pavol Baran d4939f06ec
Tests for oauth flow improvement with bitbucket (#19723) 
Signed-off-by: xbaran4 <pbaran@redhat.com>
 2021-05-04 11:44:32 +02:00
Pavol Baran f1627783b7
Improving flow when user denies Bitbucket access to Che (#19620) 
* redirecting to dashboard after denying authorization

Signed-off-by: xbaran4 <pbaran@redhat.com>
 2021-04-28 14:54:17 +03:00
Sergii Kabashniuk a294b25a87
Validation of Bitbucket personal access token before usage (#19518) 
* Validation of Bitbucket personal access token before usage

Signed-off-by: Sergii Kabashniuk <skabashniuk@redhat.com>
Co-authored-by: Michal Vala <michal.vala@gmail.com>
 2021-04-21 15:50:44 +03:00
Max Shaposhnik 889187e4e1
Correct response codes and messages related to private factory flow 2021-02-17 19:46:20 +02:00
Sergii Kabashniuk 0d0a68fc00
Obtain and persist Bitbucket personal access token as k8s secret (#18726) 
* Obtain and persist Bitbucket personal access token as k8s secret

Signed-off-by: Sergii Kabashniuk <skabashniuk@redhat.com>
 2021-02-11 16:17:13 +02:00
Fabrice Flore-Thébault 939dfbe016 fix #13660 - Replace mentions of 'oAuth', by more accurate 'OAuth'. (See https://oauth.net/) (#13664) 
Signed-off-by: Fabrice Flore-Thébault <ffloreth@redhat.com>
 2019-07-10 11:31:09 +02:00
Aurélien Pupier 5b259b2b31 Imrove code readability by following sonar lint guidance 2018-09-20 09:59:16 +03:00
Victor V. Rubezhny 57c43ac8cd Update fmt plugin to latest to enable skipping check #10554 (#10667) 
The files are reformatted in order to suit the requirements of coveo maven fmt plug-in of v.2.5.1

Signed-off-by: Victor Rubezhny <vrubezhny@redhat.com>
 2018-08-08 07:20:05 +00:00
Mykhailo Kuznietsov 07263f1e30
Fix license header text (#10629) 2018-08-02 11:18:04 +03:00
Mykhailo Kuznietsov 15d23edc91
Update license to EPL 2.0 (#10531) 2018-07-31 11:24:36 +03:00
Mykhailo Kuznietsov cd99cf4e6c
Add ability to configure OAuth type in Multi User Che (#9640) 2018-05-14 17:37:14 +03:00
Mykhailo Kuznietsov 2c2bd6637c
Set new year in license headers (#8244) 2018-01-11 16:04:49 +02:00
Max Shaposhnik 7aacccff28
Fix load user repo in sigle user mode (#8052) 2017-12-27 13:59:32 +02:00
Sergii Kabashniuk 1e5109a1ba
Remove deprecated classes (#7575) 
* Remove deprecated classes
 2017-11-27 18:08:10 +02:00
Florent BENOIT 3f262e620e Cleanup some Mockito deprecated usage (che6) (#6864) 
* Cleanup some Mockito deprecated usage
org.mockito.Matchers —> org.mockito.ArgumentMatchers
org.mockito.runners.MockitoJUnitRunner —> org.mockito.junit.MockitoJUnitRunner

Change-Id: Icf7351cb58e0f42fa95885c2d2cf6b5e98206c35
Signed-off-by: Florent BENOIT <fbenoit@redhat.com>
 2017-10-21 09:07:43 +02:00
Florent BENOIT 6a95b6d74a Apply google format v1.4 https://github.com/google/google-java-format/releases/tag/google-java-format-1.4 
Change-Id: I5df30c23165df1fd39eef4c57893bebd1d681c1d
Signed-off-by: Florent BENOIT <fbenoit@redhat.com>
 2017-10-19 22:23:04 +02:00
Sergii Kabashniuk ff76657a9f Used Google Java Codestyle 2017-08-18 17:28:50 +03:00
Max Shaposhnik c8b92fcc74 Merge with master 2017-08-11 16:42:29 +03:00
Mykhailo Kuznietsov 69d5148385 Changed copyright owner to "Red Hat, Inc." in license headers (#5964) 
Change license header contributor to Red Hat, Inc.
 2017-08-11 10:46:58 +03:00
Max Shaposhnik 9bc7fc2c54 Split machine and keyclock filters 2017-07-25 16:15:40 +03:00
Ilya Buziuk 22de7d59f6 CHE-272: Making 'AuthorizationCodeFlow' field from OAuthAuthenticator protected 
Signed-off-by: Ilya Buziuk <ibuziuk@redhat.com>
 2017-06-08 09:44:53 +02:00
Max Shaposhnik 9ef71488a8 CHE-4462; Separate master and agents OAuth modules; (#4919) 2017-04-27 07:15:14 +00:00
Sergii Kabashniuk a6a569b9f7 Concept of Minimal and Full assembly (#4578) 
Concept of Minimal and Full assembly
 2017-04-14 10:05:03 +03:00
Mihail Kuznyetsov 0e8b21ad3f Set new license year 2017-01-04 17:10:31 +02:00
Igor Vinokur 42efbf452f CODENVY-1178: Add oAuth1 authentication (#3329) 2016-12-27 15:41:28 +02:00
Mihail Kuznyetsov 494442e11a CHE-2015 Rename configuration properties 2016-10-27 17:29:46 +03:00
Aleksandr Andrienko e9efb1953b CHE-2135: Change log level for RemoteOAuthTokenProvider#getToken. (#2312) 
Signed-off-by: Aleksandr Andrienko <aandrienko@codenvy.com>
 2016-09-12 11:08:30 +03:00
Alexander Garagatyi 0e9718e016 CHE-1370: refactor workspace environment bottstrapping and handling (#2108) 
Signed-off-by: Alexander Garagatyi <agaragatyi@codenvy.com>
 2016-08-16 16:23:08 +03:00
Anton Korneta 433bf921ba CODENVY-672: Add invalidation of token when the refresh failed 2016-06-22 14:08:37 +03:00
Sergii Leschenko 42690da407 CODENVY-480 Remove user's roles (#1336) 2016-06-10 17:32:02 +03:00
Sergii Leschenko d4ff792f24 CODENVY-479 Rename User to Subject (#1258) 2016-05-16 15:41:09 +03:00
Sergii Kabashniuk f923620d9f CHE-781 Move che-core-api-auth to wsmaster 2016-05-12 16:10:02 +03:00